Overview

overview

10

Static

static

7

ndQOhY0ypd.apk

android-10-x64

10

ndQOhY0ypd.apk

android-11-x64

10

Resubmissions

13/10/2022, 15:48

221013-s89f5sbhen 10

06/10/2022, 16:41

221006-t7h38sacan 10

05/10/2022, 13:53

221005-q667wseeb2 10

31/08/2022, 20:23

220831-y6g7rsdba5 10

31/08/2022, 20:11

220831-yykb6abbdk 10

31/08/2022, 19:40

220831-ydqy7sagfk 10

31/08/2022, 17:36

220831-v6tzsahdgm 10

31/08/2022, 17:32

220831-v4htqshddn 7

Analysis

  • max time kernel
    4120889s
  • max time network
    826s
  • platform
    android_x64
  • resource
    android-x64-20220823-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20220823-enlocale:en-usos:android-10-x64system
  • submitted
    31/08/2022, 20:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ndQOhY0ypd.apk

  • Size

    5.2MB

  • MD5

    ca559118f4605b0316a13b8cfa321f65

  • SHA1

    5ef4d5784738d79f22f9bc5e8db7c94985bc1a3a

  • SHA256

    3eb7efa71648ae819f1bff89399717805129487081e8261dd65bf596f2467054

  • SHA512

    091f07d51e9d7c924666f28a30b03e5ff887e239ad2ed9a99cbd65e7b9350c6fc89cafdbbe05de27f8ea6dc90ff8484c1b692fc891b58fcc6104fa6878e8f3d7

  • SSDEEP

    98304:+Ld3yR0X7GPzP21DeReIrJ0jJMooanGHNdyc7scnuB5k9MWdU:+LxyR0X7Qz/diMolGfyXcNMWdU

Score
10/10
malibotbankerinfostealertrojan

Malware Config

Signatures

  • Malibot payload 1 IoCs
  • malibot

    Malibot is an Android banking malware with the ability to bypass 2FA/MFA codes.

    infostealertrojanbankermalibot
  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.slhytrowb.wfxaicaiw
    1⤵
    • Loads dropped Dex/Jar
    PID:4766

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/Cookies
    Filesize

    64KB

    MD5

    9b23e6a88d5a95f155f205cb04b93cd0

    SHA1

    b62dccbbef087a0731f226b96d15d35d8aa5e5fc

    SHA256

    f2f3c3c0c7f085399a6f9a464c1ac30a59ceeb5a4b7026286fa5609e6e8ef857

    SHA512

    bce5f25d98e2e8296c4101b62082dcb6a43902f3431ff6f725e41be6b9aece76e887ef94c4818baf4da845708fd76fd51c37fb6915710c870647593868f27482

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/Cookies-journal
    Filesize

    1KB

    MD5

    9e122bfeed6266d9fb9554adcf8b0304

    SHA1

    46f7d0f296ce9fa5ec59fe1a202da92adea23fb7

    SHA256

    5db35399c141ae461ecaf18c521c8913ba08da0837d0be325b947c86ebbd5f4c

    SHA512

    38788d828efb60f8582895da116e2e7746ddaae8788174823564d38a436bdff284fe5721816d7dcbb8b8dc934b5e7c02045c8b8c1d65fa5aa3bbbaa51ad8b512

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/GPUCache/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/GPUCache/index-dir/temp-index
    Filesize

    96B

    MD5

    e386a1405f22e3e3c9e1ec3e4d8fca11

    SHA1

    27268cdfe7e2b53345eacc5c28befb0396fdf138

    SHA256

    0db6aace2c4973b661b01e4be25acd96c43a9351f7efcd8619096edb0d8e06c3

    SHA512

    449646a25d9a8d5969f6f0b53efab20ae19bc47410b1705e2a7eef69d9db6f3b67f5893e21d8526b7201a7343efad44017f9934056319be21d4312e625ba6721

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/Web Data
    Filesize

    112KB

    MD5

    b663831f8cc130493476d94f2d7a5330

    SHA1

    043a1956ab8e40821d67043f8a9110a8eb36fb93

    SHA256

    c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7

    SHA512

    e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/Web Data-journal
    Filesize

    1KB

    MD5

    6101125978ac0f88a562ee3ffa0d61aa

    SHA1

    bb1c703bee37728a11a71719b0b1449cc1b40e19

    SHA256

    ba782fa8af968ea0c80ab5323bbfa7a307ed34f3f5b3aaeedd85903ebfe1742a

    SHA512

    dd366d9c1f71039e5d7486d9a541cd3ebfe146c975947dcd7f7f9ac32dff0f45fa5803840675ceb4d08f5a036c20c1ee29798e8d71965354b61c9969912c6dd7

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/app_webview/metrics_guid
    Filesize

    36B

    MD5

    2588192e38813107816ccd417174f255

    SHA1

    0d55546817b2f744ae0cc2067189a5f3756730a9

    SHA256

    6d34d5771d1e8bbd414c461cc734e74ee61d34f59ac5bf1ea62d4a54698e2c05

    SHA512

    6f45bc97f9f5ca9824191a5e3c14283e1de92dff139b35afe3d76db5b3255d4ba674ebca6033b6b55bbe559fbb99f0bb0e82f3ffb786d9170a8222ff802007f1

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/WebView/Crashpad/settings.dat
    Filesize

    40B

    MD5

    c2e69dc71351aade5463822556e2add0

    SHA1

    eef56f93b97cfc1de555bd1bf1e0c7d8cb7a946c

    SHA256

    8bdf7f63cb3d70fb74b58dda08aeae6bdcd7fee5aada07ebb01e8c8046808208

    SHA512

    f72d91d9db63cfc3a219243bd1f59d4923175c6056d710d0dc8a56f16a7b40958df6559d6874ec4bb65fa3ac080bcbfc7c160e3f01adfb1bf0d87f5915793563

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/1c8cab44519da61b_0
    Filesize

    340B

    MD5

    80820283ef777f8dc30a51c05ebe503c

    SHA1

    139d8c1ba3b34efab7ebc1cdc5044500abfc2290

    SHA256

    a584e17fdbabb02d34c0d83c23350bc9db9a9839badc5272bab1a2d9d151b132

    SHA512

    cded306868af1fcf836d30600c9b5585e1119a3181d2608467071e7ec867843bc3c64256e88461fd9b605e484e157c1828e03b9e0f6cb75a42a51283f33f13a4

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/Code Cache/js/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index
    Filesize

    96B

    MD5

    eee35f96ebdf407ec8b166418ca1d697

    SHA1

    a90f0d2b555efd302ed72a104b7b07f4662b20eb

    SHA256

    2505163e4b7669e387dd9670e859d0fc229b99d06f6556ddc4f42c8c4ebb5008

    SHA512

    d1021c9baf180a3679a80d2cfaecdc32d24b8de583e1bbecddc1679d681553ff768547c1d4673ef52859c5d719fc16b38c0ed84c85adad6f298c71a7acfe0a52

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/e4db911cfa09c606_0
    Filesize

    520B

    MD5

    5e825535913d4021e85192bb9560b825

    SHA1

    33aaa817de7358769185b139e54355d3585cfafc

    SHA256

    40dbda1f4318758873d4a80d21f9da4919ddb8cac53ddf2ee94480d0585789d6

    SHA512

    aefeb124c2f7679ccdf4fb4acdc12d3f1553692d56cba96828133ffe3c61e91027c7a755c670f8610a53970ebfc53f5ece5f2d7d65a4e01969544013d8b4baae

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/e4db911cfa09c606_0
    Filesize

    520B

    MD5

    5e825535913d4021e85192bb9560b825

    SHA1

    33aaa817de7358769185b139e54355d3585cfafc

    SHA256

    40dbda1f4318758873d4a80d21f9da4919ddb8cac53ddf2ee94480d0585789d6

    SHA512

    aefeb124c2f7679ccdf4fb4acdc12d3f1553692d56cba96828133ffe3c61e91027c7a755c670f8610a53970ebfc53f5ece5f2d7d65a4e01969544013d8b4baae

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/ee7454f6f7222f8a_0
    Filesize

    338B

    MD5

    ef11061a2bbde73ad896d5f4d6d3a4d5

    SHA1

    0f34c91b18d4cd058348e0769b7eba1cbc5f5973

    SHA256

    ae4acb30bf49099c24e888a7a6bb6164dcf8d7074ea2e23a4ce593f843622b63

    SHA512

    d20d08620c3e1aee5113c0ba57b8066fc0cf13dac68356d9a620c8349a401bdca1610a180c1a7f727ba695bb1e7c368cd15bce6282f5c313d1921c21effa3d79

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/index-dir/temp-index
    Filesize

    144B

    MD5

    423573bbc3420c8a6d417b8720512bc0

    SHA1

    a7964e52d773b8159b756b61532177a642f91d0d

    SHA256

    76031447a21c0afbe309a6f7219e5da7cf96b6f4c617083ccf9950823ba41efd

    SHA512

    7ed246a29223862efa957f768e95c54930c02d7f9d7b7aa7e7168a98a0de959c64855514ae19d9c90774a6a1c16bc58b1d00216548f13e61beb789381a29b3fb

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/cache/org.chromium.android_webview/index-dir/temp-index
    Filesize

    96B

    MD5

    9241d620f173837012f13bc799d16737

    SHA1

    67f51a7dd369260007d90a9b4628bb347d4ecc60

    SHA256

    d9a4c18748afe4077b46bbe52a69e2b385fa2a25ffde422c13d05e015e8486f8

    SHA512

    79025006be44421812215a29627666827b02e25ea3ce337ae0369cd6c927b239b90e8752fe79a9501c6622d43068f73dfe8ac37b2a2617601480b62343e85210

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/ihoftigt8f/ffkyffUhHfh8I89/base.apk.hkyhafI1.g8k
    Filesize

    1.7MB

    MD5

    2426b919cdc0753cfda937d3a87d6226

    SHA1

    f258933ea1ecdb552475032b89fc2b3c83e0e6f0

    SHA256

    e7c8f9bacba13bdadf4c74cf356dc7734b0a269bf1bf02695fbba37f87eaeb98

    SHA512

    2cbb1dbee4a7d8bba818b416b7015ba5128cf77b9ba53906fd6efc2940ee71341e62292a79e43eaaf061a6cd4c21a96893354ab4b8b54e35708b768de5fbf21e

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/shared_prefs/WebViewChromiumPrefs.xml
    Filesize

    127B

    MD5

    6ef709b8536878951e87c29a1518fc2b

    SHA1

    24376c70b00152501b3d98df61fa7db435339172

    SHA256

    10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6

    SHA512

    96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/shared_prefs/com.android.launcher3.prefs.xml
    Filesize

    128B

    MD5

    20837fd8daf2a2de8d6c4ccd8e90653a

    SHA1

    7ac08617bd4585151c239325aea243d9eca586f7

    SHA256

    e05f0ae0ee70ef2efac07e999da273b5f506462b67549f9080f6cdf469d70cec

    SHA512

    a4fd7ac1ce847a84fe4f47c2e7079f00b16b86213fe840b70e3a55992a043da99ca6fe1c9a723e709e2ee3985ed3b7c5a299d1cf5b29e8228f3f81d3cbb6876a

    Download Submit

  • /data/user/0/com.slhytrowb.wfxaicaiw/shared_prefs/multidex.version.xml
    Filesize

    307B

    MD5

    6dd283772dbd0458ca9fa3875249ecad

    SHA1

    f9e6034ee7ca02df2d057a5b0b280ecdc1c4d8b4

    SHA256

    35e0f25a4eba719b2b249f9c455ef7212f78690de0316c8598fc8c5717fb7bb2

    SHA512

    4a9b562c82f873b1891e5a59e2ed32b3e18d4bde61f7def3f0e9e604710f437581d328f20556a76831104161b08c7712651ca726b6aaccdeea253cd7b96723e6

    Download Submit