Overview

overview

8

Static

static

Fatih Turgut

android_x86

8

10minutesfirefox

android_x86_64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5c527a2bbb2894a199826059892202c28b7c0258c5dc7567fe9249332594fe8d

  • Size

    765KB

  • Sample

    201122-6rpwmnbxlj

  • MD5

    8e0d8b35aa77ced25b40ca6986696a0e

  • SHA1

    e84c092a44400cd1face3d806349dec99f172f4e

  • SHA256

    5c527a2bbb2894a199826059892202c28b7c0258c5dc7567fe9249332594fe8d

  • SHA512

    76237f1a0da2a0799c91f87e9ac8bf53db5df0b976ab3399162a7e457aae5d6d342b9f52b5e112a89fc916e8600561392b09210bbad8b30b98caf6a241d29bd4

Score
8/10
androidbankerobfuscationstealthtrojan

Malware Config

Targets

    • Target

      5c527a2bbb2894a199826059892202c28b7c0258c5dc7567fe9249332594fe8d

    • Size

      765KB

    • MD5

      8e0d8b35aa77ced25b40ca6986696a0e

    • SHA1

      e84c092a44400cd1face3d806349dec99f172f4e

    • SHA256

      5c527a2bbb2894a199826059892202c28b7c0258c5dc7567fe9249332594fe8d

    • SHA512

      76237f1a0da2a0799c91f87e9ac8bf53db5df0b976ab3399162a7e457aae5d6d342b9f52b5e112a89fc916e8600561392b09210bbad8b30b98caf6a241d29bd4

    Score
    8/10
    obfuscationstealthtrojanbanker

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps).

      banker

    • Removes its main activity from the application launcher

      stealthtrojan

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks