alienbot | 8ef11ccb9f5758e54616457ad9cde5058fa2821d17126c4463cb5dbc9a08cf62 | Triage

Sharing

General

Target

8ef11ccb9f5758e54616457ad9cde5058fa2821d17126c4463cb5dbc9a08cf62
Size

1.5MB
Sample

220625-l46q5afhfr
MD5

51177b7e6090caccd6cd6acdfc368e9f
SHA1

c2470037857c325f2802d38a47ead118c8fa01a9
SHA256

8ef11ccb9f5758e54616457ad9cde5058fa2821d17126c4463cb5dbc9a08cf62
SHA512

4646e0583d5f941c614a1f991331fabbf7eac1c2a2357b508ea358a2a7da920854b0cb3ff35cb059fa994d17d8f9fe2046a53925777f817494b425991fc4a4d1

Score

10^/10

alienbot android banker infostealer trojan

Malware Config

Extracted

Family

alienbot

C2

http://olisparadis.xyz

Targets

- Target
  
  8ef11ccb9f5758e54616457ad9cde5058fa2821d17126c4463cb5dbc9a08cf62
- Size
  
  1.5MB
- MD5
  
  51177b7e6090caccd6cd6acdfc368e9f
- SHA1
  
  c2470037857c325f2802d38a47ead118c8fa01a9
- SHA256
  
  8ef11ccb9f5758e54616457ad9cde5058fa2821d17126c4463cb5dbc9a08cf62
- SHA512
  
  4646e0583d5f941c614a1f991331fabbf7eac1c2a2357b508ea358a2a7da920854b0cb3ff35cb059fa994d17d8f9fe2046a53925777f817494b425991fc4a4d1
Score

10^/10

alienbot banker infostealer trojan
- Alienbot
  Alienbot is a fork of Cerberus banker first seen in January 2020.
  banker trojan infostealer alienbot
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

alienbotbankerinfostealertrojan

behavioral3