Overview

overview

10

Static

static

7

093a65f30e...3e.apk

android_x86

10

093a65f30e...3e.apk

android_x64

10

093a65f30e...3e.apk

android_x64

Analysis

  • max time kernel
    1841671s
  • max time network
    150s
  • platform
    android_x64
  • resource
    android-x64-20220310-en
  • submitted
    16-06-2022 18:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    093a65f30e9340b2a0e27228fe678426295ff97b934024eda5b8d080a8987d3e.apk

  • Size

    4.0MB

  • MD5

    4807de51d4e79f4f00c72bbe8fda93c2

  • SHA1

    4127a83ca90d142234e00d5b931a43506e190102

  • SHA256

    093a65f30e9340b2a0e27228fe678426295ff97b934024eda5b8d080a8987d3e

  • SHA512

    17b05948361d5aa8233b97c18e36ccfb58bf97986aa118016bc0de3262fdedce0e2543ca40a72ff9832659abc33cd61cfb447d34610bc7a1dc0c89d138b90fb9

Score
10/10
flubotbankerinfostealerransomwaretrojan

Malware Config

Signatures

  • FluBot

    FluBot is an android banking trojan that uses overlays.

    bankertrojaninfostealerflubot
  • FluBot Payload 2 IoCs
  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • slender.business.jacket
    1⤵
    • Loads dropped Dex/Jar
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:6042

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/slender.business.jacket/app_DynamicOptDex/RbAGHUu.json
    Filesize

    1.5MB

    MD5

    6d6d70c312e57eb5f7cc8fdea7eb014f

    SHA1

    5a4d80d7242a95252a7d43811b06b2cd1c14420c

    SHA256

    fcc7a4b426e381576049ce1a6b9dae71c287bc99bf18243eae8100f61f05dd18

    SHA512

    51f98dc32c77e71d16bc114d25e4e8432325f34301e2687a7b473b22f1aa45ffb30ee5df33b02cfa3a1815ce12e14eeca35455e71bc0ae3088ba6a2b6c2ef5e6

    Download Submit

  • /data/user/0/slender.business.jacket/app_DynamicOptDex/RbAGHUu.json
    Filesize

    1.5MB

    MD5

    40bc23344a0f46f04cf0533ae12c86b4

    SHA1

    4330aa71cc6bce9eac084368d207f1aeeabbec50

    SHA256

    e89d9804064dfff2a9890e595825a3074f88ffcbfe7c21800a9464d2aa9ab832

    SHA512

    e2e32639b3080412ee5a4f898c7ed8f422e854bd8e759402d21eb2620333a60170f80e21998dbe3e2ec652a3c7dc1ff8528c52d5df7a95a35046811b752d4f45

    Download Submit

  • /data/user/0/slender.business.jacket/app_DynamicOptDex/RbAGHUu.json
    Filesize

    1.5MB

    MD5

    40bc23344a0f46f04cf0533ae12c86b4

    SHA1

    4330aa71cc6bce9eac084368d207f1aeeabbec50

    SHA256

    e89d9804064dfff2a9890e595825a3074f88ffcbfe7c21800a9464d2aa9ab832

    SHA512

    e2e32639b3080412ee5a4f898c7ed8f422e854bd8e759402d21eb2620333a60170f80e21998dbe3e2ec652a3c7dc1ff8528c52d5df7a95a35046811b752d4f45

    Download Submit