Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
870799s -
max time network
142s -
platform
android_x64 -
resource
android-x64-20230824-en -
resource tags
-
submitted
26/08/2023, 22:04
General
-
Target
612122f55d5859458323f874ac961cb46291de4359284feec5bd6181d8b163cd.apk
-
Size
2.4MB
-
MD5
8622a39b4380236def5aeedf9071da6c
-
SHA1
bf5e8049840525019048001f79da4f6cf64deb6c
-
SHA256
612122f55d5859458323f874ac961cb46291de4359284feec5bd6181d8b163cd
-
SHA512
f57c877f88c5cee786845ab8d8896222cc6c3549da67d3e9549524e5505e014e9a9e71c63687b1971524380211bb0083adfc0a375b1fed17fd7fda915fb143f5
-
SSDEEP
49152:TE3nIbuMuSFUM+FlKa/9fU1qpx4WfcX8EA1LlMGgVIoREe8ZqSbc8tk3X0ghbbTf:uIbvuSFUdlKa/9AuncX8EA7WyaEFqSgp
Malware Config
Extracted
cerberus
http://bamosapportodassonparar1726.shop
Signatures
-
Cerberus
An Android banker that is being rented to actors beginning in 2019.
-
Makes use of the framework's Accessibility service. 2 IoCs
-
Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.
-
Removes a system notification. 1 IoCs
-
Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
Processes
-
com.capital.glass1⤵
- Makes use of the framework's Accessibility service.
- Loads dropped Dex/Jar
- Removes a system notification.
- Listens for changes in the sensor environment (might be used to detect emulation).
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
59KB
MD53f14ad45d6a1730f326dfa415649be7b
SHA1d5857627d4e22751f1d68eb3458bee20248479d5
SHA256997753d566e9c27dc3482f8f6966f1f6265100e9bbb073607aabcb25e80ae37c
SHA512daa1e8b7a09e40c679b9678a14f8a4ddff767a85e2db31c8c0b04bcd0d06d36c1430b66c4d3ea291171da423954a57d6ff4b44ce1e17c9b19d1bec8b7b17796f
-
Filesize
59KB
MD5aad585b9c555c81dc9d105dc8293d22f
SHA19fdcf243370318b6cefe50980e7da8e1d8f3b8c9
SHA256569b0e5470ccea871fca15fcf30ec3bcdc881956752bf6f025eacccb20313796
SHA51272d9945ae02be9a8b0c9dbfd2a6c94c3915d0b0bd2becefdfcb5f5f518db825b21ee174d227e83d2da1f31196695db415bf50f44a7130ace7d5044770f8e7130
-
Filesize
737B
MD526b839e0c9c9bac9a67e49d5c58b8a9f
SHA1eea3539bb4b98db9b01ca44bfb283587057ee7e4
SHA256533fa4c1bb9bdb2577d4386b90da137c43697819bf8a6dee2e48723c25446871
SHA51215d88343010d8626c8887f976b5411966737f3888a838128e1848473a2b7c36becc0c0c01585175005bb65aba8a6d9461f2ba05b34b090e0bd5fb7f6a9d2e34f
-
Filesize
116KB
MD5fe283e9408585871d94c3f88a141aac2
SHA192b34b5db5fcf90eebc1fd599ec632055e4f22f5
SHA2562d2b65e640092dc6ca5bfd2cfa8c6aee0ac973d9d66f6f64d103fbee63982346
SHA5121822ca2a9f514a9dcb6a30d0af1eba881d027fd20ea7e7f3dc6d720e5f6a0ae5cca0215e2729fd67a4d5e652e0344812ccd514c9264d1d3a4fc0a4895bbaa30e