Extracted

• • Target

    56f114a308194e9804635afa69c8edae27d2a64f0cfd6991fc62eec12e9b941b.bin

  • Size

    1.8MB

  • MD5

    59daaa414b30e52072b056b78300e3e7

  • SHA1

    0a4e9326ebb657db5de4716ed96b264edeb7b441

  • SHA256

    56f114a308194e9804635afa69c8edae27d2a64f0cfd6991fc62eec12e9b941b

  • SHA512

    ce3e7b9ea1f7236b4830d03c7a46367331da969e15613e4b261c225d4fa2ece3ce5ec58b2dbb787580ccb9f9d0d5c318ae8c3d60b1c9873d52f8a30e097edda2

  • SSDEEP

    49152:GKDkRK5ciwVZYt+JJ2f4N3jnx6wPm4i9eV3GZWa0U1:JkRK9wDYtl4N3jx6wPmv9Gs1

  Score

  10^/10

  cerberusbankerevasioninfostealerratstealthtrojan

  • Cerberus

    An Android banker that is being rented to actors beginning in 2019.

    bankertrojaninfostealerevasionratcerberus

  • Makes use of the framework's Accessibility service.

  • Removes its main activity from the application launcher

    stealthtrojan

  • Loads dropped Dex/Jar

    Runs executable file dropped to the device during analysis.

  • Requests disabling of battery optimizations (often used to enable hiding in the background).

    evasion

  • Removes a system notification.

    evasion
  behavioral1behavioral2behavioral3

• • Target

    bootstrap.min.js

  • Size

    76KB

  • MD5

    3b0446cf80dff3a0292be13d4f039ab9

  • SHA1

    332220a2e33a59c9d27bf8199aeaa548a8dc9341

  • SHA256

    c91b210d922dfc5d18976c860c280de44c14777097e279500da8fbb06b4aea6b

  • SHA512

    9501918e786ba1433a1f55dd44f856711e063b3f6f66b680d734258b25239e53c003b93a2a44297aa701b1777c248c8b0614f30f311504a2692838a653d59f75

  • SSDEEP

    1536:itAs7TPR2t4qqDMi/GgSe7hyuvsnKjIx8L0Sem49MVcUzo:Yx/XIe0Sem49t

  Score

  1^/10
  behavioral4behavioral5

• • Target

    epl1.html

  • Size

    12KB

  • MD5

    3e7834963816ca77838268576a8b74b0

  • SHA1

    5ffc057313b98733454f70b111bab2dfd3dc583d

  • SHA256

    100060f98b85e04f3c5b5b4f9be014396b7247ba3bb142c806556618dc3c482d

  • SHA512

    fb33d7aeb25c74b83d5bf6eeca35ca6781e95115c9e9bf086ee326df14c6f4a4c42bfbdf990b3339cb783c4b0b9d7d5ad6dffcb680a43567a85d8e96c49be10f

  • SSDEEP

    192:lanSWw8dYMuH9OJ6wBnmJht5NFY1khHVh5zxQumM9cupXXfxZe1rJJ:l6SIKWHODY121Rmxsf6L

  Score

  1^/10
  behavioral6behavioral7

• • Target

    gpl_3.html

  • Size

    33KB

  • MD5

    5851f1dcf33b54befced1f620808e985

  • SHA1

    315b4e8585e7b3dd295cd6ae14acaa7317e949f0

  • SHA256

    ec7755520ab49908e26961200839cb5716f483bdcbb6678a23b425196ffb499b

  • SHA512

    ffbdc7389cfba218e3e752282e953b2f9088be4e138e27f73b1a48ce0fc6331c30bfb88f392b7519c15ea27fb34d6383401f91edfee24d6a1e27ecd2e606bf86

  • SSDEEP

    384:Hbslv0tYdMy1Ic73GAvV+XbTQ25IT3MkZDHXSkPO/aWCGBBm0LLfCgJCJnePxa9Q:HbsBRnIcJCQTckZDHXria9Mm0PC5eA3S

  Score

  1^/10
  behavioral8behavioral9

• • Target

    howto.html

  • Size

    1KB

  • MD5

    66ed1495a988b3041c43dcb6be845f06

  • SHA1

    71df8f01c5383c0b4ff944c4f658c67f13df019a

  • SHA256

    6ef817130ad84e1ab11b6124f2223ab17277e6942a79f95d62f150bf5dc6faeb

  • SHA512

    167ec0507083e7f0bd1233d5b0079fd0df4ae9d5d7ef698ca78b82a028ecbd4d1b8f4ad1958c7d972dc185c544a577c9a05d8c66c322cfa70d9ab09d7081fbdf

  Score

  1^/10
  behavioral10behavioral11

• • Target

    jquery-2.1.1.min.js

  • Size

    82KB

  • MD5

    e40ec2161fe7993196f23c8a07346306

  • SHA1

    afb90752e0a90c24b7f724faca86c5f3d15d1178

  • SHA256

    874706b2b1311a0719b5267f7d1cf803057e367e94ae1ff7bf78c5450d30f5d4

  • SHA512

    5f57cc757fff0e9990a72e78f6373f0a24bce2edf3c4559f0b6fef3cf65edf932c0f3eca5a35511ea11eabc0a412f1c7563282ec76f6fa005cc59504417159eb

  • SSDEEP

    1536:kPEkjP+iADIOr/NEe876nmBu3HvF38Nd+uJO1z6/A4TqAub0i4ULvguEhjzXpa98:7NMnJiz6oAQKP5a98Hrh

  Score

  1^/10
  behavioral12behavioral13

• • Target

    keyboard.ts

  • Size

    9KB

  • MD5

    799cab0bf6867cb9ee977b2b21ca0431

  • SHA1

    4f94e15287610b763d463d3842fb6d44c8199c21

  • SHA256

    1da580aad511ba7a4de65e697428aa793165cfda5cbc238f69cd05990fac569b

  • SHA512

    bde400737c48100116e9d8dd063d261662f5cebb0d5d888f643b1d2fee637c2e907465e21e31765553a84ea1fa93824279ccf2942d5588b2b86a4d216cfe167a

  • SSDEEP

    192:oKKtei1aC7mdEzpM5X4NwSr/ynd3X37Pqssk4Yo13ZikEyb1isFtR:oKKteigZP5y54dnjqs34Yo13wkEyb1io

  Score

  1^/10
  behavioral14behavioral15

• • Target

    libcore.so

  • Size

    21KB

  • MD5

    fce4c83f53e0a62d94aaeb1bbaa56335

  • SHA1

    52bc0306f2891532849fc731cbf8cb8f36230006

  • SHA256

    9affb070b79ad3a1f367680c289109f0d24184282ed7e1b9fa62eef3d2e15826

  • SHA512

    df5e3954c37d006e0608b46f4822cadca7451f9f46c39646b59f2bd9b37940ec3778387e1db7ed18d04c3040128975333da0a54ff99a7f451a957163438f77e3

  • SSDEEP

    192:JspBXznOMzBlNjWc7yZ/dxnmyew7xBLEFj3DrVpVuV7VtL8tq9LF88Q9aaqtmYYl:ClSb5/dxhe0BLcsECJ5IYYGoBoWmGkuN

  Score

  1^/10
  behavioral16behavioral17behavioral18behavioral19

• • Target

    libnative.so

  • Size

    210KB

  • MD5

    9565cf6eb2918371ff1988c87fb94f3c

  • SHA1

    4df7bcc08f885b07be09cc127de6dd8480796d93

  • SHA256

    f7eaed9d2ed7070433bb75eae75408fb474210548ca9707c1d53db6e00185165

  • SHA512

    eee75b82cdb4aa8c3fa2bba8d93821cd013fb201477218cb5e256c7010fc07db27ef6d3eeebf47e9d68c3534f83a317d5f4d9df75c69528f5b295bb90952b45f

  • SSDEEP

    6144:b7F1Ql6Tqs9Wn9OUfT4toCDEhL0zi/7NOK0D7ueGhzHr/j3bvi+62Suqmlx9JVhq:b6zHr/j3bvi+62Suqmlx9JVht58IUgsb

  Score

  1^/10
  behavioral20behavioral21behavioral22behavioral23

• • Target

    mit.html

  • Size

    1KB

  • MD5

    2b59448d2bf91d9936df3d3d99512ed4

  • SHA1

    07db88895c80a16dc12c7792feb8b515e883b3e2

  • SHA256

    afe4673d52c4a4124ada793652da0c69f93dcde8ca89c0ee82ff17d34c5c9139

  • SHA512

    c7efc4a9bba5b3212db627e00a85cd736aa872e30f9eaffe7161a89cf0c8eb2d8b337ebf0009000b7a165bc8e4e6498c237925e7649151138ab499d092df0784

  Score

  1^/10
  behavioral24behavioral25

• • Target

    mpl2.html

  • Size

    17KB

  • MD5

    ea5774e8329852655bb7200eadc27752

  • SHA1

    b2276a8ef099ac79566dfdc7f10185391623e8ca

  • SHA256

    8a6321ff9c6cff54621744534fb98232e09994c80c305b9fb5f6d70e8c9b84e8

  • SHA512

    9eb04c4effacf9b6eb36f2fd28e0ee7d9487748aaf801d4c9df9ccc5f0dbe25384e46a140c0181a77d1d704ed5c6c3754c6fd6a4ad4def472c13aeeeac9ebec6

  • SSDEEP

    384:/6HmBmFwcg8UJsqsQInUdaebkIABBDrR8GzAi7W:/6qmwL8oxb6BhR8GUi7W

  Score

  1^/10
  behavioral26behavioral27

• • Target

    mraid.js

  • Size

    40KB

  • MD5

    6c5dc1711df01a9d43b5777cb790f852

  • SHA1

    a848e140eb214102bf4bf7cc43ed47e62a48dfc3

  • SHA256

    a14616848262f5ed49f0727c4dc40b95df7c2e3d145c4bed91d3a1183d9e9399

  • SHA512

    00d4f7897c3d7f4c6d53fbad32addc97ccfdb781d7792e775c51e385fb90b43694d74bfd7e82dce6ea5c185fb91143f8a01bc4408a3f73bd394091d54031eaff

  • SSDEEP

    384:EYSdGfT2QJIGCOIyzuP2QESHmz/SXZ3hsyGENyyFXHjFeYSpyObjw7NLhdlrdT97:RXaoyFX7SIXEmz

  Score

  1^/10
  behavioral28behavioral29

• • Target

    mraid3.js

  • Size

    33KB

  • MD5

    ae298dd4c1116d1d30eb17a152da23c9

  • SHA1

    a173dcb77aac246113719ce61330ae8590e18103

  • SHA256

    39c4e050a9bf6df63d5c8ba592aeec0fb408fc319ca64c8ad545291994c99f76

  • SHA512

    2b35f65ad78f0ed776c8377e8bc1c1dc3c576953ae80ee3a372c90d3a324438dda6fd4353b4c552317803b1b2bc7b2509632a202152d71620dacdee072344fd5

  • SSDEEP

    384:eqqirtUfUNi40m7HBSHC3fACmUAxUbhhMjHhhMhEFO:TqilAKHyU

  Score

  1^/10
  behavioral30behavioral31

• • Target

    omsdk-v1.js

  • Size

    39KB

  • MD5

    f408c2f4c6e711f9e88ddf96080e51d2

  • SHA1

    304fc64c0843826ca8e012b1936be80c2a3f170f

  • SHA256

    da28b9fcd31070b16280936a036a0a320073f211f2a4920fd4aacf1743c5bb4f

  • SHA512

    e87a6224aefc542815783462ffeede323c9223d72e58262a7747215429c35fd73e27bc9cced535ebaf80691bcedc5d32a3406fafebce57a7e00ed9cfe1e0649e

  • SSDEEP

    768:X6kymXjv8pPXwfBKn3ySNCTTUpdkxs8oPq1KMIQ2/9vt5ZBFus9cAZhmUsadz6f4:X6kPXzps3/T8oPq1KMIQ2/9vt5ZBF59T

  Score

  1^/10
  behavioral32