Overview

overview

7

Static

static

7

downloader_banker.apk

android-11-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    downloader_banker.apk

  • Size

    3.3MB

  • MD5

    05718c09e2088fac6caf8e0c590481c6

  • SHA1

    d5ff7148cef214fd47aa1cf1257e6d46ae58605c

  • SHA256

    a262fc542d60441e28f09bb9e1837a5462e494bfc8d1b87bce97f63964b3ab1f

  • SHA512

    6bbb08ce7717d9554856cbbe7564a731fe68a0c2bffa7b00b0e42966cee76a8d064baf880f8e8f8422ef4571067bad342ecd92f4ca5130060b3f7fa7b9b3c78c

  • SSDEEP

    98304:W9z/o1sj/yaZktbRG8SCxYhDbP88wCj1u:W9jo1iyaZ+RGWShX9U

Score
7/10

Malware Config

Signatures

  • Requests dangerous framework permissions 6 IoCs

Files

  • downloader_banker.apk
    .apk android

    notable.cycle.improve

    raven.curious.nice.ocyrayd


  • 000_public_key.pem
  • 001_public_key.pem
  • 002_public_key.pem
  • 0x030060000000002A.xyt
  • 0x030060000000002B.xyt
  • 0x030060000000002C.xyt
  • 0x030060000000002D.xyt
  • 0x030060000000002E.xyt
  • 0x030060000000002F.xyt
  • 0x090000000000025D.xyt
  • 0x0900000000080001.xyt
  • 0x0900000000080002.xyt
  • 0x0900500000080001.xyt
  • 0x1300000000000001.xyt
  • 0x4380500000000070.xyt
  • 0x4381500000000005.xyt
  • 0x4381500000000006.xyt
  • 0x4480500000000070.xyt
  • 0x4B00000000040001.xyt
  • 0x4B00000000040002.xyt
  • 0x4B00000000040003.xyt
  • 0x4B00000000040004.xyt
  • 0x5380500000000070.xyt
  • 1.ogg
  • 1280_large_bold.fnt
  • 1280_med_bold.fnt
  • 1280_med_reg.fnt
  • 1st.ogg
  • 2.ogg
  • 2nd.ogg
  • 320_large_bold_0.png
  • 320_med_bold.fnt
  • 320_med_bold_0.png
  • 320_med_reg.fnt
  • 320_med_reg_0.png
  • 320_small_bold.fnt
  • 320_small_bold_0.png
  • 320_small_reg.fnt
  • 320_small_reg_0.png
  • 320_xmed_bold.fnt
  • 320_xmed_bold_0.png
  • 480_large_bold.fnt
  • 480_med_bold.fnt
  • 480_med_bold_0.png
  • 480_med_reg.fnt
  • 480_med_reg_0.png
  • 960_small_reg_0.png
  • 960_xmed_bold.fnt
  • CPUConfig.ini
  • ColorPS.shader
  • ColorVS.shader
  • Command.ogg
  • FontPS.shader
  • FontVS.shader
  • Mei-Calibration.xml
    .xml
  • No.ogg
  • On.ogg
  • RouteStarted.ogg
  • TexturePS.shader
  • TextureVS.shader
  • Tv3dSceneSettings.xml
    .xml
  • Yes.ogg
  • about1d.html
    .html
  • about2d.html
    .html
  • big-1d.png
  • big-datamatrix.png
  • big-qr.png
  • black.mp4
  • camera1_Rear.png
  • camera2_Left.png
  • camera3_Front.png
  • camera4_Right.png
  • cloud.vertex
  • color.fragment
  • color.vertex
  • color_ex.fragment
  • color_texture.fragment
  • color_uv.vertex
  • contact-results-screen.jpg
    .jpg
  • current_color.fragment
  • demo-no.png
  • demo-yes.png
  • dummy.mp3
  • editor_clip_end_film_pic.png
  • entity.fragment
  • entity.vertex
  • ev_button_click.mp3
  • ev_hit_last.mp3
  • ev_random_knife_switch.mp3
  • ev_shop_random_activate.mp3
  • ev_shop_random_beep.mp3
  • ev_shop_select_item.mp3
  • ev_shop_select_item_confirm.mp3
  • ev_shop_select_locked_item.mp3
  • ev_spike_1.mp3
  • ev_spike_2.mp3
  • ev_spike_3.mp3
  • ev_target_appear_1.mp3
  • ev_target_appear_2.mp3
  • ev_target_appear_3.mp3
  • ev_throw_1.mp3
  • ev_throw_2.mp3
  • ev_throw_3.mp3
  • ev_video_watched.mp3
  • ev_video_watched_2.mp3
  • ev_xp_bar_fill.mp3
  • ev_xp_bar_pop.mp3
  • flat_white.fragment
  • friendactivity_mycover_bg.jpg
  • fyb_iframe_endcard_tmpl.html
    .html
  • fyb_static_endcard_tmpl.html
    .js
  • hologram_sr.fragment
  • hologram_sr.vertex
  • hologram_texture_stereo.fragment
  • holoroom_inner_skirt.fragment
  • holoroom_inner_skirt.vertex
  • holoroom_tableSurface.fragment
  • holoroom_tableSurface.vertex
  • holoroom_terrain_endcap.fragment
  • holoroom_terrain_endcap.vertex
  • ia_js_load_monitor.txt
    .html .js
  • ia_mraid_bridge.txt
    .html .js
  • index.html
  • iteminhand.fragment
  • kYNTUc.json
  • liveness_ensemble-1.2.1.jcq
  • model.yaml
  • motion_liveness_nn-0.0.1.jcq
  • music.m4a
  • navigator_arrow.obj
  • navigator_arrow.png
  • normal_as_color.vertex
  • parking_arrow.obj
  • parking_arrow.png
  • position.vertex
  • primary_cascade-1.1.0.xml
    .xml
  • rain_snow.fragment
  • rain_snow.vertex
  • renderchunk.fragment
  • renderchunk.vertex
  • scan-example.png
  • scan-from-phone.png
  • scanning.html
    .html
  • sdkbox_config.json
  • search-book-contents.jpg
    .jpg
  • sequence.xml
    .xml
  • shakehideimg_man.jpg
  • sharing.html
    .html
  • sky.vertex
  • stars.fragment
  • supplierconfig.json
  • text.fragment
  • texture.fragment
  • texture_blend.fragment
  • texture_ccolor.fragment
  • texture_cutout.fragment
  • uniforms.json
  • util.h
  • uv.vertex
  • uv_as_color.fragment
  • uv_blend.vertex
  • uv_scale.vertex
  • vivavideo_default_slide_source_img.jpg
  • vpaid_html_template.html
    .html .js
  • weather.fragment
  • weather.vertex

Android Permissions

downloader_banker.apk

Permissions

android.permission.REQUEST_DELETE_PACKAGES

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.INTERNET

android.permission.READ_CONTACTS

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.CALL_PHONE

android.permission.READ_SMS