hydra | f9299231f6111b59494aa13464531100e0c065b2a5eda451035f6f893c1933ce | Triage

Analysis

max time kernel
2606612s
max time network
20s
platform
android_x64
resource
android-x64
submitted
31/08/2021, 08:39

Sharing

Report Analysis Logs

General

Target

f9299231f6111b59494aa13464531100e0c065b2a5eda451035f6f893c1933ce.apk
Size

8.0MB
MD5

1bf9361597793ad62f44811063929695
SHA1

2d7592b458828e6c3551800734c80e3632b711d8
SHA256

f9299231f6111b59494aa13464531100e0c065b2a5eda451035f6f893c1933ce
SHA512

b6152c315facce9e2fd1776693152b754790edf067f3806d459a8a1fce725b0a4cd385a0a281a0004daaf05ed41c9db6a85c5682d6fa4b357bc7b04d0fe7f0ca

Score

10^/10

hydra banker infostealer trojan

Malware Config

Signatures

Hydra
Android banker and info stealer.
banker trojan infostealer hydra

Loads dropped Dex/Jar 2 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.cvgykwir.nlnjvki/code_cache/secondary-dexes/base.apk.classes1.zip	3603	com.cvgykwir.nlnjvki
[anon:dalvik-classes.dex extracted in memory from /data/user/0/com.cvgykwir.nlnjvki/code_cache/secondary-dexes/base.apk.classes1.zip]	3603	com.cvgykwir.nlnjvki

com.cvgykwir.nlnjvki
1⤵
- Loads dropped Dex/Jar
PID:3603

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads