hydra | e909b4adcef7b43fe8a1a8dcdbdf1e59f9a9be01954fd8cd2d8da27badd18e35 | Triage

Submit
Reports

Overview

overview

Static

static

7

E909B4ADCE...35.apk

android_x86

E909B4ADCE...35.apk

android_x64

E909B4ADCE...35.apk

android_x64

Sharing

General

Target

E909B4ADCEF7B43FE8A1A8DCDBDF1E59F9A9BE01954FD8CD2D8DA27BADD18E35.apk
Size

4.0MB
Sample

220319-saf2yaccc9
MD5

a61a768c681d326bc19762cdeaacd375
SHA1

1e7a51456d60d6b53aeae656aaf0bc1eb68fd194
SHA256

e909b4adcef7b43fe8a1a8dcdbdf1e59f9a9be01954fd8cd2d8da27badd18e35
SHA512

d520f762c5eec0f47c00bef78156ba3809ea8d84a91729162848ed2480fe290a8a9fd6c0ac939dede5f9746bb460101f724f311a50b7c634ce3bf5067cced365

Score

10^/10

hydra android banker infostealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

E909B4ADCEF7B43FE8A1A8DCDBDF1E59F9A9BE01954FD8CD2D8DA27BADD18E35.apk

Resource

android-x86-arm-20220310-en

hydra banker infostealer trojan

android_x86

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

E909B4ADCEF7B43FE8A1A8DCDBDF1E59F9A9BE01954FD8CD2D8DA27BADD18E35.apk

Resource

android-x64-20220310-en

hydra banker infostealer trojan

android_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

E909B4ADCEF7B43FE8A1A8DCDBDF1E59F9A9BE01954FD8CD2D8DA27BADD18E35.apk

Resource

android-x64-arm64-20220310-en

hydra banker infostealer trojan

android_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  E909B4ADCEF7B43FE8A1A8DCDBDF1E59F9A9BE01954FD8CD2D8DA27BADD18E35.apk
- Size
  
  4.0MB
- MD5
  
  a61a768c681d326bc19762cdeaacd375
- SHA1
  
  1e7a51456d60d6b53aeae656aaf0bc1eb68fd194
- SHA256
  
  e909b4adcef7b43fe8a1a8dcdbdf1e59f9a9be01954fd8cd2d8da27badd18e35
- SHA512
  
  d520f762c5eec0f47c00bef78156ba3809ea8d84a91729162848ed2480fe290a8a9fd6c0ac939dede5f9746bb460101f724f311a50b7c634ce3bf5067cced365
Score

10^/10

hydra banker infostealer trojan
- Hydra
  Android banker and info stealer.
  banker trojan infostealer hydra
- Hydra Payload
- Makes use of the framework's Accessibility service.
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Legitimate hosting services abused for malware hosting/C2
- Reads information about phone network operator.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Tasks

static1

behavioral1

hydrabankerinfostealertrojan

behavioral2

hydrabankerinfostealertrojan

behavioral3

hydrabankerinfostealertrojan

© 2018-2024

Terms | Privacy