zanubis | 33adbff1a79da4a3fde49cececac5a6b99bf217be0c6db6cdf85a46bf2087e57

Resubmissions

25-11-2022 14:38

221125-rz2jhaec29 10

22-09-2022 17:03

220922-vk1v7scaa5 10

31-08-2022 15:17

220831-sn1y9sgacq 8

Analysis

max time kernel
1714034s
max time network
159s
platform
android_x64
resource
android-x64-20220823-en
resource tags

androidarch:x64arch:x86image:android-x64-20220823-enlocale:en-usos:android-10-x64system
submitted
22-09-2022 17:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

documento_2a3d3dd.pdf.apk
Size

4.0MB
MD5

8f78df9b128eb2b0fb576269bba6a9fb
SHA1

2128c991887a80152ca36689be503eaa6afc1b1f
SHA256

33adbff1a79da4a3fde49cececac5a6b99bf217be0c6db6cdf85a46bf2087e57
SHA512

4bce2fb6b264159c0b0dad184f834ecbb8eb5f908665e9eb2d783604374fb3fe03e9cdf5a4e167e308767d6c63d7f0302e9658ccb967f22affbd4bf2cf1a49cb
SSDEEP

98304:rIQAS1Qd2ofrWB/urhQuzI6TZS+DixH8bU4bFLzbcHez0:8QAejky4To+mgU4bFLg

Score

10^/10

zanubis banker infostealer trojan

Malware Config

Extracted

Family

zanubis

92.38.132.217

Signatures

Zanubis
Zanubis is an Android banking malware first seen in 2022.
infostealer trojan banker zanubis

com.personal.pdf
1⤵
PID:4713

com.personal.pdf:remote
1⤵
PID:5130

com.personal.pdf:remote
1⤵
PID:5932

com.personal.pdf:remote
1⤵
PID:6357

com.personal.pdf:remote
1⤵
PID:6829

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.personal.pdf/app_webview/.com.google.Chrome.7GMw3Y

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.personal.pdf/app_webview/Cookies

Filesize
64KB

MD5
9b23e6a88d5a95f155f205cb04b93cd0

SHA1
b62dccbbef087a0731f226b96d15d35d8aa5e5fc

SHA256
f2f3c3c0c7f085399a6f9a464c1ac30a59ceeb5a4b7026286fa5609e6e8ef857

SHA512
bce5f25d98e2e8296c4101b62082dcb6a43902f3431ff6f725e41be6b9aece76e887ef94c4818baf4da845708fd76fd51c37fb6915710c870647593868f27482

Download Submit
/data/user/0/com.personal.pdf/app_webview/Cookies-journal

Filesize
1KB

MD5
58f463649cf39e348ae1890f4b38c489

SHA1
59f54e6977052b1ff724fa038163678fd302b114

SHA256
24a5d6d169349126fd06574e96371d51ce5b1cde224e125c709e600b68142dc2

SHA512
486991ec9f5246444b8d13aab4739317699789021e320b1eff49c57e8c8ddcd10fd6a8b7e2ffda874856dd811b71887e61d13ba403577f2ef0cc5aa0d80931f3

Download Submit
/data/user/0/com.personal.pdf/app_webview/GPUCache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.personal.pdf/app_webview/GPUCache/index-dir/temp-index

Filesize
96B

MD5
0e30e9078c7c8370d674ba496f3b2f6c

SHA1
0bbe925385f8e78fa3be72d90b640ba115243c2f

SHA256
c5735064e06b2a6951071ef692cd5bc7fe568b908784a4e0f8d0617c8bf81c28

SHA512
2a7b86eee9685ee39a56188d85ef7f104e465500b04c9aa6e157f014c90e0eac96403c0fe0b7f9fdbf3f97cbf50bd029b756d74e512cf4901850d65a749514c1

Download Submit
/data/user/0/com.personal.pdf/app_webview/Web Data

Filesize
112KB

MD5
b663831f8cc130493476d94f2d7a5330

SHA1
043a1956ab8e40821d67043f8a9110a8eb36fb93

SHA256
c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7

SHA512
e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

Download Submit
/data/user/0/com.personal.pdf/app_webview/Web Data-journal

Filesize
1KB

MD5
aa75d7275ea4d9f0cf8beed4440d44fb

SHA1
0d7d45e46571457b3abf6028ce1e6df22e6dac15

SHA256
56c58c674c4952c08840e15a6afd2e6e29a12492d90c233a3f82e54186c8c316

SHA512
5f72b7c465700fcf93f8df3a7d30d9b451c6a5e974ca6b36b313f29c5bec03bb240318deda68ad4665b4e86fc78f7a031c1bf1708321eda439df0d5a548b2b5b

Download Submit
/data/user/0/com.personal.pdf/app_webview/metrics_guid

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.personal.pdf/app_webview/metrics_guid

Filesize
36B

MD5
5f9e83f44a326373b9695587dff6e1f1

SHA1
3824245258ef6db9ea801c88dda79eb2ed170e7a

SHA256
b8fabc816dd94536647a4993a2d80c338f50fbc3a6e03fc31e9d4b3819d8843c

SHA512
2ea668cc4064ea294485f1efa46e703638d21fd4a63cd1bd741852213b4d8a15d5a3e0704c5a52e909562e9e1823260200b80731e5a572f776c16fb047c66246

Download Submit
/data/user/0/com.personal.pdf/app_webview/variations_seed_new

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.personal.pdf/app_webview/variations_stamp

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.personal.pdf/app_webview/webview_data.lock

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.personal.pdf/cache/WebView/Crashpad/settings.dat

Filesize
40B

MD5
5857179b7293a59f4d8824e57d694ac5

SHA1
10cb62d11128f71054d260814e69144f47f35e2f

SHA256
4902526dd20c0b6a62177f8f13a20ce448f731a78e30684c7c34fda46659c09d

SHA512
49cf2a63fa6520bd20a9acfb8fe41c27c827e5b7b651264fad4840c79669a564b0cb53548b6aefe518d8a3fbb06aff8b0a6262a93ad0152fa5aa825ce2f02903

Download Submit
/data/user/0/com.personal.pdf/cache/org.chromium.android_webview/44e5652fb145311f_0

Filesize
3KB

MD5
3f5de0215c5190306aa339d66ecb35df

SHA1
5f469f4294963f6926fc54d6ee13dc36cc4879d3

SHA256
62c19b9740cc036a5fc75e87e84a8e105686a660e5cda69ce15a4d8984a57e20

SHA512
7bd5d222380701ffc6950ff9f87d666c5b344e011ce85548c6729e295d386312027c2e7093ea9cb98e2151bc162dad43d3bd3106c386f10e6a0b071451040716

Download Submit
/data/user/0/com.personal.pdf/cache/org.chromium.android_webview/5b44edcbc5d5e766_0

Filesize
754B

MD5
47449ad1826597d26d0d185e2a7b3299

SHA1
f735f37c4e93f27ab8a596809dbae106ef5b41c5

SHA256
a6d391194a3a8d0d883086c5cd785a0488380134f2fd650d479b7c215f48e039

SHA512
de3297ce80a1166bbe447a617d0ae246db712829f7f7f799c619d2a17e5df954c31107ab01ca4f75e73df42a70e824eca8a16e28a87ce901b5909f901cdecd6b

Download Submit
/data/user/0/com.personal.pdf/cache/org.chromium.android_webview/Code Cache/js/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.personal.pdf/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index

Filesize
96B

MD5
7475df3599650a7724e4c422ea059bac

SHA1
cc75618fc2162c77cd7cb9f4e67499e2cba5a0ab

SHA256
39814e4f7e3b887f6f026acda49c46ff196afe4d2eae34a6a2686f27001f064c

SHA512
3ed449eaaf8312dccd1b03fd79ae245b9204b9883e5c923205985ab8801bb928f4bbd48b864893d8a5cacd4025330e94575ef8836c8d994b7ba4fcff717b60e0

Download Submit
/data/user/0/com.personal.pdf/cache/org.chromium.android_webview/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.personal.pdf/cache/org.chromium.android_webview/index-dir/temp-index

Filesize
96B

MD5
b61570124641fb176b7e22dc822dfe8d

SHA1
e9b8baabee5886cf46b31ea073e52024a7b67d8d

SHA256
d4e5cfd970a43a20b4a82d9edb4f4a5048e5ff8c0a0df5285968dd87f641ad2f

SHA512
eb6f9cbf254fb80e1420fb6afde58a98e006bfeb4bcbca228e8ae42863cfa663e73532b860a8572680a30456b97c343e751b61ab9ac52fe690770eb99219c32f

Download Submit
/data/user/0/com.personal.pdf/cache/org.chromium.android_webview/index-dir/temp-index

Filesize
192B

MD5
85db620c03c0b4f12394f1cf9153f125

SHA1
1b6de2e2ffd1d0448ce08bb5560900eff43523bd

SHA256
719f18f76b9ace6372e51b058709dd059c0422c5d3642950249e1a8010892657

SHA512
28cb45daacb9f7a7d90360ed954a41303790b115cf94df88be7c1caf1a98eb94e51cec1b1bd2171a39a4fc7344ab2cb0b2d95d3f7d054cbfc446a409bce4587a

Download Submit
/data/user/0/com.personal.pdf/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
6ef709b8536878951e87c29a1518fc2b

SHA1
24376c70b00152501b3d98df61fa7db435339172

SHA256
10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6

SHA512
96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Extracted

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads