Overview

overview

10

Static

static

7

0a036807dc...5a.apk

android-9-x86

10

0a036807dc...5a.apk

android-10-x64

10

0a036807dc...5a.apk

android-11-x64

10

closebutton.html

windows7-x64

1

closebutton.html

windows10-2004-x64

1

core_wrapper.js

windows7-x64

1

core_wrapper.js

windows10-2004-x64

1

lynx_core.js

windows7-x64

1

lynx_core.js

windows10-2004-x64

1

nd

ubuntu-18.04-amd64

slardar_bridge.js

windows7-x64

1

slardar_bridge.js

windows10-2004-x64

1

slardar_sdk.js

windows7-x64

1

slardar_sdk.js

windows10-2004-x64

1

template.js

windows7-x64

1

template.js

windows10-2004-x64

1

Analysis

  • max time kernel
    1877410s
  • max time network
    36s
  • platform
    android_x64
  • resource
    android-x64-20230621-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20230621-enlocale:en-usos:android-10-x64system
  • submitted
    19-07-2023 20:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0a036807dc9b6da62dcbdedd22fd44bbf31d4851449d044672bfe31121aff25a.apk

  • Size

    2.0MB

  • MD5

    a52be43e4af45b7be6bf4d6d583391a1

  • SHA1

    df9f83d5f848cfb6bd707815a99d4f49f25f5e01

  • SHA256

    0a036807dc9b6da62dcbdedd22fd44bbf31d4851449d044672bfe31121aff25a

  • SHA512

    f177d1c006258ac8bd765fe7f2f42408a0c54c1999d83bab144c46242fd4cf6f507a94fba21c979601d902572650d8bd172e909056096fb27eae52cc4e160190

  • SSDEEP

    49152:y/T83mmUl7iu+/ewEGkaozjEBQXtMHBXlVNO2uljajlZlBAa5vnP8AjhcC3BcQr:GTAmflB+/UHaozjEBQX+HBXlVNO2ulux

Score
10/10
cerberusbankerevasioninfostealerrattrojan

Malware Config

Extracted

Family

cerberus

C2

http://84.32.188.52

Signatures

  • Cerberus

    An Android banker that is being rented to actors beginning in 2019.

    bankertrojaninfostealerevasionratcerberus
  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.bulk.deal
    1⤵
    • Loads dropped Dex/Jar
    PID:4796

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.bulk.deal/app_DynamicOptDex/MGgiJN.json
    Filesize

    63KB

    MD5

    109c3b3d6b04af76150c241a43fbcf43

    SHA1

    c943c67b4f4c0165c7f09346f2eda9037f209fd3

    SHA256

    ec74cd22f84cac18cfb9d0664681539883b744724d70d28ebeceef928ea95819

    SHA512

    9b9765bd4b27b015482a9d49f9ad7c740c63f5f2ce21ea7c85320aa26ca0f2cef66de18f43725a92fffc50407a9d242d1d89fd231780a9570638bbe537f1cca9

    Download Submit

  • /data/user/0/com.bulk.deal/app_DynamicOptDex/MGgiJN.json
    Filesize

    124KB

    MD5

    182b8c1c0348e8569c5618a3b3b9031e

    SHA1

    7fe51bd7f2e7112d8da624a312f440b74fd17f65

    SHA256

    27a5cf4d4ff73a1d24148668d875778c0717eefe4ee81dbcbdca6591fe38e725

    SHA512

    7ac30e5cd24be6e4fb5aece5208980ffcd874cc0f2f9035fd35c94ec57fb2951ff64ada4feb72c9381657acd1e48168b19694bd8bbca610596a0dfea66751b10

    Download Submit

  • /data/user/0/com.bulk.deal/app_webview/GPUCache/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.bulk.deal/app_webview/GPUCache/index-dir/temp-index
    Filesize

    96B

    MD5

    7f3e0ada2104ff29d0227cf132c3f711

    SHA1

    fcf383e1ddc44a84ccab9adc37f00a0819f43efc

    SHA256

    60229f813c2904a2e17e094511a6b086864e0700a2b5903b43c45cedea855b64

    SHA512

    efa6e42457289c54b935c3ec23ed202d4118f4c989231d2d6932a95a3a7ac63844531c57519ec670cdefe8c42b45c9118926556dce59e0f332db7a8936bf098b

    Download Submit

  • /data/user/0/com.bulk.deal/app_webview/Web Data
    Filesize

    112KB

    MD5

    b663831f8cc130493476d94f2d7a5330

    SHA1

    043a1956ab8e40821d67043f8a9110a8eb36fb93

    SHA256

    c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7

    SHA512

    e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

    Download Submit

  • /data/user/0/com.bulk.deal/app_webview/Web Data-journal
    Filesize

    1KB

    MD5

    88ce08d5de988c784a4c10ccc3537fe4

    SHA1

    38cdb7066abe15966e1eab2038e58169336f2df0

    SHA256

    f4f922b7b4e2d4bc60f3c3e529a1cfd3c436f97193e7fc1d5508bd9c4f67bfaa

    SHA512

    f18110c715ce504408eaa505f63ae0c27543249ec2a631e9bc2cc1a2e9660ebef6b30eda8a93ef3f6ce1304bc35b1324d38326f7b99a8f3e3e3b9ebaff446a1e

    Download Submit

  • /data/user/0/com.bulk.deal/app_webview/metrics_guid
    Filesize

    36B

    MD5

    6a6ce62dbccf51a59f0ae6414b054cf4

    SHA1

    baaa59bc077cfab6ea0a52be7e1607f69409803f

    SHA256

    a959049227f8e6742001b5247c2a47c0f723a8972b6bc01cd2a99e0350d78551

    SHA512

    92c8082bd4297cad505a2ecbcc5edfebe4f2b39416932ec52e111be1a97d073777fbb73006b826fa01cfab4d935faaeaee5718a135a69462b85c8142c8f76679

    Download Submit

  • /data/user/0/com.bulk.deal/cache/WebView/Crashpad/settings.dat
    Filesize

    40B

    MD5

    56f4eadc1a39f82b6a0eded720907a98

    SHA1

    a7d74756fd41a615dabfcb1437e97f3e4ca23225

    SHA256

    ff6aba0643ed0cfdcb18b592ba4db5c7beda09343c51f227ba21e881f39b46ce

    SHA512

    2863210ec9e8ec609cd0246b93d2cc58a036f026ca50940d61c2bd8ffa069facfe738912cafe7e41505e93a220fe04a600523b4137dcd6fd216377b128e84ba1

    Download Submit

  • /data/user/0/com.bulk.deal/cache/org.chromium.android_webview/Code Cache/js/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.bulk.deal/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index
    Filesize

    96B

    MD5

    adbfabfa121b30d74132715513c0220c

    SHA1

    6e3819a2a9e18722b0a5c808f407ad662e676676

    SHA256

    98becfe25f37a15aaf36463898cd9dbbf61b72db869a5f179cf8abcbae3c0f9f

    SHA512

    579274b8ad3a655055c7c441fa5cf5796bf4fab4de773ed427ed3ff577b216cbc30296330d37d27d2436914e602a6a8d32c97a0b565791b7777707a28ca852ab

    Download Submit

  • /data/user/0/com.bulk.deal/shared_prefs/WebViewChromiumPrefs.xml
    Filesize

    127B

    MD5

    6ef709b8536878951e87c29a1518fc2b

    SHA1

    24376c70b00152501b3d98df61fa7db435339172

    SHA256

    10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6

    SHA512

    96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

    Download Submit

  • /data/user/0/com.bulk.deal/shared_prefs/settings.xml
    Filesize

    116B

    MD5

    d238bcaede8d9fc88b09c0e7fa6248f3

    SHA1

    7dc3c46230aeff7499e958a777a15ba65d483933

    SHA256

    44b7e05984b2ff4a389f942dd8e2c6c948abb1edb92ad88d124472fb9ff974c1

    SHA512

    ef57d436fa7452f4d7a1e737351eed1a74155b8803ab28f838ae6cf134ca6b4be3a47731d024d2ba3c89bb26bdd24b68fb323f5b7d16c36712df42ac093a1a52

    Download Submit

  • /data/user/0/com.bulk.deal/shared_prefs/settings.xml
    Filesize

    163B

    MD5

    95f6cf275d56aef2102b62828f7034c0

    SHA1

    8117a0e4daf60ee6edf88e6992c764680be59890

    SHA256

    5dcaced0b68e0ccc444f98aa2e1eb657c177f808be3d65352b1381eb4c778e96

    SHA512

    6dd12b3f5091eea21604e412748d14e48f77ce03982768cfad754bd581a024b6ccb3e99ed094b4ac27493ac225c99504f6d55b215db2e9e11f1df234d86925fe

    Download Submit