Overview

overview

10

Static

static

7

8d4b04f4e9...cc.apk

android_x86

10

8d4b04f4e9...cc.apk

android_x64

10

8d4b04f4e9...cc.apk

android_x64

10

Analysis

  • max time kernel
    2564307s
  • max time network
    26s
  • platform
    android_x86
  • resource
    android-x86-arm-20220621-en
  • submitted
    25-06-2022 02:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8d4b04f4e922ce15facf652b05b1fad9975a2e299469ced2cdc957086b4022cc.apk

  • Size

    368KB

  • MD5

    df1448113a4de8b48b68b4639bd5de76

  • SHA1

    db5899157bc257324097e102f8543faea01546fb

  • SHA256

    8d4b04f4e922ce15facf652b05b1fad9975a2e299469ced2cdc957086b4022cc

  • SHA512

    91b6bf776ac66c2dedb1070df7255fea133efee4fa4e64451ea1de0c120464d76e6fd8d2e1231bc64177998966b68d6d609b5c12b1bea1dde006653aa0e58d2b

Score
10/10
anubisbankerevasioninfostealertrojan

Malware Config

Signatures

  • Anubis banker

    Android banker that uses overlays.

    bankertrojaninfostealeranubis
  • Makes use of the framework's Accessibility service. 2 IoCs
  • Acquires the wake lock. 1 IoCs
  • Requests enabling of the accessibility settings. 1 IoCs
  • Requests disabling of battery optimizations (often used to enable hiding in the background). 1 IoCs
    evasion
  • Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
    evasion

Processes

  • anubis.bot.myapplication
    1⤵
    • Makes use of the framework's Accessibility service.
    • Acquires the wake lock.
    • Requests enabling of the accessibility settings.
    • Requests disabling of battery optimizations (often used to enable hiding in the background).
    • Listens for changes in the sensor environment (might be used to detect emulation).
    PID:4048

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads