hydra | e909b4adcef7b43fe8a1a8dcdbdf1e59f9a9be01954fd8cd2d8da27badd18e35 | Triage

Submit
Reports

Overview

overview

Static

static

7

E909B4ADCE...35.apk

android_x86

E909B4ADCE...35.apk

android_x64

E909B4ADCE...35.apk

android_x64

Sharing

General

Target

E909B4ADCEF7B43FE8A1A8DCDBDF1E59F9A9BE01954FD8CD2D8DA27BADD18E35.apk
Size

4.0MB
Sample

220319-saf2yaccc9
MD5

a61a768c681d326bc19762cdeaacd375
SHA1

1e7a51456d60d6b53aeae656aaf0bc1eb68fd194
SHA256

e909b4adcef7b43fe8a1a8dcdbdf1e59f9a9be01954fd8cd2d8da27badd18e35
SHA512

d520f762c5eec0f47c00bef78156ba3809ea8d84a91729162848ed2480fe290a8a9fd6c0ac939dede5f9746bb460101f724f311a50b7c634ce3bf5067cced365

Score

10^/10

hydra android banker infostealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

E909B4ADCEF7B43FE8A1A8DCDBDF1E59F9A9BE01954FD8CD2D8DA27BADD18E35.apk

Resource

android-x86-arm-20220310-en

hydra banker infostealer trojan

android_x86

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

E909B4ADCEF7B43FE8A1A8DCDBDF1E59F9A9BE01954FD8CD2D8DA27BADD18E35.apk

Resource

android-x64-20220310-en

hydra banker infostealer trojan

android_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

E909B4ADCEF7B43FE8A1A8DCDBDF1E59F9A9BE01954FD8CD2D8DA27BADD18E35.apk

Resource

android-x64-arm64-20220310-en

hydra banker infostealer trojan

android_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  E909B4ADCEF7B43FE8A1A8DCDBDF1E59F9A9BE01954FD8CD2D8DA27BADD18E35.apk
- Size
  
  4.0MB
- MD5
  
  a61a768c681d326bc19762cdeaacd375
- SHA1
  
  1e7a51456d60d6b53aeae656aaf0bc1eb68fd194
- SHA256
  
  e909b4adcef7b43fe8a1a8dcdbdf1e59f9a9be01954fd8cd2d8da27badd18e35
- SHA512
  
  d520f762c5eec0f47c00bef78156ba3809ea8d84a91729162848ed2480fe290a8a9fd6c0ac939dede5f9746bb460101f724f311a50b7c634ce3bf5067cced365
Score

10^/10

hydra banker infostealer trojan
- Hydra
  Android banker and info stealer.
  banker trojan infostealer hydra
- Hydra Payload
- Makes use of the framework's Accessibility service.
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Legitimate hosting services abused for malware hosting/C2
- Reads information about phone network operator.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

hydrabankerinfostealertrojan

behavioral2

hydrabankerinfostealertrojan

behavioral3

hydrabankerinfostealertrojan

© 2018-2024

Terms | Privacy