Overview

overview

10

Static

static

7

B01B74AAF2...52.apk

android-9-x86

10

B01B74AAF2...52.apk

android-10-x64

10

B01B74AAF2...52.apk

android-11-x64

1

Resubmissions

06-10-2022 16:35

221006-t3xqtshhe6 10

12-08-2022 07:30

220812-jbsyfsadar 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    B01B74AAF249D0740F541C081C0C0DE4BF455B4B68F2634FAB6CF8AAFCD95D52.apk

  • Size

    2.3MB

  • Sample

    220812-jbsyfsadar

  • MD5

    0533968891354ac78b45c486600a7890

  • SHA1

    4e9bc1bcbeec32ad93762482b9e1295c7f1bcee5

  • SHA256

    b01b74aaf249d0740f541c081c0c0de4bf455b4b68f2634fab6cf8aafcd95d52

  • SHA512

    cdf2fcb3d7968b113563b602a476e54bdad4bf30548492941d7d18072c4542007c0f29dd2174ce1cf196c0369651788dc01e5d9f8d5ece9fa0aeeeccdf7348ce

Score
10/10
malibotandroidbankerevasioninfostealertrojan

Malware Config

Targets

    • Target

      B01B74AAF249D0740F541C081C0C0DE4BF455B4B68F2634FAB6CF8AAFCD95D52.apk

    • Size

      2.3MB

    • MD5

      0533968891354ac78b45c486600a7890

    • SHA1

      4e9bc1bcbeec32ad93762482b9e1295c7f1bcee5

    • SHA256

      b01b74aaf249d0740f541c081c0c0de4bf455b4b68f2634fab6cf8aafcd95d52

    • SHA512

      cdf2fcb3d7968b113563b602a476e54bdad4bf30548492941d7d18072c4542007c0f29dd2174ce1cf196c0369651788dc01e5d9f8d5ece9fa0aeeeccdf7348ce

    Score
    10/10
    malibotbankerevasioninfostealertrojan

    • Malibot payload

    • malibot

      Malibot is an Android banking malware with the ability to bypass 2FA/MFA codes.

      infostealertrojanbankermalibot

    • Makes use of the framework's Accessibility service.

    • Acquires the wake lock.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Removes a system notification.

      evasion
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks