Overview

overview

10

Static

static

7

sample.apk

android_x86

10

sample.apk

android_x64

10

sample.apk

android_x64

10

Analysis

  • max time kernel
    1842289s
  • max time network
    166s
  • platform
    android_x64
  • resource
    android-x64-20220310-en
  • submitted
    16-06-2022 18:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    sample.apk

  • Size

    3.4MB

  • MD5

    9c187f8c200be61fce81de6a05b58b48

  • SHA1

    fe733f1019524a7dc867f0698907a8ff2b0c94e8

  • SHA256

    50ba1da49359b0771970ab8416eaa99eed8a3780a2f8c0bed360cd55ef02fc40

  • SHA512

    b8de15ebe15231292f40912ea3ebf669246679592d630588d1c0e180fceb3ec80c811bc82e57c3048267ce2c1ac3cae652d68a3c86896c6985409a911d9314bb

Score
10/10
flubotbankerinfostealertrojan

Malware Config

Signatures

  • FluBot

    FluBot is an android banking trojan that uses overlays.

    bankertrojaninfostealerflubot
  • FluBot Payload 3 IoCs
  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.iqiyi.i18n
    1⤵
    • Loads dropped Dex/Jar
    PID:6199

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.iqiyi.i18n/app_apkprotector_dex/classes-v1.bin
    Filesize

    1.5MB

    MD5

    04bcea077bc8f14fa18a30e50c2feaf9

    SHA1

    1e5358668672f96f307a41ad45ef95693fc637a4

    SHA256

    34c5c4d996b33eb842d38507bf2f1a0728500c7b705407826d8196d3bc6e571b

    SHA512

    538ef2b7fdcdb41f0181f848ad99d97f8fa170752b5974e9a43b7191b06261a839540ebf335d1193bac32238935fe6f9c0eb64619936dbb82421da54b5f9ed14

    Download Submit

  • /data/user/0/com.iqiyi.i18n/app_apkprotector_dex/classes-v1.bin
    Filesize

    1.5MB

    MD5

    04bcea077bc8f14fa18a30e50c2feaf9

    SHA1

    1e5358668672f96f307a41ad45ef95693fc637a4

    SHA256

    34c5c4d996b33eb842d38507bf2f1a0728500c7b705407826d8196d3bc6e571b

    SHA512

    538ef2b7fdcdb41f0181f848ad99d97f8fa170752b5974e9a43b7191b06261a839540ebf335d1193bac32238935fe6f9c0eb64619936dbb82421da54b5f9ed14

    Download Submit

  • /data/user/0/com.iqiyi.i18n/app_apkprotector_dex/classes-v1.bin
    Filesize

    1.5MB

    MD5

    04bcea077bc8f14fa18a30e50c2feaf9

    SHA1

    1e5358668672f96f307a41ad45ef95693fc637a4

    SHA256

    34c5c4d996b33eb842d38507bf2f1a0728500c7b705407826d8196d3bc6e571b

    SHA512

    538ef2b7fdcdb41f0181f848ad99d97f8fa170752b5974e9a43b7191b06261a839540ebf335d1193bac32238935fe6f9c0eb64619936dbb82421da54b5f9ed14

    Download Submit