Overview

overview

10

Static

static

7

343453ab84...a7.apk

android_x86

10

343453ab84...a7.apk

android_x64

10

343453ab84...a7.apk

android_x64

1

Analysis

  • max time kernel
    2763564s
  • max time network
    147s
  • platform
    android_x64
  • resource
    android-x64-20220621-en
  • submitted
    27-06-2022 10:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    343453ab84e5d94e21658fd2356f30a7.apk

  • Size

    1.6MB

  • MD5

    343453ab84e5d94e21658fd2356f30a7

  • SHA1

    695508970154b12a34e32246ab2cec05a1d112a0

  • SHA256

    2a469268fb18f0b009dc5b2bdd47f9ed61f0a3a2de04ba39daccd08a13fb19b2

  • SHA512

    6fa36f56aa8b94a66a8c31c6455b3694aa1b3d04e900459647ee4311f91b604a10918547e784d69731b3b530e247f77787ea3357b63952bdf2fac9edbf7801a5

Score
10/10
alienbotbankerinfostealertrojan

Malware Config

Extracted

Family

alienbot

C2

http://skakkiopiskattkio.info/

http://adkfjsadlkgjasdlkjaslkgjargq0rg.xyz

Signatures

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot
  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • kpnzpybeuzgodgqaaeosx.qbfcmsu.uqpcbfedjuwfceddw
    1⤵
    • Loads dropped Dex/Jar
    PID:5765
    • getprop ro.miui.ui.version.name
      2⤵
        PID:6326
      • getprop ro.miui.ui.version.name
        2⤵
          PID:6635
        • getprop ro.miui.ui.version.name
          2⤵
            PID:6694
          • getprop ro.miui.ui.version.name
            2⤵
              PID:6905

          Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/user/0/kpnzpybeuzgodgqaaeosx.qbfcmsu.uqpcbfedjuwfceddw/app_DynamicOptDex/CiGgst.json
            Filesize

            413KB

            MD5

            41401431ee0fc1d38608557120399ad6

            SHA1

            9393c24e5cf33782c65ab656bb0a71292ae61743

            SHA256

            696892a0692c04f7f9030e3cce5661f237bb47b5084960859011d866cce2d1cf

            SHA512

            67446267de0c3823ddbf6a3872102fe9aa976b64024919bef48a2e51c5e397253dba1125d9494e92a65fd05af3dba08a114746029113508a0afd2180ac1d8bf6

            Download Submit

          • /data/user/0/kpnzpybeuzgodgqaaeosx.qbfcmsu.uqpcbfedjuwfceddw/app_DynamicOptDex/CiGgst.json
            Filesize

            413KB

            MD5

            fdb2f4efa95dd8b5ead7527c92f24542

            SHA1

            501f2094015b630627584daf8a3b0cb7035b5c49

            SHA256

            d341f67e2cd0a2dad1ff18b7b396356cd06854b09ae37a4d6376003332ff8c32

            SHA512

            d35478cb35a2dadd295bcb9b85807dcb1df982d737687d52475366a5262c7762c5e870b6dda8cfe0145073be74df0c48a96bd014d49c985e7029cae830208d2b

            Download Submit

          • /data/user/0/kpnzpybeuzgodgqaaeosx.qbfcmsu.uqpcbfedjuwfceddw/app_DynamicOptDex/CiGgst.json
            Filesize

            413KB

            MD5

            fdb2f4efa95dd8b5ead7527c92f24542

            SHA1

            501f2094015b630627584daf8a3b0cb7035b5c49

            SHA256

            d341f67e2cd0a2dad1ff18b7b396356cd06854b09ae37a4d6376003332ff8c32

            SHA512

            d35478cb35a2dadd295bcb9b85807dcb1df982d737687d52475366a5262c7762c5e870b6dda8cfe0145073be74df0c48a96bd014d49c985e7029cae830208d2b

            Download Submit