hydra | 676e369114e1052db252e5a93b76ae3cbe86e6afefbc0ca41810d2be983890ac

Analysis

max time kernel
438214s
max time network
109s
platform
android_x64
resource
android-x64
submitted
06-08-2021 06:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

90152_Video_Oynatıcı.apk
Size

3.1MB
MD5

6e4016cb79bcd119270acf542712b2fb
SHA1

7b75c91b636d63ea009d94acce954931f4d863fe
SHA256

676e369114e1052db252e5a93b76ae3cbe86e6afefbc0ca41810d2be983890ac
SHA512

4f3c7dcf227f1a942ed74a8070f3580248b9b1a946b5d214d3c5ed81aa41d1d38f48b6a9c0077170950d4a4a22d55e91ee60c949851ee16617cb0de1f67d35af

Score

10^/10

hydra banker infostealer obfuscation trojan

Malware Config

Extracted

Family

hydra

http://glennnewton547458.xyz

Signatures

Hydra
Android banker and info stealer.
banker trojan infostealer hydra
Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.

Processes:

com.qyiqeqhd.gbdvmbz

ioc pid process

/data/user/0/com.qyiqeqhd.gbdvmbz/code_cache/secondary-dexes/base.apk.classes1.zip 3715 com.qyiqeqhd.gbdvmbz
Requests enabling of the accessibility settings. 1 IoCs

Processes:

com.qyiqeqhd.gbdvmbz

description ioc process

Intent action android.settings.ACCESSIBILITY_SETTINGS com.qyiqeqhd.gbdvmbz

ioc	pid	process
/data/user/0/com.qyiqeqhd.gbdvmbz/code_cache/secondary-dexes/base.apk.classes1.zip	3715	com.qyiqeqhd.gbdvmbz

description	ioc	process
Intent action	android.settings.ACCESSIBILITY_SETTINGS	com.qyiqeqhd.gbdvmbz

Uses reflection 3 IoCs

obfuscation

Processes:

com.qyiqeqhd.gbdvmbz

description	pid	process
Acesses field com.android.okhttp.internal.tls.OkHostnameVerifier.INSTANCE	3715	com.qyiqeqhd.gbdvmbz
Acesses field javax.security.auth.x500.X500Principal.thisX500Name	3715	com.qyiqeqhd.gbdvmbz
Acesses field javax.security.auth.x500.X500Principal.thisX500Name	3715	com.qyiqeqhd.gbdvmbz

com.qyiqeqhd.gbdvmbz
1⤵
- Loads dropped Dex/Jar
- Requests enabling of the accessibility settings.
- Uses reflection
PID:3715

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.qyiqeqhd.gbdvmbz/app_apk/payload.apk

MD5
3baeaa766ea7f31a9147208efd957c75

SHA1
c701de3d0e55425394ccbf8e0967639e86f3c54e

SHA256
75e162dc291e15d13b0f3202a66e0c88ff2db09ec02922ee64818dbddcb78d6d

SHA512
9f3ccb1fc9a177524ba2d39f809be4851af385073463893bd4a8664308253fc0da2b9ab330c85675dbe9ce0c44b631a0d1ec7800491687c7b2540504b351295f

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/code_cache/secondary-dexes/MultiDex.lock

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/code_cache/secondary-dexes/base.apk.classes1.zip

MD5
030565b714fcd83a0c05d372118bd9ba

SHA1
aa2a981ebc823886899dcdf768c1e27954ac61ce

SHA256
f5651a4835cd1e55b7297bc2b986b60d6f97e69e4c1168f75d1fe8d3ba82ae00

SHA512
8607e8eee78934d85986aaad1282f2190fe37aebf924735dbccf10581f02e49a3a43f4bf6f15ad1eb84598885d5b6177cceb7ae7d68825c5db1922c5c02d9d28

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/code_cache/secondary-dexes/tmp-base.apk.classes6868921289939566442.zip

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/shared_prefs/multidex.version.xml

MD5
dc3bb968fd0931bcfe8e2b35f57315a0

SHA1
5db001b87dd2854ee1eba9bee869003067883048

SHA256
4bb02b9ab76624ac1cefea57720829e6976e0257f899e91675550f833f55d7c9

SHA512
7804d516db5cdaa3d97397b63309977383a3adfa714f2e27085a57d0bf144ee867e95d3b4c4a21aa1072a1588d53d92c15b5fd73dbecca1a5bc1f06a07d82902

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/shared_prefs/pref_name_setting.xml

MD5
d19d6780651296398335fcd8ac509cf5

SHA1
37350e825f9ad799b7057ccb0f42859a3025e00a

SHA256
86b213ba3b2757aaa941850e7174369353300d4775822a968acd2b97cd19bee8

SHA512
83122b7b7801d110cc4c4c6c5ac6199a1361bf94540f5d62b986ef769f27086e365314011873c10176d5806d9903924ef07f303c460291f416ce311594828491

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/shared_prefs/pref_name_setting.xml

MD5
9a716fd59acdd3a41ef7c24c7de0425e

SHA1
4a7140f10d158085cfbc2ea2f574f8aa09a769ee

SHA256
d36b11495f4a13f56a71f0d74462710da82aa7309790ee12a2a2b10492b64801

SHA512
ed3ce5acebc5eed7aa94fdec02bf1b91ac3aba25f26f79ecd66848a06daef33e9b17fd2cabf8e547f54c005fec33b46579bfe4281ea9664898e1fa107ff0211f

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/shared_prefs/pref_name_setting.xml

MD5
0f3bb9153029df4e1b0785fa0c636d75

SHA1
4cbfc7710c8b2d3e7c3779d5514b701f2dae46f0

SHA256
480c87f5d93584bee3cbe33e1040b0c6ec78df34a8e004908eb714db21b3c893

SHA512
e4de3936142796b48a98781ba6494aea47cb7c4cdb8924006b395850c16e90cc31cf0a2066fc07de9e29f714998ada0da76399af9a3b6e3c57bfba2213738885

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/shared_prefs/pref_name_setting.xml

MD5
ded1e136f4139ff42ba9c02b9d48f929

SHA1
ce29ed8be7519c766797b543f357cb1d8d49eceb

SHA256
9860960d814669fd666a9ac486063353d47f5df2c377f7e1166c63f45f8cecd0

SHA512
ce6cae16d2322cdc1afd74715563e286927b794cd6bfeaeabcff5e5d1cd737922431567718c416a267805b4851ec3ff88baf621a8b57f9d758c1f4dc53cfb4af

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/shared_prefs/pref_name_setting.xml

MD5
2f95b91c09dcef6a16cd7d721ca46548

SHA1
f3b464e232380fdf210a069ab8b84385f692b303

SHA256
4e817fdff5d0170910502b8345d76fbed0feb26f804f1cd067d5c3e8f9c0a2f2

SHA512
3f6795a63031aceb98506c348ac300f948a70ecbcf28cb1d7f53c13a0060b890b0b252cb7534b49322c065ba5ad037011ee4f78a0f8aaa0c2333c0fd91efa66a

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/shared_prefs/pref_name_setting.xml

MD5
756d2c033ca50e19bd965c55cd67b493

SHA1
7692cd1e92e6f75383411769805fe736184f7873

SHA256
5ee88c93dd34df19f956ef2cede53dad73ca26bf02a9a61a2d0418f95ffcbe94

SHA512
f03c608b7d493ac7429f32036f5a651a07ff9253fe27497eb32ad905bfd236c6ff1aa2886fa68efd81c77dbe6f50ceaab32c721e5a0438898ea89309f0aa164c

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/shared_prefs/pref_name_setting.xml

MD5
a9047cb88397d7f4c3979b9545400c06

SHA1
4f1caf61bda084cb9a9f5593d554e43ad60e6903

SHA256
b0fcbb7ede24a01580c7732e58e216084ee6aa055b82d55028c9a2c47dd45839

SHA512
1455924d0f7fe31a29a6312883f6e4230aae6f6b5b649ebaae2694345ebc97cb625e041f908ea11c20dec516e31899f86a1a382433eae20c99edee1554c2db97

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/shared_prefs/prefs30.xml

MD5
b6e8ab9e578df49e49a2d8c311208934

SHA1
3380b6137e8ec4331b488262547efb72a619aac6

SHA256
c60680ed16146c956b1ac45c515f65f4228d793711cd599ebb41944678e96a58

SHA512
f60d44387cd84bcd4d8312f80fc64e9a94855a42ca6ed9f0ad716ba90409f94bd1f2358c8afdfe3558c5d92c2e449afabcd1885beece4eb194080c417b4b9272

Download Submit
/data/user/0/com.qyiqeqhd.gbdvmbz/shared_prefs/prefs30.xml

MD5
12d6ab1d27552f5788e1667ec0eb1360

SHA1
f0c1a775a55b7bb45fe65579b526cf4360c0c4d6

SHA256
52e178aa40fd1c71b3a4e8fdfb73fba744ac754430d94697f4d2aaa6823c0d18

SHA512
87eb0dba3f5fbb8801a5b8a07849c8634698d64333f77d548f4596221d2f3d7cba7288ebb0fe0b7f9357add2636b07c6e9cd24aa887dd6cce6d22a1b7e2d3d32

Download Submit