hydra | ce6a30acd4452bb2113ae491484c9f616ed86112d8b19e121692655f37319dac | Triage

Analysis

max time kernel
799833s
max time network
161s
platform
android_x64
resource
android-x64
submitted
06/01/2022, 13:53

Sharing

Report Analysis Logs

General

Target

60427_Video_Oynatıcı.apk
Size

2.5MB
MD5

bb2928ec10c83a71a4a0e17ba121eaaf
SHA1

70b1c16426f64777ef4106c77bf4d26ad1e2a7a7
SHA256

ce6a30acd4452bb2113ae491484c9f616ed86112d8b19e121692655f37319dac
SHA512

2e166eb9ac3f77d959f7d662d3f9c09b4814fc92b936473144d02d8cb0613a56ec5d0b6fbb6c925769e0535f78cc3c22573387f0b8eabce6f0af644f614a9969

Score

10^/10

hydra banker infostealer trojan

Malware Config

Extracted

Family

hydra

C2

http://viveklees437.website

Signatures

Hydra
Android banker and info stealer.
banker trojan infostealer hydra

Hydra Payload 2 IoCs

resource	yara_rule
behavioral1/memory/3811-0.dex	family_hydra
behavioral1/memory/3811-1.dex	family_hydra

Loads dropped Dex/Jar 2 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.hammer.valve/app_DynamicOptDex/nlUFFO.json	3811	com.hammer.valve
/data/user/0/com.hammer.valve/app_DynamicOptDex/nlUFFO.json	3811	com.hammer.valve

Reads information about phone network operator.

com.hammer.valve
1⤵
- Loads dropped Dex/Jar
PID:3811

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads