Analysis

  • max time kernel
    1922781s
  • max time network
    161s
  • platform
    android_x64
  • resource
    android-x64-20220823-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20220823-enlocale:en-usos:android-10-x64system
  • submitted
    21-02-2023 06:11

General

  • Target

    NitroGen(slow).apk

  • Size

    1.5MB

  • MD5

    c3a0d50701c5ca687b20b30476251c60

  • SHA1

    18f3f51006fa5ad7e52ea131e4e2349a33de4c1a

  • SHA256

    76a5004c64a23e9b068de2e80451d2c2032d72433bf2fd7330dff931aed4b886

  • SHA512

    7b9239d25578084a64ca89bf4737b7e48360091033a8add2ef1d554df6c7f7d2862be0c6add966c9a2f061c118a29df490e00a36881de381f8023e56e3a2dab1

  • SSDEEP

    24576:8tTBy9cBplEJGVQXHoGy1CQmKhAtK8lK/kF8QYnp703kkCCL4HgLn2R:YMK56GVCHt0Ckhq2sFxYnSk/CL/n2R

Malware Config

Signatures

  • Anubis banker

    Android banker that uses overlays.

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs

Processes

  • sampop.sampo.samp
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4714

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads