Extracted

• • Target

    6d602a6d2515d244fe6a45746b86536e28b9b6f7f9686d4829180b9cab1e1d3a.apk

  • Size

    3.4MB

  • MD5

    2e7f94df1120f612c1a8416e36ed1186

  • SHA1

    0cc8194c7e64973d359e2d9edc93e5f2e184d86f

  • SHA256

    6d602a6d2515d244fe6a45746b86536e28b9b6f7f9686d4829180b9cab1e1d3a

  • SHA512

    567894f561c1c11e8bdc16d8f0e9c176d91263e908ca8592bf68a6106136982f63efdd268c42a45e499c949ed35d3648543deea130aa3c78197922ff0b8eb7aa

  • SSDEEP

    98304:4fcQPLiNNad7QaTKtua6YYsjbxc98JcRxA3:4kQj9d7NqN6YBRcxo

  Score

  10^/10

  alienbotbankerevasioninfostealerransomwaretrojan

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot

  • Renames multiple (162) files with added filename extension

    This suggests ransomware activity of encrypting all the files on the system.

    ransomware

  • Renames multiple (166) files with added filename extension

    This suggests ransomware activity of encrypting all the files on the system.

    ransomware

  • Makes use of the framework's Accessibility service.

  • Acquires the wake lock.

  • Loads dropped Dex/Jar

    Runs executable file dropped to the device during analysis.

  • Removes a system notification.

    evasion
  behavioral1behavioral2behavioral3

• • Target

    #print-template.html

  • Size

    5KB

  • MD5

    04af2fb66fd2d9a958e6ed00d7f17a54

  • SHA1

    3a90b39e78e0e3a79c9d78082b44814b79b42804

  • SHA256

    79a7688af8b15b180a4a9422a9767d4d4f7825ef77c4696998f1b1a4460af3aa

  • SHA512

    5924108502b7e780c61d4f2e95698792329bd04730dd7ec9df2532c7330acd4fabbd0b95ab2b853c1bb9ee70c19505b5836c14ab39ba394cf1e0b68866f5635b

  • SSDEEP

    96:pmBTwJqaCwZ+am3Z9mZTdadLJNxcIWqf2CZqoxlctxrFFFmySoYYyiSCIFC4:pST8qTwZ+33Z9mZTkdLJNxcIWqf2CZJB

  Score

  1^/10
  behavioral4behavioral5behavioral6

• • Target

    CCControlColourPickerSpriteSheet-hd.plist

  • Size

    5KB

  • MD5

    77ce7c2080d0f2ac65c42cfa4ef631c6

  • SHA1

    9a6fb0127fb661d519cba5868b60835617859180

  • SHA256

    980f92d2867c93f2b6f43bcb6aa05647e7545562055b51edd7eda38a3f6e5dc0

  • SHA512

    255abd0ba5c467ecf79a2dd90fe6768ac0b32a7896ded83f6d79ccea46e20b1ce32224d977ac333df6f96df2fadd711374bc8d6307983a90550855422cb83f12

  • SSDEEP

    96:/y+VHP5/QO5nNHQWI/QOj9kuH7I/QOj9ksHMCmI/QOj9kvHE/QOOiHc5/QORnHz1:aYb06E06D06d902VD

  Score

  1^/10
  behavioral7behavioral8behavioral9

• • Target

    CCControlColourPickerSpriteSheet.plist

  • Size

    5KB

  • MD5

    fcb5d49e60350b4e061376d079c78c04

  • SHA1

    86e6da84404f79ed9105b8ed1a84c54f5a8cde2e

  • SHA256

    32ec9e42908a44d99fdcecde2f71f7ca23989c1351f0276275564bdaaf6791af

  • SHA512

    2b28d248db07cbda87ce36c6dc55d73c7fb5e84ea9d725ff0bc6a6bdbdff908eabbef74d20abd402f64406cc173cd251a45670aeb72ce1dc481a3665f888f3d9

  • SSDEEP

    96:/y+VH5/QOhxH+/QOdhHA/QOdpHr/QOdOHN/QOqyHS/QO9LHo/QOqqHO/QOfUHH9l:aQdZM

  Score

  1^/10
  behavioral10behavioral11behavioral12

• • Target

    DungeonSheet-hd.plist

  • Size

    2KB

  • MD5

    81973b2057bca63dd6ca47a89414b35f

  • SHA1

    5f8b5fcc84c7310dd0fc75c21e9f1afda157620a

  • SHA256

    ebbc757cfa618a93a9170ab505da95ea178f49128113c6fe70c4b121ae3c2763

  • SHA512

    a27c4998a93c84470e430d5269d4c488c9c325885ee0c3f007a8a4857f259f9df19125d5797f17672f2a7fd2628f4b11566788b789cfcde9812caca70705c56d

  Score

  1^/10
  behavioral13behavioral14behavioral15

• • Target

    OJATyD.json

  • Size

    485KB

  • MD5

    872f94fe2ee6bbc9a7f33174eccdf103

  • SHA1

    4220a205b1e6162c14f6c40aab3506d57ba212f8

  • SHA256

    fb6166d0224d4c6a9e156448a33a2c0108cde96c19fb7d65fed6fe5447bca9a3

  • SHA512

    de566c8925159e1b9bd933a1a98695e6062bf7e0195e4d3a7e4000fb433125266c8da164e8562643c7b658d565c6011899a78cce88497fef0b2320902998ed39

  • SSDEEP

    12288:Qa1iNlykByKmeTreKQ1qligC2wfmJyUh7VVouMX9C3:46koKf5Q1I7ZwLUh7lMtC3

  Score

  1^/10
  behavioral16behavioral17behavioral18

• • Target

    app_get_version.html

  • Size

    617B

  • MD5

    9d84ff259a41328bb856984da9def25a

  • SHA1

    25e16b76351ae5a5aa772541a9ced9f9d8b6e115

  • SHA256

    c0b35e30d789b77cf0adac51dffe155b5d5c2541bacf6fd50a4ab8cf169d76d6

  • SHA512

    41d746f102913a2663f344c2127df5010b42611d8ec853261aeded28d98c9b08a133bbfa7e5289e028c670b7964d0227840731ee3b623788dcda2d245227c8a3

  Score

  1^/10
  behavioral19behavioral20behavioral21

• • Target

    bakchat_privacy.htm

  • Size

    2KB

  • MD5

    a6770ff50d114c81becedda6f1d87eed

  • SHA1

    17da909ee817dd59739fbba812e67b1ac13cae06

  • SHA256

    bc48fe6585c55c5a28dc27b6ce581552861a00903c160322aa65d494cf2276fb

  • SHA512

    55ccf1dae715a6bdaa967ecb5781370862251b856f378bed54e7ff884ac3589efc62aa9e43b5d0fb498d136fefac33a090b267a28aaaa21975dd49f2d67ae8a6

  Score

  1^/10
  behavioral22behavioral23behavioral24

• • Target

    boost_01_effect.plist

  • Size

    2KB

  • MD5

    c638bc6f61497a4a2c32f62af4bd60fe

  • SHA1

    3618e84825c6b5fa6d0d63d3e8dacca90c490fff

  • SHA256

    d3d9dcc6da6b954049e8834661f6d2a1d3f7256928991fe08f49c5daa62a8637

  • SHA512

    814470fac0d683a3019f004a4e0d98420c0a72dcd51dbddefbf496b7a90e25b6e8663279240ef0c2e17f141571ee923271a0e1b2ac3ca1bce2fdb46398720dd8

  Score

  1^/10
  behavioral25behavioral26behavioral27

• • Target

    boost_02_effect.plist

  • Size

    2KB

  • MD5

    f45467db6500a27f2756cdda60947df8

  • SHA1

    2ec869aa0e2c2fc3512857ddd351609f1d53afc2

  • SHA256

    00afe2aaca87cafe9ccebf3d45c11b9017273c94b52f6e9c3c038c3cb1c4cf4c

  • SHA512

    6e1d9401aa92a88d92d2cb75244125c7e06b4572dd88213627bc445a0df87b23dd5c26b48fc6c8ae60f24c3d764276fc1d271fcef2876828b2106fe3e7c80347

  Score

  1^/10
  behavioral28behavioral29behavioral30

• • Target

    boost_03_effect.plist

  • Size

    2KB

  • MD5

    d122c045b6e8adcb983a09bc7a02ca71

  • SHA1

    6a38519ac6f268c9dcbcee37cbeca327c3381c85

  • SHA256

    8bfc68dead941eda0b73218e872d9fb31a8bfca9e448486771748316b545c60d

  • SHA512

    0d8bbc2583e98a17362658e3535f59ddd8b012d1a12df23c63d15d3139c8bec8a93f4312aabd17ec025c9cc150a1692c413c56b53558acc6c94207c2878d9e9b

  Score

  1^/10
  behavioral31behavioral32