Extracted

• • Target

    0da884e6d206b143aa7a518e33647a0d5735e91f9968234f4c77fb81dade4e75

  • Size

    1.7MB

  • MD5

    3ed70be2834ca7b4a936a8a513697ec8

  • SHA1

    762d6d512f73301095ed866505b72b4e08df064f

  • SHA256

    0da884e6d206b143aa7a518e33647a0d5735e91f9968234f4c77fb81dade4e75

  • SHA512

    feb724971c398f1854e571e32b239abb75f748df675e8dbf053d34549bec37cd226222cc876246d1e1d96497cee5143c166236eb53e533d3f608d4f0c8660a13

  • SSDEEP

    49152:X/N+kokZF+g+jFfhbSY9YMeEJSNI0H+zOS8X:XQnIFDufhfbzOSC

  Score

  10^/10

  alienbotbankerevasioninfostealertrojan

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot

  • Makes use of the framework's Accessibility service.

  • Acquires the wake lock.

  • Loads dropped Dex/Jar

    Runs executable file dropped to the device during analysis.

  • Removes a system notification.

    evasion
  behavioral1behavioral2behavioral3