Analysis
-
max time kernel
3733516s -
platform
android_x86 -
resource
android-x86-arm -
submitted
25-07-2021 16:37
Static task
static1
Behavioral task
behavioral1
Sample
03978_Video_Oynatıcı.apk
Resource
android-x86-arm
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
03978_Video_Oynatıcı.apk
Resource
android-x64-arm64
0 signatures
0 seconds
General
-
Target
03978_Video_Oynatıcı.apk
-
Size
2.5MB
-
MD5
3ae3933f6b8bcd87ad36fb6c9e299fa9
-
SHA1
1824133d552e3d7351dc5f8460456b9381088d96
-
SHA256
66e14d653714a39b9ce25bf32a3e5e42325381f3d054037ff4d628ba74c37ab4
-
SHA512
9f58239cd65fd4affdafe185fb2e3b8ff5cd00f0b2b96484d2ee13c1ef21d811e08e6ac281dedc0a4148b59560beb805f4ca76439f4a187ab3e574f32ac91558
Score
10/10
Malware Config
Signatures
-
Hydra
Android banker and info stealer.
-
Loads dropped Dex/Jar 2 IoCs
Runs executable file dropped to the device during analysis.
ioc pid Process /data/user/0/com.zyuujzoe.bexasnm/code_cache/secondary-dexes/base.apk.classes1.zip 5015 /system/bin/dex2oat /data/user/0/com.zyuujzoe.bexasnm/code_cache/secondary-dexes/base.apk.classes1.zip 4988 com.zyuujzoe.bexasnm -
Requests enabling of the accessibility settings. 1 IoCs
description ioc Process Intent action android.settings.ACCESSIBILITY_SETTINGS com.zyuujzoe.bexasnm -
Uses reflection 1 IoCs
description pid Process Acesses field com.android.okhttp.internal.tls.OkHostnameVerifier.INSTANCE 4988 com.zyuujzoe.bexasnm