Overview

overview

10

Static

static

8

54738_Vide...ı.apk

android_x86

10

54738_Vide...ı.apk

android_x64

10

54738_Vide...ı.apk

android_x64

10

Analysis

  • max time kernel
    587469s
  • max time network
    138s
  • platform
    android_x64
  • resource
    android-x64-arm64
  • submitted
    07-08-2021 23:44

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    54738_Video_Oynatıcı.apk

  • Size

    3.1MB

  • MD5

    af830c008d42babdcdfd6520198e2ba7

  • SHA1

    e92981cc645439f71f2b5892d940da1b6b84744f

  • SHA256

    90afe99519b428fb7b39843af48838d70d997568609417e9d242858d3eceace8

  • SHA512

    2b0b8eac9b9601e6e3f9280aaf47407d6a7ce0599dbf90a9df12ff5353c0f6cc5a6760ae357ddedd4bed4c6ffe82161bd6011b0a3553e3a354f70dd44d5e86df

Score
10/10
hydrabankerinfostealerobfuscationtrojan

Malware Config

Extracted

Family

hydra

C2

http://courteneyguerrero584.xyz

Signatures

  • Hydra

    Android banker and info stealer.

    bankertrojaninfostealerhydra
  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

  • Uses reflection 3 IoCs
    obfuscation

Processes

  • com.dezjpspf.pjwtyzt
    1⤵
    • Loads dropped Dex/Jar
    • Uses reflection
    PID:4202

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.dezjpspf.pjwtyzt/code_cache/secondary-dexes/MultiDex.lock
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit
  • /data/user/0/com.dezjpspf.pjwtyzt/code_cache/secondary-dexes/base.apk.classes1.zip
    MD5

    0d4f762c85536c385cdb88f8d2e00975

    SHA1

    f984cca9012e7e0270b81c8a9c7b332fa372f060

    SHA256

    878722e400694be3ef66e4beec9959745a8fae14a02ea60f59acf4713dd8f4f6

    SHA512

    4c175dad40e5365aeb159d1a7284470da9e5713a49cac639b9dfed09a537bd3f1c38cd1eb9d814bd42d7930fe28c80dd9415d3b900bbaf457f0a701239d23050

    Download Submit
  • /data/user/0/com.dezjpspf.pjwtyzt/code_cache/secondary-dexes/tmp-base.apk.classes6704446923431316568.zip
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit
  • /data/user/0/com.dezjpspf.pjwtyzt/shared_prefs/multidex.version.xml
    MD5

    7cbab580f597b531e61e7afec683172f

    SHA1

    dc98593cadb69a394c5cefb88391223d11621e95

    SHA256

    4c08a94153e9440ef81d6ff29e193e5819735230b3ae746f8f851f932670278c

    SHA512

    58d1af8490d963931e87c6ffd50dadc2ca3f958683321bcb6114acd66827cfb53e6d1882c21313bcec5c54d23f6f71a9e6bf68b864bc8a9c614a211062eaed57

    Download Submit
  • /data/user/0/com.dezjpspf.pjwtyzt/shared_prefs/pref_name_setting.xml
    MD5

    5767b5367171dc276c6d3792a98172b6

    SHA1

    67c6ec96bf76f015d712c88207dde1654b8b45e9

    SHA256

    e067fe28502740c5cbcce4b65bcd997e1c5254c1ffca7c03c08ba392452ea7d0

    SHA512

    baf6d427c51f1533dfc4271310f6914ef3a24e76c2f3e74fa48b2875dece9c1782a06b242f73c44fc693958fd004a1639673ddeb3470006650961e1b954f7110

    Download Submit
  • /data/user/0/com.dezjpspf.pjwtyzt/shared_prefs/pref_name_setting.xml
    MD5

    3e3774409ba42a5783233aa5b6997887

    SHA1

    2cec672f598d35a6feb5a3d1688fefc0a7807f31

    SHA256

    5835203416feae0c0b0aa9d191e343a07146a09f74fdf4cd99096c433bf49bd1

    SHA512

    16b672185fc38c3f687d45fc6234443fcca30ba4075ee32e82dbda039c1e96a8789dad65c36ffdb2ca28e346c9ce018f7fe4391f30b655f8c0499a8c79422ec7

    Download Submit
  • /data/user/0/com.dezjpspf.pjwtyzt/shared_prefs/prefs30.xml
    MD5

    1c6b6a6a91f2ccf7ac553f9a439ad69e

    SHA1

    270b45bc1c3255f95fecf8bfa85f7dbfc8fb5748

    SHA256

    a7958ee3107cac53056bac67328f317cf9e3aaf4533e1072f0c4f0334ebbffa6

    SHA512

    8a61fcab1bc82977f72af693d4a749ad41df81a9a9c6eaafee0f4ffd36a34f069a259c6b20046a8bce58a6eab526df122cb82e8d093be73cf5ff9d41e489bf8e

    Download Submit