Overview

overview

10

Static

static

7

ndQOhY0ypd.apk

android-10-x64

10

ndQOhY0ypd.apk

android-11-x64

10

Resubmissions

13/10/2022, 15:48

221013-s89f5sbhen 10

06/10/2022, 16:41

221006-t7h38sacan 10

05/10/2022, 13:53

221005-q667wseeb2 10

31/08/2022, 20:23

220831-y6g7rsdba5 10

31/08/2022, 20:11

220831-yykb6abbdk 10

31/08/2022, 19:40

220831-ydqy7sagfk 10

31/08/2022, 17:36

220831-v6tzsahdgm 10

31/08/2022, 17:32

220831-v4htqshddn 7

Analysis

  • max time kernel
    4110654s
  • max time network
    606s
  • platform
    android_x64
  • resource
    android-x64-20220823-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20220823-enlocale:en-usos:android-10-x64system
  • submitted
    31/08/2022, 17:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ndQOhY0ypd.apk

  • Size

    5.2MB

  • MD5

    ca559118f4605b0316a13b8cfa321f65

  • SHA1

    5ef4d5784738d79f22f9bc5e8db7c94985bc1a3a

  • SHA256

    3eb7efa71648ae819f1bff89399717805129487081e8261dd65bf596f2467054

  • SHA512

    091f07d51e9d7c924666f28a30b03e5ff887e239ad2ed9a99cbd65e7b9350c6fc89cafdbbe05de27f8ea6dc90ff8484c1b692fc891b58fcc6104fa6878e8f3d7

  • SSDEEP

    98304:+Ld3yR0X7GPzP21DeReIrJ0jJMooanGHNdyc7scnuB5k9MWdU:+LxyR0X7Qz/diMolGfyXcNMWdU

Score
10/10
malibotbankerinfostealertrojan

Malware Config

Signatures

  • Malibot payload 1 IoCs
  • malibot

    Malibot is an Android banking malware with the ability to bypass 2FA/MFA codes.

    infostealertrojanbankermalibot
  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.slhytrowb.wfxaicaiw
    1⤵
    • Loads dropped Dex/Jar
    PID:4791

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/Cookies
    Filesize

    64KB

    MD5

    9b23e6a88d5a95f155f205cb04b93cd0

    SHA1

    b62dccbbef087a0731f226b96d15d35d8aa5e5fc

    SHA256

    f2f3c3c0c7f085399a6f9a464c1ac30a59ceeb5a4b7026286fa5609e6e8ef857

    SHA512

    bce5f25d98e2e8296c4101b62082dcb6a43902f3431ff6f725e41be6b9aece76e887ef94c4818baf4da845708fd76fd51c37fb6915710c870647593868f27482

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/Cookies-journal
    Filesize

    1KB

    MD5

    508ec3bfacbe3e09a6282f3bc940738b

    SHA1

    920f1ac12e4e4eba840e162eb2c224b1e57850ab

    SHA256

    6d16f0e618f4a213e38a6b3243ce8df300e48e3411531dbec79711003ff6c33c

    SHA512

    821dd6c034ac4b80f1998821a4ec1c6e3779fc9e9681dbe09c2dd6910dc746afd81044698dce9ef45ba80394772ac191c330e6064e657e2195dc78c91e285609

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/GPUCache/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/GPUCache/index-dir/temp-index
    Filesize

    96B

    MD5

    64a2457718701e60e5457ff8c76f8e6a

    SHA1

    376a869cafcd9d85d4ee31f1a962c604c8b25dd6

    SHA256

    8fe89c76518823b737330e3f92b8954a68ae927557fdbce3f3bea57068b75008

    SHA512

    d2ef01fa3ee28cb20b174eb5dae124ed08fb5c39b78727c72ad1b2fa1b35fc86ecece4787ac4dfa62435a521c6f329b0f5aaa968c157c554f6905d07678a1e98

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/Web Data
    Filesize

    112KB

    MD5

    b663831f8cc130493476d94f2d7a5330

    SHA1

    043a1956ab8e40821d67043f8a9110a8eb36fb93

    SHA256

    c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7

    SHA512

    e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/Web Data-journal
    Filesize

    1KB

    MD5

    64a12ad74d81b2c5188a6517cbccca22

    SHA1

    f4022eb70bcd35eb4c78c6e9f65bc4520f7778ae

    SHA256

    1de510c3df3b3f66e83ce80afbea9f8174e7ba079df97527bb1a5804d13fa5ed

    SHA512

    61739e89602fe86179a2f3c72f27f7a1069008c7692f6e87ec30f93e5cd1cd29cd9519335cb90562ab26ccd604f41794fc16976afc462f57390a4b2df8b0e673

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/metrics_guid
    Filesize

    36B

    MD5

    57e8458e4dbd43e6ad5626fee9737a16

    SHA1

    2fcbcb2de1186a928b3e95ecf6ef1f8739882522

    SHA256

    76ed514a9326cb2d6aaff086be06beb5a2961b165bad7356d79595cb1585d595

    SHA512

    79b815d8ae1e22e642b1def3f791006e986e85c5e1b09f3323ce236802314ccf6129a1ba82635d7bfd1d5474a8130aaef4b6a15e6006c4252823c676de53c6d6

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/WebView/Crashpad/settings.dat
    Filesize

    40B

    MD5

    c814ae5752b3f0eb7d7e89ca52d20267

    SHA1

    4f9ec83b1d58fb8ccc7cee21a03ec2ac71905c0c

    SHA256

    cbb55a6a7eb56b4a00b64aa6e3b235c4171ffa0d646e08adcef5b5d2f68fc931

    SHA512

    ea334d7c207750855ff75838de060d1430f6a8ddc9936880bcb26b83680be60e4e61c9ddb262b6ac04dc58bcfc4ff018cae517867d0c107e02b76e5a2b6dd8c5

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/1c8cab44519da61b_0
    Filesize

    340B

    MD5

    80820283ef777f8dc30a51c05ebe503c

    SHA1

    139d8c1ba3b34efab7ebc1cdc5044500abfc2290

    SHA256

    a584e17fdbabb02d34c0d83c23350bc9db9a9839badc5272bab1a2d9d151b132

    SHA512

    cded306868af1fcf836d30600c9b5585e1119a3181d2608467071e7ec867843bc3c64256e88461fd9b605e484e157c1828e03b9e0f6cb75a42a51283f33f13a4

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/Code Cache/js/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index
    Filesize

    96B

    MD5

    69b0399e39438841fc79fa74c020122c

    SHA1

    b3e92a6ffe9b892d7d25fb3355069a523831290d

    SHA256

    3abd4fe510096caa17c8dc35028e7daa7a049db4fe3c371742ada661e0735259

    SHA512

    8a687a8f10b6d88a4d21d33a6d53cf4aeee6196f18b9d8595ab9408b3efccb28b452a0375a11e37488f91492045fe1be787b39757efca0c71d0db44e413e5b85

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/e4db911cfa09c606_0
    Filesize

    520B

    MD5

    5e825535913d4021e85192bb9560b825

    SHA1

    33aaa817de7358769185b139e54355d3585cfafc

    SHA256

    40dbda1f4318758873d4a80d21f9da4919ddb8cac53ddf2ee94480d0585789d6

    SHA512

    aefeb124c2f7679ccdf4fb4acdc12d3f1553692d56cba96828133ffe3c61e91027c7a755c670f8610a53970ebfc53f5ece5f2d7d65a4e01969544013d8b4baae

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/ee7454f6f7222f8a_0
    Filesize

    338B

    MD5

    ef11061a2bbde73ad896d5f4d6d3a4d5

    SHA1

    0f34c91b18d4cd058348e0769b7eba1cbc5f5973

    SHA256

    ae4acb30bf49099c24e888a7a6bb6164dcf8d7074ea2e23a4ce593f843622b63

    SHA512

    d20d08620c3e1aee5113c0ba57b8066fc0cf13dac68356d9a620c8349a401bdca1610a180c1a7f727ba695bb1e7c368cd15bce6282f5c313d1921c21effa3d79

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/ee7454f6f7222f8a_0
    Filesize

    338B

    MD5

    ef11061a2bbde73ad896d5f4d6d3a4d5

    SHA1

    0f34c91b18d4cd058348e0769b7eba1cbc5f5973

    SHA256

    ae4acb30bf49099c24e888a7a6bb6164dcf8d7074ea2e23a4ce593f843622b63

    SHA512

    d20d08620c3e1aee5113c0ba57b8066fc0cf13dac68356d9a620c8349a401bdca1610a180c1a7f727ba695bb1e7c368cd15bce6282f5c313d1921c21effa3d79

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/index-dir/temp-index
    Filesize

    96B

    MD5

    25ec1c1d6aa6df0d3ece27894c8cdd1e

    SHA1

    a03c6181d21587e3754a6c4a403d781d329530db

    SHA256

    f08499caed7b68eb15c9cd16489f56380243f298d6915188f0b69ef0f4a2726a

    SHA512

    d37bdb9cd6228959c028d4da50338e6eddb4970e43870670018c852a6ce9d277fe43a806ae157e6b9a211678bc9a41512bcb22d7dffa043f541f6aaed26965e9

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/index-dir/temp-index
    Filesize

    96B

    MD5

    c8eb19f20431fdc91d2c64d73923f865

    SHA1

    ac879b85d9cccd574d6ff49897c8e26b8c91ece9

    SHA256

    6bdb945ad7cc5f97dc5a03fb7204fd77c456c35638d88ee6f08e5fccf2aecf1c

    SHA512

    9c8ea6f4899e39c91cf5b74ccd35460489875c4ee565f019d85cb2f6bc2886829b566fac7050d04c71d39b3cb4db42f7ce2968bd83f157d815411fc91fda5462

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/index-dir/temp-index
    Filesize

    96B

    MD5

    cdd5bcfceaebd4f3be7b2e9ca255c759

    SHA1

    addd7708e8cd4e78e78b3b78b18a9b626228ab34

    SHA256

    b921d1f23a695e2ebd37222e2bc95c74039313b17afef70205055a2b1e9688c6

    SHA512

    851179597ab3b572828d423d3c5bdd7d048f98d00e71c1c29dfedbcae61f220a05fe92e74206e1af851eea881c186a04ade0fcc2e340fbe70da261a38000d204

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/ihoftigt8f/ffkyffUhHfh8I89/base.apk.hkyhafI1.g8k
    Filesize

    1.7MB

    MD5

    2426b919cdc0753cfda937d3a87d6226

    SHA1

    f258933ea1ecdb552475032b89fc2b3c83e0e6f0

    SHA256

    e7c8f9bacba13bdadf4c74cf356dc7734b0a269bf1bf02695fbba37f87eaeb98

    SHA512

    2cbb1dbee4a7d8bba818b416b7015ba5128cf77b9ba53906fd6efc2940ee71341e62292a79e43eaaf061a6cd4c21a96893354ab4b8b54e35708b768de5fbf21e

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/shared_prefs/WebViewChromiumPrefs.xml
    Filesize

    127B

    MD5

    6ef709b8536878951e87c29a1518fc2b

    SHA1

    24376c70b00152501b3d98df61fa7db435339172

    SHA256

    10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6

    SHA512

    96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/shared_prefs/com.android.launcher3.prefs.xml
    Filesize

    128B

    MD5

    20837fd8daf2a2de8d6c4ccd8e90653a

    SHA1

    7ac08617bd4585151c239325aea243d9eca586f7

    SHA256

    e05f0ae0ee70ef2efac07e999da273b5f506462b67549f9080f6cdf469d70cec

    SHA512

    a4fd7ac1ce847a84fe4f47c2e7079f00b16b86213fe840b70e3a55992a043da99ca6fe1c9a723e709e2ee3985ed3b7c5a299d1cf5b29e8228f3f81d3cbb6876a

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/shared_prefs/multidex.version.xml
    Filesize

    307B

    MD5

    3e5a3cdee25cca15b2e7438cad47f295

    SHA1

    df95264b976053cd1c8371af9a2076381a35a261

    SHA256

    c79da0b61afd145fdac53886d471f8391dc8ee3fdef0a08385606a598481b62b

    SHA512

    268522f8c7d9c2056a196ce7233e52de674afa0fb4491e5f5d6976ef74d8f9d60d27c97ea8ffc570b4d76a95ebe3ea78983f7fb40c3dd5524005e0d595819d9f

    Download Submit