cerberus | d87b4772634f8d486477032b639272a774e72081cb1c5a063c339afcf5a24223 | Triage

Sharing

General

Target

0554a9f413a705a2d74a0e4e4855654de5b4c6e78358be3813108cdb555ce566.zip
Size

1.3MB
Sample

220701-1ctptabadr
MD5

357ec845042aec8f243e45dd40dcd5bb
SHA1

ad99d9664a2e35a62efd95e595a4f21193092216
SHA256

d87b4772634f8d486477032b639272a774e72081cb1c5a063c339afcf5a24223
SHA512

e5bbcd83681ae0bde2b0879afd39366e81ebb913821daa548cd551a9e7b46a6adcb5a26246ada6abea464730610a0ed22c12bc48838d7dc0aad6df1367e80adf

Score

10^/10

cerberus android banker evasion infostealer rat trojan

Malware Config

Extracted

Family

cerberus

C2

https://adanademirspor.xyz

Targets

- Target
  
  0554a9f413a705a2d74a0e4e4855654de5b4c6e78358be3813108cdb555ce566
- Size
  
  1.4MB
- MD5
  
  d859b12a2aa1f1171ec458aa344486d9
- SHA1
  
  44ad9264bbaf8b29a7cac092a7710c34d115a4b7
- SHA256
  
  0554a9f413a705a2d74a0e4e4855654de5b4c6e78358be3813108cdb555ce566
- SHA512
  
  75b2a778df0353d44b574e514345721f5b86dd38baa2e91c111b4b7442dde9f86dc8a66e902c86bd492b8cd43ffb70898e88fd4d37e6e50ad77cd0a638eae9c7
Score

10^/10

cerberus banker evasion infostealer rat trojan
- Cerberus
  An Android banker that is being rented to actors beginning in 2019.
  banker trojan infostealer evasion rat cerberus
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

cerberusbankerevasioninfostealerrattrojan

behavioral3