Overview

overview

10

Static

static

7

005e033dc1...b9.apk

android-9-x86

1

005e033dc1...b9.apk

android-10-x64

10

005e033dc1...b9.apk

android-11-x64

1

Analysis

  • max time kernel
    3209347s
  • max time network
    136s
  • platform
    android_x64
  • resource
    android-x64-20220621-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20220621-enlocale:en-usos:android-10-x64system
  • submitted
    21-08-2022 07:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    005e033dc1dfbfb9d2a3989e91705ab9.apk

  • Size

    1.2MB

  • MD5

    005e033dc1dfbfb9d2a3989e91705ab9

  • SHA1

    631fac97cabfbad8f73da4aa550e359e012d3125

  • SHA256

    7db9ad455ad55e81b10ec87a25b1f02bdad8fcbd7326f96f7d367c456f8b5921

  • SHA512

    c4ffc229754f073dd115fc2474f9851ce3de546dcf4f801af022445c98d38c23f28ad2d5a50c54605f6c49dd1c9e657c9c46c99957759144db09f1c400af1246

Score
10/10
anubisbankerevasioninfostealertrojan

Malware Config

Signatures

  • Anubis banker

    Android banker that uses overlays.

    bankertrojaninfostealeranubis
  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

  • Reads information about phone network operator.
  • Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
    evasion

Processes

  • com.viable.bind
    1⤵
    • Loads dropped Dex/Jar
    • Listens for changes in the sensor environment (might be used to detect emulation).
    PID:5802

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.viable.bind/app_DynamicOptDex/KOMr.json
    Filesize

    179KB

    MD5

    4deb711f7689fda04d586d6c1047fd10

    SHA1

    a5c0cd8e1c4b003883a87ab18c3846bfbf05235c

    SHA256

    7ea457c877671a8dab7ec3b1de4385d5e3d36875acde3312dece2444090ba311

    SHA512

    2063b3c6b36c3988f9903d89aebeb197b510c6931150da2daea91356789246151e06baf10ac83aba5ad902ea5986a5fc12c1e0b56f9f5e455b7342d79a604b41

    Download Submit

  • /data/user/0/com.viable.bind/app_DynamicOptDex/KOMr.json
    Filesize

    367KB

    MD5

    2886360a17407e43e2d9c548d1bfdad1

    SHA1

    ed7151dba5039669b3e9eead25ba84f961a540ce

    SHA256

    2895c5f0815dc4fca105725f58f6dd32984192d1904d123e1a9f28f032d5a9dc

    SHA512

    784dfec3690848fa71be1c8c99fb8c4159e673f7c7c2a674a6928927a574d88101ada07548228315c0e5a17066ee27a2233b713669864eff824766fee3009a2c

    Download Submit