Extracted

• • Target

    d4940401398aaeac4b523dca648577b1f39646f5942a19d62275df539afaa078.bin

  • Size

    2.4MB

  • MD5

    97b271ea24a9a983d381bf6f43df4e77

  • SHA1

    04ea7bb813711a257949e64621f6110c2a0f3ba1

  • SHA256

    d4940401398aaeac4b523dca648577b1f39646f5942a19d62275df539afaa078

  • SHA512

    cd0c32a7c1f80723d224f7ee17fbff0c8d8903616795a047bc425a9e09cc6c6504d37b2ec303ed791a98ed2c559097ebfec7646b81d062af3a1a524e00e24987

  • SSDEEP

    49152:rq0nLgpDpZ4lXrfXVCw5KvGEgXqV/W68dqPHONkhLCivXr/+d4+daP9KDQNrqMgE:bLgQXLXjoXexOlLCivXr26Om8Q1BgE

  Score

  10^/10

  alienbotcerberusbankerevasioninfostealerratstealthtrojan

  • Alienbot

    Alienbot is a fork of Cerberus banker first seen in January 2020.

    bankertrojaninfostealeralienbot

  • Cerberus

    An Android banker that is being rented to actors beginning in 2019.

    bankertrojaninfostealerevasionratcerberus

  • Cerberus payload

  • Makes use of the framework's Accessibility service.

  • Removes its main activity from the application launcher

    stealthtrojan

  • Loads dropped Dex/Jar

    Runs executable file dropped to the device during analysis.

  • Requests disabling of battery optimizations (often used to enable hiding in the background).

    evasion

  • Removes a system notification.

    evasion
  behavioral1behavioral2behavioral3

• • Target

    medialib.js

  • Size

    5KB

  • MD5

    35bd17961e0521030f7a9bba606485e4

  • SHA1

    b6920a2ff2888aab9a714b1e2808c72f82ce0c80

  • SHA256

    b22378c59d9a7138d28b79f4bf45865fcb731515ae57754ae3cceeb8c259223b

  • SHA512

    60b7fd9c8531bff98f269f8c4c039d734a21b136498144fecfa54552c9a2162e1bd25be8fe77758082cfcdb4f038a7b2b46fc5a629973763b7f5fc5622b6f64a

  • SSDEEP

    96:LNOoCV4HwgfExXAlvv75kYOfs64eC1kVGF6Uc7:5QVowgfEpuhSs64eC1kSO

  Score

  1^/10
  behavioral4behavioral5

• • Target

    mintegral_jscommon_authtext.html

  • Size

    24KB

  • MD5

    6a416e20900ae42310f8292d35fb3bc6

  • SHA1

    df575de73fa6c78548380b50769e22da00ac5de4

  • SHA256

    c852a0e576c92a4d1dbe44b208f49c359edd7e55e3da7e4cc2d23c9bd29572d7

  • SHA512

    7938f1c76f6481833e5cb526897ea66e85dc3cd93650072a5e473b0555e3f2e41c218f747f06087202da401aba8031e1d25ee6d5deb5527a7ff0e576d877e5d7

  • SSDEEP

    384:fktab/uxiFrIv8O1JKd1MFxLrR8RyKX1CvGdm65Apv:s8b1D1E5rR8DBdBs

  Score

  1^/10
  behavioral6behavioral7

• • Target

    parse_movie.html

  • Size

    2KB

  • MD5

    16e55a288dbbcdf5ebf301716beef02c

  • SHA1

    0b87695d2bf106db0c3e071f6c0a50af82fb674b

  • SHA256

    f34f9581110b58ae4bd6414ba916a1ea8d879655fb60e22ed0cdb2c549f1d90b

  • SHA512

    f41383fa0e8c6053c3aea67883f7dec53afeccd97deb27882611ece0324297d39a32a8e620b8992ff91622daf5bbeff5f610e396c3657aef88035511a0d8853e

  Score

  1^/10
  behavioral8behavioral9

• • Target

    parse_online.html

  • Size

    4KB

  • MD5

    45726b54b2dc3c6802ab2a82570bb830

  • SHA1

    14b63767f873f097ebea69ec24a58f0cae699930

  • SHA256

    61a3926e57817ec312febf9f770011d8016ca3691c8b05def4e916bd941710e8

  • SHA512

    4ee12705ae20ed3d4746b44bb6b133f4f16be2eb0006239793405b7849828a1ab7ce0888f11ecf3fe5aa25856ef4618eb8ad83b1e3e129a7fff8771a84200bbb

  • SSDEEP

    96:yEeU0GmflddIiG4BiFA/xSn6YDB0U0SM99dkC16Nu:yEx0Gmfvdw4MESn6Yl0U0SEXk66Nu

  Score

  1^/10
  behavioral10behavioral11

• • Target

    parse_search.html

  • Size

    389B

  • MD5

    32e2bf600a30bb974bd5a1c66c09fd24

  • SHA1

    416519b36cf72f7307f2310bf8854c5370a0f6a4

  • SHA256

    b81b71ae8c990f9ce8fd86cd08ef3b31009838f85a8db4637f66a080e908a379

  • SHA512

    7f5cdb43e01927d66f3c3ea2faf6e588b547e2107496a8b5046857f9642b0a0c4e5ccbf3e1f434d26b33785077da2ba9934c06bfcb9bbb66c65d4453dab98dc4

  Score

  1^/10
  behavioral12behavioral13

• • Target

    watch_loading.html

  • Size

    2KB

  • MD5

    b5db82519180523f4b799e541169d2fa

  • SHA1

    f9580a7d3e2610c035f09998d17e1f3f1764e459

  • SHA256

    a3429657515bf003197922ef24b1a325c1aafea1dfaf750864e3f18610565c54

  • SHA512

    60a5ea2462e07c4b35be8fb5d7f13d57abdf68486b02b9644517ac5774ac85b334525a816e09d705bfd345b05b79c95e5046339411d6df9220636ca4fd525020

  Score

  1^/10
  behavioral14behavioral15

• • Target

    ytaplayer.html

  • Size

    2KB

  • MD5

    e31ae81b861fd91190d4cf7fc0e142e1

  • SHA1

    6f000195ca0e74f23651dec4b683ffc76f9807a0

  • SHA256

    c3a67341d9f4e64d7116d40216bfd330e40a2eb4ee728dbde1199a8f28ac861c

  • SHA512

    1d59ec66145e304b278df08e0e9a68324a3a8fd67db9d86b35f4e7a1bfe13a2f4c615d8740b33dfca6c6f9eb048decf6b19f036cfc6f683d6d6342dae2f9a013

  Score

  1^/10
  behavioral16behavioral17

• • Target

    ytaplayer.js

  • Size

    9KB

  • MD5

    ae723af9abcb29b929e696ff258b2138

  • SHA1

    5c1a7bc9f4214f2327d9f5e24fc1d2b0563892ae

  • SHA256

    8ba90933d972f0a1722abf12b94f95c3429b0acd461ee458bbfaed8e7d452052

  • SHA512

    341b0234046f6eed1f4e873e6223ff6aa16f267db8042c90a8f95e17b274eabfe5133b244b2ba2f72dc2a5042479e784cb8a7abcfaf74a3e8d03e1880115ed0c

  • SSDEEP

    192:65GGJNCPqtCd7QBzJX8IzBrSgTuLR4LbpmLiJyaA3kcyI:cR9q

  Score

  1^/10
  behavioral18behavioral19

• • Target

    ytaplayer_diagnosis.js

  • Size

    1KB

  • MD5

    58e8ca34de750fde3573fa536ec83e89

  • SHA1

    b241c91c2be259986c42527ad874dce38950714d

  • SHA256

    be1cc6f824573d5013d2371045bfd758fe8a00fb11f77b5960875acd403100c5

  • SHA512

    1e479af3b3cc7470a94cdb161362915cd624e0f07feb7ea2b0d67b343aa03f901e2de6103ddfb93cf03c4fff882c3f7ff50b24262b52b35141ec12eeb00a563e

  Score

  1^/10
  behavioral20behavioral21