ginp | 454157fddcd4c4d414d20be52c57b9eb900dee819f426a3a101e3bc4e4aba8e1 | Triage

Submit
Reports

Overview

overview

Static

static

Android APK

android_x86_64

Sharing

General

Target

454157fddcd4c4d414d20be52c57b9eb900dee819f426a3a101e3bc4e4aba8e1
Size

3.0MB
Sample

210415-t6134e1wte
MD5

0ee55f288a1f8f9995e2d3c839c43ba4
SHA1

7efafdf39a3c0b07f5b10b21f313cf07ccf599a5
SHA256

454157fddcd4c4d414d20be52c57b9eb900dee819f426a3a101e3bc4e4aba8e1
SHA512

29b41ffb38a9d25fcaca1d237c92a01533c57c24deef74dbbbbce671f710f53ea6211002f5b5390a73abb3cf5a031d8237bf8d8dec40c7974cda900e29c111be

Score

10^/10

ginp android banker infostealer obfuscation stealth trojan

Static task

static1

Behavioral task

behavioral1

Sample

454157fddcd4c4d414d20be52c57b9eb900dee819f426a3a101e3bc4e4aba8e1.apk

Resource

android-x86_64

ginp banker infostealer obfuscation stealth trojan

android_x86_64

0 signatures

0 seconds

Malware Config

Extracted

Family

ginp

C2

http://coldcoolcoco.top/api201/

http://jackblack.cc/api201/

http://sweetseventeen.top/api201/

Targets

- Target
  
  454157fddcd4c4d414d20be52c57b9eb900dee819f426a3a101e3bc4e4aba8e1
- Size
  
  3.0MB
- MD5
  
  0ee55f288a1f8f9995e2d3c839c43ba4
- SHA1
  
  7efafdf39a3c0b07f5b10b21f313cf07ccf599a5
- SHA256
  
  454157fddcd4c4d414d20be52c57b9eb900dee819f426a3a101e3bc4e4aba8e1
- SHA512
  
  29b41ffb38a9d25fcaca1d237c92a01533c57c24deef74dbbbbce671f710f53ea6211002f5b5390a73abb3cf5a031d8237bf8d8dec40c7974cda900e29c111be
Score

10^/10

ginp banker infostealer obfuscation stealth trojan
- Ginp
  Ginp is an android banking trojan first seen in mid 2019.
  banker trojan infostealer ginp
- Removes its main activity from the application launcher
  stealth trojan
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

ginpbankerinfostealerobfuscationstealthtrojan

© 2018-2024

Terms | Privacy