axbanker | 7eea6c20b5df04e4dc63a18bd963c0f7[.]apk

General

Target

7eea6c20b5df04e4dc63a18bd963c0f7.apk
Size

8.0MB
MD5

7eea6c20b5df04e4dc63a18bd963c0f7
SHA1

7be6bef5f87f915cc5286adc1221678d4c090e26
SHA256

215c2663ff556f27eaf55d61f754d72938635d1901b7c8e2be64b66181e801bf
SHA512

4aad11aae512368cdb4d8d46d9c56991b7e24687140de91c8cdbf59dc9c3f9e0e160e853830840733a357ebad6e8385417a68b077bbab470afac73a944b7b915
SSDEEP

196608:+KKroXNaIN5OT5G8Iz7NxJlJqCcAZs55Ks9t:FK0XwIN5G5Qz/JJs55Ks9t

Score

10^/10

axbanker

Malware Config

Extracted

Family

axbanker

C2

https://addnow.co.in/api/user/step1

Signatures

Axbanker family
axbanker

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS

Files

7eea6c20b5df04e4dc63a18bd963c0f7.apk
.apk android

com.mxtech.videoplayer

com.mxtech.videoplayer.SplashActivity

Activities

com.mxtech.videoplayer.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INSTANT_APP_FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE
android.permission.START_FOREGROUND_SERVICES_FROM_BACKGROUND
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
com.mxtech.videoplayer.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

com.mxtech.videoplayer.MyReceiver

com.example.autostart.ACTION_IMPLICIT_BROADCAST
com.example.autostart.ACTION_EXPLICIT_BROADCAST
android.provider.Telephony.SMS_RECEIVED

Services
baseline.prof
baseline.profm
hook.apk
.apk android

com.mxtech.videoplayer

com.mxtech.videoplayer.SplashActivity

Activities

com.mxtech.videoplayer.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INSTANT_APP_FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE
android.permission.START_FOREGROUND_SERVICES_FROM_BACKGROUND
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
com.mxtech.videoplayer.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

com.mxtech.videoplayer.MyReceiver

com.example.autostart.ACTION_IMPLICIT_BROADCAST
com.example.autostart.ACTION_EXPLICIT_BROADCAST
android.provider.Telephony.SMS_RECEIVED

Services

Android Permissions

7eea6c20b5df04e4dc63a18bd963c0f7.apk

Permissions

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INSTANT_APP_FOREGROUND_SERVICE

android.permission.FOREGROUND_SERVICE

android.permission.START_FOREGROUND_SERVICES_FROM_BACKGROUND

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

com.mxtech.videoplayer.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Sharing

General

Malware Config

Extracted

Signatures

Files

com.mxtech.videoplayer

com.mxtech.videoplayer.SplashActivity

Activities

com.mxtech.videoplayer.SplashActivity

Permissions

Receivers

com.mxtech.videoplayer.MyReceiver

Services

com.mxtech.videoplayer

com.mxtech.videoplayer.SplashActivity

Activities

com.mxtech.videoplayer.SplashActivity

Permissions

Receivers

com.mxtech.videoplayer.MyReceiver

Services

Android Permissions

7eea6c20b5df04e4dc63a18bd963c0f7.apk