General

  • Target

    338041fa9c4e537aedd399de211d3ed3f7ab862cc961c49692fa54d91505ce47.apk

  • Size

    3.8MB

  • Sample

    211005-s89rxaaae8

  • MD5

    31257dedfa52e14dee4b708033bcad18

  • SHA1

    8414fcc9774d5a4966aa250e0c63ca0122a465dd

  • SHA256

    338041fa9c4e537aedd399de211d3ed3f7ab862cc961c49692fa54d91505ce47

  • SHA512

    52e467baf86c69a316b83150052d0e5ff3b15c32d71f77a4a790de8f7b53343005083ec8ea6ca387a64cf18fdea29e0e86873ab0ba30345c7e812ff32291ba6a

Malware Config

Targets

    • Target

      338041fa9c4e537aedd399de211d3ed3f7ab862cc961c49692fa54d91505ce47.apk

    • Size

      3.8MB

    • MD5

      31257dedfa52e14dee4b708033bcad18

    • SHA1

      8414fcc9774d5a4966aa250e0c63ca0122a465dd

    • SHA256

      338041fa9c4e537aedd399de211d3ed3f7ab862cc961c49692fa54d91505ce47

    • SHA512

      52e467baf86c69a316b83150052d0e5ff3b15c32d71f77a4a790de8f7b53343005083ec8ea6ca387a64cf18fdea29e0e86873ab0ba30345c7e812ff32291ba6a

    • FluBot

      FluBot is an android banking trojan that uses overlays.

    • FluBot Payload

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Uses Crypto APIs (Might try to encrypt user data).

MITRE ATT&CK Matrix

Tasks