flubot | 1b0bfad146eeb4295c3a1ee5b316adea4b1195bf35006b038d8d6d21d8310e5b | Triage

Submit
Reports

Overview

overview

Static

static

8

Android APK

android_x64

Sharing

General

Target

1b0bfad146eeb4295c3a1ee5b316adea4b1195bf35006b038d8d6d21d8310e5b.apk
Size

4.1MB
Sample

210915-hk6p8sdafm
MD5

39219f88afa326f1045a35e3088c2706
SHA1

aba6c3dc0c507f5329846e668e805d4660af7fce
SHA256

1b0bfad146eeb4295c3a1ee5b316adea4b1195bf35006b038d8d6d21d8310e5b
SHA512

82d4c664bf9d16995839f7a1eafde282632f87d436592de74a99a63c44409a1d727abbd552d6e7c518842c600bbeeed338383c066347ea532631494a96b86664

Score

10^/10

flubot android banker infostealer obfuscation ransomware trojan

Static task

static1

Behavioral task

behavioral1

Sample

1b0bfad146eeb4295c3a1ee5b316adea4b1195bf35006b038d8d6d21d8310e5b.apk

Resource

android-x64

flubot banker infostealer obfuscation ransomware trojan

android_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  1b0bfad146eeb4295c3a1ee5b316adea4b1195bf35006b038d8d6d21d8310e5b.apk
- Size
  
  4.1MB
- MD5
  
  39219f88afa326f1045a35e3088c2706
- SHA1
  
  aba6c3dc0c507f5329846e668e805d4660af7fce
- SHA256
  
  1b0bfad146eeb4295c3a1ee5b316adea4b1195bf35006b038d8d6d21d8310e5b
- SHA512
  
  82d4c664bf9d16995839f7a1eafde282632f87d436592de74a99a63c44409a1d727abbd552d6e7c518842c600bbeeed338383c066347ea532631494a96b86664
Score

10^/10

flubot banker infostealer obfuscation ransomware trojan
- FluBot
  FluBot is an android banking trojan that uses overlays.
  banker trojan infostealer flubot
- FluBot Payload
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

flubotbankerinfostealerobfuscationransomwaretrojan

© 2018-2024

Terms | Privacy