Analysis

  • max time kernel
    2794564s
  • max time network
    125s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220621-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220621-enlocale:en-usos:android-11-x64system
  • submitted
    16-08-2022 12:10

General

  • Target

    e2bdf77b7cbd952f92e62a1a1c1973158ca5df817f9b0bed9bad2a0b8ec58cc1.apk

  • Size

    165KB

  • MD5

    b690ef44bc8def7fa9c95a10fb9d9ade

  • SHA1

    a67a01a5df61738e32a01aea54c9a42b25014f07

  • SHA256

    e2bdf77b7cbd952f92e62a1a1c1973158ca5df817f9b0bed9bad2a0b8ec58cc1

  • SHA512

    d3b937265c81db15ff0e4e4d636f67f87d2a92fbc512bf0706b59957c5eb22cca91978cc85c815a9418debe8e4aad0e70e9f7102b53ba47ca6fe27b89bf878a3

Malware Config

Signatures

  • Anubis banker

    Android banker that uses overlays.

  • Makes use of the framework's Accessibility service. 2 IoCs
  • Acquires the wake lock. 1 IoCs
  • Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs

Processes

  • wocwvy.czyxoxmbauu.slsa
    1⤵
    • Makes use of the framework's Accessibility service.
    • Acquires the wake lock.
    • Listens for changes in the sensor environment (might be used to detect emulation).
    PID:4174

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads