Overview

overview

10

Static

static

7

b7b6ae0897...42.apk

android_x86

1

b7b6ae0897...42.apk

android_x64

10

b7b6ae0897...42.apk

android_x64

10

Analysis

  • max time kernel
    2762156s
  • max time network
    160s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220621-en
  • submitted
    27-06-2022 09:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b7b6ae08971e111291e2dffe48667c42.apk

  • Size

    3.7MB

  • MD5

    b7b6ae08971e111291e2dffe48667c42

  • SHA1

    ffd2c09b20809ba853bfa0776ae59447ea82d4b7

  • SHA256

    7711f2515fa68fcb75459a90b9d0102569435cdfbaacb35b23828ab17d6a0987

  • SHA512

    0414838b61f594a12cbab985439ab97194b75117562e2a091c0cbab6c029930a36a2b9b0a3781c4972abf6c39f5d4f6aada2588280eedbc7b3d506a566eee7ae

Score
10/10
anubisbankerevasioninfostealertrojan

Malware Config

Signatures

  • Anubis banker

    Android banker that uses overlays.

    bankertrojaninfostealeranubis
  • Makes use of the framework's Accessibility service. 2 IoCs
  • Acquires the wake lock. 1 IoCs
  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

  • Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
    evasion

Processes

  • com.rsksbgdkgcae.fvogspmykjv
    1⤵
    • Makes use of the framework's Accessibility service.
    • Acquires the wake lock.
    • Loads dropped Dex/Jar
    • Listens for changes in the sensor environment (might be used to detect emulation).
    PID:4652

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.rsksbgdkgcae.fvogspmykjv/app_files/oat/vdtfcg.jar.cur.prof
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit
  • /data/user/0/com.rsksbgdkgcae.fvogspmykjv/app_files/vdtfcg.jar
    Filesize

    217KB

    MD5

    55bcef86e2869e2c9c57c989ca33303c

    SHA1

    e23d9f47130be7c913eec65dffe494451a8435be

    SHA256

    ab54eedea2830d13e96e761c5af98c8d4a11ea98c78c9475f57a801aa2b8aa3c

    SHA512

    824f4b03b443f612089eaa7560d93c710b26ee51c974098c8ce674c82da4b7cd336723388de7fd143f2e212857e01c3a8647643ed6addb0b84dc026a97493c4d

    Download Submit
  • /data/user/0/com.rsksbgdkgcae.fvogspmykjv/app_files/vdtfcg.jar
    Filesize

    440KB

    MD5

    3389ca8da78d92d27bbc4348bc44d8f9

    SHA1

    8bc6c2bf025e7c72af926df48ec58250dc90c0e1

    SHA256

    e195e706b0493c04cb30e9e76ee93e9fe749565d8edde91ea1e9f569e7117ead

    SHA512

    3f98236c458d45e2113ae8f7e1eec28efd400edcb6a2c860dde355ef11fb0d2bb9b06c72f54a2b92432bb13317f992b8ad7fc58c30099de54f6c63b1854c7f03

    Download Submit