hydra | 93c5e98c06963c8a320f5876148ad45fb6cce1a40a7aaee195cfa5027e19426b | Triage

Submit
Reports

Overview

overview

Static

static

7

latte.apk

android-9-x86

latte.apk

android-10-x64

latte.apk

android-11-x64

Sharing

General

Target

latte.apk
Size

3.2MB
Sample

220803-j54l2saahk
MD5

2766fe2cc89890935127ae864f88a309
SHA1

f7dc91ed1d4c85e72896b22acb9f192a36ca9ae3
SHA256

93c5e98c06963c8a320f5876148ad45fb6cce1a40a7aaee195cfa5027e19426b
SHA512

a9b59137d044d134417f63d38c361b9f5961f10915794a70c65e95a06bd6bdb5299325915b32be398808aabfd7aad5faea5a6b6617261b20a54f0fabb54f3ecb

Score

10^/10

hydra android banker infostealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

latte.apk

Resource

android-x86-arm-20220621-en

hydra banker infostealer trojan

android-9-x86

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

latte.apk

Resource

android-x64-20220621-en

hydra banker infostealer trojan

android-10-x64

5 signatures

150 seconds

Behavioral task

behavioral3

Sample

latte.apk

Resource

android-x64-arm64-20220621-en

hydra banker infostealer trojan

android-11-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  latte.apk
- Size
  
  3.2MB
- MD5
  
  2766fe2cc89890935127ae864f88a309
- SHA1
  
  f7dc91ed1d4c85e72896b22acb9f192a36ca9ae3
- SHA256
  
  93c5e98c06963c8a320f5876148ad45fb6cce1a40a7aaee195cfa5027e19426b
- SHA512
  
  a9b59137d044d134417f63d38c361b9f5961f10915794a70c65e95a06bd6bdb5299325915b32be398808aabfd7aad5faea5a6b6617261b20a54f0fabb54f3ecb
Score

10^/10

hydra banker infostealer trojan
- Hydra
  Android banker and info stealer.
  banker trojan infostealer hydra
- Hydra payload
- Makes use of the framework's Accessibility service.
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Legitimate hosting services abused for malware hosting/C2
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Reads information about phone network operator.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

hydrabankerinfostealertrojan

behavioral2

hydrabankerinfostealertrojan

behavioral3

hydrabankerinfostealertrojan

© 2018-2024

Terms | Privacy