Overview

overview

10

Static

static

10

anubis.apk

android-9-x86

8

anubis.apk

android-10-x64

8

anubis.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    anubis.apk

  • Size

    213KB

  • Sample

    231011-mszn4sbd62

  • MD5

    ba7b1ba0830e11da60dec1c90632515d

  • SHA1

    b0a38160d78f9d0799c646d9f21ab65afb917202

  • SHA256

    8cb941658ed8340b67a38a47162ab8850b89a14eee2899f0761fadd4f648fd5e

  • SHA512

    b53be16ce325c094dd6c1188605b8abc1fbb7c085a4cacd9f9649d9fd4143e70ae9c49a718747f46860e0c3899704a8bd379c104107ad565fa6df980ba00d420

  • SSDEEP

    3072:daC6U6a1PPE/387RpOnzy3fmhbGluwXK6boURb0gqJo0DK0z5StS:sB9a1PgMOnzhxGlZjb0n9DK00I

Score
10/10
anubisandroidevasionstealthtrojan

Malware Config

Extracted

Family

anubis

C2

http://sosyalkampanya2.tk/dedebus/

Targets

    • Target

      anubis.apk

    • Size

      213KB

    • MD5

      ba7b1ba0830e11da60dec1c90632515d

    • SHA1

      b0a38160d78f9d0799c646d9f21ab65afb917202

    • SHA256

      8cb941658ed8340b67a38a47162ab8850b89a14eee2899f0761fadd4f648fd5e

    • SHA512

      b53be16ce325c094dd6c1188605b8abc1fbb7c085a4cacd9f9649d9fd4143e70ae9c49a718747f46860e0c3899704a8bd379c104107ad565fa6df980ba00d420

    • SSDEEP

      3072:daC6U6a1PPE/387RpOnzy3fmhbGluwXK6boURb0gqJo0DK0z5StS:sB9a1PgMOnzhxGlZjb0n9DK00I

    Score
    8/10
    evasionstealthtrojan

    • Makes use of the framework's Accessibility service.

    • Removes its main activity from the application launcher

      stealthtrojan

    • Acquires the wake lock.

    • Requests enabling of the accessibility settings.

    • Reads information about phone network operator.

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

      evasion
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks