Extracted

Extracted

• • Target

    5c3698ae03004b6832f15eb99df5ef302867a49d3226e281f8039fe72ed0f8db.bin

  • Size

    1.5MB

  • MD5

    b7def66ad2e2bd910336485aca48c0d6

  • SHA1

    5729f1e38b53a510edd157286a93e0f270d4780e

  • SHA256

    5c3698ae03004b6832f15eb99df5ef302867a49d3226e281f8039fe72ed0f8db

  • SHA512

    e8424e1777b08fbab8a3336f8122ce43c93a2ca0752d5258430d8c9b16dc4e59d73db37672f042ab8ba716ea587efbd77db77831a5a5c09a09b9d287d03f2261

  • SSDEEP

    49152:8OiW1vcReZzTP9ztjwNizB1+fuVdRwjY/aT:8OvBZwg+fubU

  Score

  10^/10

  alienbotcerberusbankerevasioninfostealerratstealthtrojan

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot

  • Cerberus

    An Android banker that is being rented to actors beginning in 2019.

    bankertrojaninfostealerevasionratcerberus

  • Cerberus payload

  • Makes use of the framework's Accessibility service.

  • Removes its main activity from the application launcher

    stealthtrojan

  • Acquires the wake lock.

  • Loads dropped Dex/Jar

    Runs executable file dropped to the device during analysis.

  • Requests disabling of battery optimizations (often used to enable hiding in the background).

    evasion

  • Removes a system notification.

    evasion
  behavioral1behavioral2behavioral3

• • Target

    165.js

  • Size

    200B

  • MD5

    2eb24bf77494aed7e151ba7917b9a1af

  • SHA1

    96175888cc38d77586f0e9160eca46cdfe2d5137

  • SHA256

    7034be765efd9d84608123ce46e0f1beab969492a6e407d9cbe230526d5a1d77

  • SHA512

    a0468a253640a7e2921642915dc40d58e0709dadd400780b2b67c064d05358fba7e38075ce826f69fb2335c9248522d5649c5e29dc399eb273ce2956ce21ce24

  Score

  1^/10
  behavioral4behavioral5

• • Target

    338.js

  • Size

    1KB

  • MD5

    6e75a49fde413fa606a96cc06e97354d

  • SHA1

    94b273cb24a6891abd183436c7f772bfc0ec9860

  • SHA256

    2642b34f371664bfb6828671927688fa19c80f6131ff28cd6d75a33411340d4f

  • SHA512

    5265d0568c49b8b9a6a6999a7274c4829961f3f7888a1fd7f3584a47c343682b5881ea179cc75e92dad063b5f2fb7f0e4d0bdb778e51cdd61487ccfb7c0da7d3

  Score

  1^/10
  behavioral6behavioral7

• • Target

    340.js

  • Size

    184B

  • MD5

    6c867651c159d352c1e1482a3cec9dd5

  • SHA1

    2bcb71c7373811a7dda46fd52306cedb80c9ae6f

  • SHA256

    11baa6a3044543913e4ee9a445f19f1437a52e3e04cccc9b604941f90c130ace

  • SHA512

    3a3143a0c6db929863f7da778bcd7e1ef3870e7ba21ef72fc31e2cc7eb8b18aad65d6ded10c00f5529113619dae5b9a50266b07a59fc88f0b9e987d763e50c91

  Score

  1^/10
  behavioral8behavioral9

• • Target

    341.js

  • Size

    344B

  • MD5

    e5908d056f6b8fe669eb14b32d1ae2e4

  • SHA1

    638f8b518024e622bbaaac6ead3ae7232895e2ae

  • SHA256

    c26ac31ee9fb03db7194e0532a98ebecec34ada1638d2d2b6fcc954bf0405e7a

  • SHA512

    4a956ea939e4bb8641f29db02d9be707ca8f207d6d98d2cb7fffaecd99767d8b57f770954b22d2bba4f5df881fc1423c1f8398cdb53d2cd4f29009276b1850d3

  Score

  1^/10
  behavioral10behavioral11

• • Target

    342.js

  • Size

    472B

  • MD5

    599d1e6ab95b65fcd04a9ec35d5197de

  • SHA1

    b4a1bfbc4565b7a638800c0204da4f1b97d9666f

  • SHA256

    16d88595b564244e1b7ef4e4911c84fb8c679b5da9ca1e2a97721d21dda30eac

  • SHA512

    98c938431980dc6522c0f9612e1eeb2ad92ad8151043ac5e6d47243291c3bc02b5e1ed2988adfd145721961c3451cc4e08fae113b6998dde1e7f26770ac37207

  Score

  1^/10
  behavioral12behavioral13

• • Target

    380.js

  • Size

    1KB

  • MD5

    6deeb35b81d87216eb8ce55523d612e7

  • SHA1

    e231fb87fcac3dd83fe18edfaec5a03fb45432d4

  • SHA256

    3cfe88480e3c01878188c2dca289b823ee349ab6b2e0dd63c35dfc7d74822a08

  • SHA512

    cb9e6b57d17c3cb7e81e7b01e253ffe09a8927772743b23360bf1cdb6833a0a38a8b4e3121493dc02725a9a1e549d37e3d4a59da4d022376ceb396fac2ed5f47

  Score

  1^/10
  behavioral14behavioral15

• • Target

    381.js

  • Size

    1KB

  • MD5

    9eb82cbb642e5a5e62a42e941910291a

  • SHA1

    febad3b03025c72af870e10482eaa01b6a07f11e

  • SHA256

    403c332350cb82166ec41669535e2e729e42a498eeec6189895c353cd2e603cd

  • SHA512

    3c8a6f9cc3758fd9d124bc7d453eddb887c22282510193627e58ea0e9292188f7a60aaab9d50d67d2ad8b418987bbfb51bb38944548ace701e115bd738618f4e

  Score

  1^/10
  behavioral16behavioral17

• • Target

    384.js

  • Size

    185B

  • MD5

    c2d37b8e18dae39bcb77ba0f8385497f

  • SHA1

    7e0ebd8b96a64c2f837da356d7464d57cafbfc0f

  • SHA256

    53d236ce555669dd30691cb49320e76c84a0ab6021d02cdf75ef5d1c1bd79883

  • SHA512

    368f01389f1af88610b0ea56bbce06ec4b8f5174b2e0ae583c20885eca47db281aacef3fe752bb4675cdab9581480e91aa2fbb523e706e2893037272d4dbd32e

  Score

  1^/10
  behavioral18behavioral19

• • Target

    386.js

  • Size

    813B

  • MD5

    0135c7d36d197c0c884cad7e222713e8

  • SHA1

    b334b8563f7ec057900c49d7f204ed5e59f11d44

  • SHA256

    e42d29d0465a836f44fd62fa03bab6b192ae71b4d4900ace11848a930df52288

  • SHA512

    6118281f61271edabdc86d647bff2558e4955ec5b233cfa8af5f4612ebd66a42a4adee3d2bcdf1cf5c7da2045227bfd0be9f36cec9a5e8affe1379ba848ffc43

  Score

  1^/10
  behavioral20behavioral21

• • Target

    387.js

  • Size

    291B

  • MD5

    767fe7185e1a9b2db299aa2d5b54ad03

  • SHA1

    abcf81e8f9aec42204ace8c305dc7a903bb606af

  • SHA256

    eddaa244756c74de395a53b9c8941c7eef122bf9301d8a1e1b9583395423464c

  • SHA512

    f461e0ab0ce9ed2470492d0ec48d1399af4d99f4afc76bf9df89f70e11eacdffccd3ad85b47b1708c6b00f170b6a1c2ca02c8e81d9017a3910b09e2a596b82d2

  Score

  1^/10
  behavioral22behavioral23

• • Target

    388.js

  • Size

    193B

  • MD5

    09451fa524d94ebdc1932e28bb9d0322

  • SHA1

    3ccb8907d1361fcee196ad19471754b1e41023d1

  • SHA256

    a8dd656cd1ff76c204bd72b09bd0a15d1002097bd5b672c3554a1d4dbfcfa109

  • SHA512

    257ef55e1f253bd0ed216b0c260b5f915e0bfd99b4324b35ccf4dbd8941540650811485fe56882724afbf58d3b459afdf499952a2de9f7f7718ce15e2fb8a893

  Score

  1^/10
  behavioral24behavioral25

• • Target

    389.js

  • Size

    630B

  • MD5

    e777a38a8d00735a07413863199563df

  • SHA1

    ea8ba4754f1fd37ce36fec8b7487f9fd1c65574d

  • SHA256

    3cc05e6199d597b0c96d4ad043993aae5a1f687d34b4627a63e6de114f3dd419

  • SHA512

    d6aa2bb6c49ec8c67cfa20bef6baccaf8ea17582176c49ec726504aa2438d2ab15e861bf2c3c5af2462df22a41fd1cfc13fb9782b2837593bb146679e42c329c

  Score

  1^/10
  behavioral26behavioral27

• • Target

    392.js

  • Size

    528B

  • MD5

    69ddc3569216b94ce17abf4cae93eeb6

  • SHA1

    21fd98b9e5fe405739a6aca3c2c25f6448bf75cb

  • SHA256

    3708801eb7f1ad28e2cac655d64b68aa94a465c09b99002f25e5d966e973c651

  • SHA512

    76eb60ee8292f7ee48d610d1b60d8b4a16267f07ea6dd96b281d093881d5bb3b670cd8df59033a42d3ab43d8d6140b5b679df94b3f12b0f507aa28366d06b531

  Score

  1^/10
  behavioral28behavioral29

• • Target

    394.js

  • Size

    538B

  • MD5

    3d1de2fc12ba1615deba05f48489a5de

  • SHA1

    8da33a779e6daaa9a31076eaeef9d8c6ec593df7

  • SHA256

    590a06dba2796ba1c87b45d8b912598c9c81514e8fc08dc37e452035de3105af

  • SHA512

    59a00b85898b91b691f7990c1e5fe8fea0a78112365b2db12facd93d2442a01e550397312aa642522a3d3c28e94a24692c8e9d0fee1dfdbc1e14107fb93186b3

  Score

  1^/10
  behavioral30behavioral31

• • Target

    395.js

  • Size

    123B

  • MD5

    caacabe72858603bd207f5ca0c7b4b83

  • SHA1

    16136742ea7809720908a825e62664224ef85335

  • SHA256

    76a23bf7d5cbde40460ff9d74b3929609062fa4ca4aa20c0d2a5d99843fee968

  • SHA512

    70acc36840a0906f145aba533ec2c662aab9c2e7286f202114a38adbe34ec0ce97c8762f2efce012f0ae632f497a2dfe1795d5a787028f184e9231a026a68f9d

  Score

  1^/10
  behavioral32