Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
3556794s -
max time network
151s -
platform
android_x64 -
resource
android-x64-20231215-en -
resource tags
-
submitted
04/01/2024, 10:22
General
-
Target
409aa172dfc9fbd0bb65d73afcae12c2.apk
-
Size
133KB
-
MD5
409aa172dfc9fbd0bb65d73afcae12c2
-
SHA1
16625481b1732478b465d470acb7b364208913fc
-
SHA256
875d380488cb27c1c6fd9d4e875eba110b716f3d3bc702344a2d3665b8256f56
-
SHA512
8899023983a8aa141dcab80afaeb2c6542a47ffbd6bf501229dd222ab2f841618e6ec09c35e7b00de291e4f2cd4a9fad827209517998b6dbbb27867188a22330
-
SSDEEP
3072:ZGwAldQ6EsjZbga4fLRos0buLuIQ2XzXcvu7:ZGtysVEakos0bovQ2jsvu7
Score
10/10
Malware Config
Extracted
Family
cerberus
C2
https://herzamankigibigeneburdayiz.xyz
Signatures
-
Cerberus
An Android banker that is being rented to actors beginning in 2019.
-
Makes use of the framework's Accessibility service 2 IoCs
Retrieves information displayed on the phone screen using AccessibilityService.
-
Removes its main activity from the application launcher 1 IoCs
-
Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs
Processes
-
com.ffnasoyeldwbv.lly1⤵
- Makes use of the framework's Accessibility service
- Removes its main activity from the application launcher
- Listens for changes in the sensor environment (might be used to detect emulation)