Analysis
-
max time kernel
1143056s -
max time network
155s -
platform
android_x64 -
resource
android-x64-arm64-20220621-en -
resource tags
-
submitted
28-07-2022 09:24
General
-
Target
ddcc9bafbda3a100fb51fa1aedda0844.apk
-
Size
1.5MB
-
MD5
ddcc9bafbda3a100fb51fa1aedda0844
-
SHA1
2a32003ed69b46408faa0549eac55539e97e7cfc
-
SHA256
aa7c6d80939deabe2540d1354a5aedeb842c227a76a9b913c8429e4fdd9adee2
-
SHA512
796396e02806ee89d7e44d87d928f3f19e4c431ffe37b19bfa2267160b80b7ded9692b21513223fe40ef9f783dd342bcfbb158e9e00616936bec10c2feb72c1f
Malware Config
Extracted
hydra
http://sarah-louisewoodcock56.top
Signatures
-
Hydra
Android banker and info stealer.
-
Hydra payload 1 IoCs
-
Makes use of the framework's Accessibility service. 2 IoCs
-
Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.
Processes
-
com.staff.donkey1⤵
- Makes use of the framework's Accessibility service.
- Loads dropped Dex/Jar
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
231KB
MD54682b9a667b89786052c53c60e43545f
SHA166a4a64744643a4596bfe3f4e1d8af53acf146c1
SHA256161cbad190b9fd08a31cb90f43512c225c1e9493f4679af3e9206db784503364
SHA512f16e11ab4916bb026de32be3126fcf9e85de307072b801b5166e74017ec652f826edccf70740413f60de642df656e9accf3281b59bc6d6ba06b0b0fe7f176338
-
Filesize
540KB
MD5f78f4876dca212047edfe2c08eeb6f95
SHA190abfcfe845f4f9e08e040f7d78cb330642e879d
SHA256a5ef8d431ca5c35f9d99703d3c9e74d7947642d89fefa92fcb3bfa786a9f368e
SHA512405f2fab5c4e72bc88f3310962987759103cac5fb80f6a47304db4ce94179e2d91bec10084650583086f595d00ee2db3b3c4781c3b5ea31d979004654040b840