General

  • Target

    3EB7EFA71648AE819F1BFF89399717805129487081E8261DD65BF596F2467054.apk

  • Size

    5.2MB

  • Sample

    220812-ja8yaaadap

  • MD5

    ca559118f4605b0316a13b8cfa321f65

  • SHA1

    5ef4d5784738d79f22f9bc5e8db7c94985bc1a3a

  • SHA256

    3eb7efa71648ae819f1bff89399717805129487081e8261dd65bf596f2467054

  • SHA512

    091f07d51e9d7c924666f28a30b03e5ff887e239ad2ed9a99cbd65e7b9350c6fc89cafdbbe05de27f8ea6dc90ff8484c1b692fc891b58fcc6104fa6878e8f3d7

Malware Config

Targets

    • Target

      3EB7EFA71648AE819F1BFF89399717805129487081E8261DD65BF596F2467054.apk

    • Size

      5.2MB

    • MD5

      ca559118f4605b0316a13b8cfa321f65

    • SHA1

      5ef4d5784738d79f22f9bc5e8db7c94985bc1a3a

    • SHA256

      3eb7efa71648ae819f1bff89399717805129487081e8261dd65bf596f2467054

    • SHA512

      091f07d51e9d7c924666f28a30b03e5ff887e239ad2ed9a99cbd65e7b9350c6fc89cafdbbe05de27f8ea6dc90ff8484c1b692fc891b58fcc6104fa6878e8f3d7

    • malibot

      Malibot is an Android banking malware with the ability to bypass 2FA/MFA codes.

    • Makes use of the framework's Accessibility service.

    • Acquires the wake lock.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

MITRE ATT&CK Matrix

Tasks