Overview

overview

10

Static

static

7

9.apk

android-9-x86

10

9.apk

android-10-x64

10

9.apk

android-11-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9.apk

  • Size

    1.4MB

  • Sample

    220906-q356esbaak

  • MD5

    5d8d6c70ce5d08c3ab63f62d9916d5e2

  • SHA1

    f22ae5e3003df3941660bc8b9fe1a92e4f5828f6

  • SHA256

    0c2a42d08be52c3dc9205ccfd4000f370d88f618e7dd8f734d5d7dbc9a4d824f

  • SHA512

    b99717ba6a815ecdf9b9c8eb7f1188a40fef261bfb3dd4fb8226039610dbe8734c594361fe956edfa5da9a49dcdac4e236c8ee7512acee34376eacb43da7c170

  • SSDEEP

    24576:KaJHk8rLY8VgNq1WH1S5FGrPpYkbqYHSsSfmjc/:K8lrLY8VgwqmFgP+kbqkYo+

Score
10/10
teabotandroidbankerevasioninfostealertrojan

Malware Config

Targets

    • Target

      9.apk

    • Size

      1.4MB

    • MD5

      5d8d6c70ce5d08c3ab63f62d9916d5e2

    • SHA1

      f22ae5e3003df3941660bc8b9fe1a92e4f5828f6

    • SHA256

      0c2a42d08be52c3dc9205ccfd4000f370d88f618e7dd8f734d5d7dbc9a4d824f

    • SHA512

      b99717ba6a815ecdf9b9c8eb7f1188a40fef261bfb3dd4fb8226039610dbe8734c594361fe956edfa5da9a49dcdac4e236c8ee7512acee34376eacb43da7c170

    • SSDEEP

      24576:KaJHk8rLY8VgNq1WH1S5FGrPpYkbqYHSsSfmjc/:K8lrLY8VgwqmFgP+kbqkYo+

    Score
    10/10
    teabotbankerevasioninfostealertrojan

    • TeaBot

      TeaBot is an android banker first seen in January 2021.

      bankertrojaninfostealerteabot

    • TeaBot payload

    • Makes use of the framework's Accessibility service.

    • Acquires the wake lock.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

      evasion

    • Removes a system notification.

      evasion
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks