axbanker | ee9d9e6e577612b583cce381842efdc6[.]apk

Sharing

Copy URL Twitter E-mail

General

Target

ee9d9e6e577612b583cce381842efdc6.apk
Size

8.0MB
MD5

ee9d9e6e577612b583cce381842efdc6
SHA1

83b22d9566ef699f37560d39b8166e8aeaabf209
SHA256

7cbe341442e7a836054a69d0659833a93fb22be458909f79c4c346681164727d
SHA512

12e7404376e1e0ccc50c6c05ced5498f4a25053fe5717f61ee1b6f915bc4cf0fba091724cb3bb1625815c0a0af0ee64b68dffe8ef4ee8ae8c29cb8870c80ad33
SSDEEP

196608:oUyy81MVgqaUXyulAf5Ks9Xy8jj8Iukg7RQGoKnOAmgpeP:oUp8nUzAf5Ks9C4j8I5gUoOAp0P

Score

10^/10

axbanker

Malware Config

Extracted

Family

axbanker

https://preko.in/api/user/step1

Signatures

Axbanker family
axbanker

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS

Files

ee9d9e6e577612b583cce381842efdc6.apk
.apk android

com.mobisystems.fileman

com.mobisystems.fileman.SplashActivity

Activities

com.mobisystems.fileman.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INSTANT_APP_FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE
android.permission.START_FOREGROUND_SERVICES_FROM_BACKGROUND
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
com.mobisystems.fileman.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

com.mobisystems.fileman.MyReceiver

com.example.autostart.ACTION_IMPLICIT_BROADCAST
com.example.autostart.ACTION_EXPLICIT_BROADCAST
android.provider.Telephony.SMS_RECEIVED

Services
baseline.prof
baseline.profm
hook.apk
.apk android

com.mobisystems.fileman

com.mobisystems.fileman.SplashActivity

Activities

com.mobisystems.fileman.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INSTANT_APP_FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE
android.permission.START_FOREGROUND_SERVICES_FROM_BACKGROUND
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
com.mobisystems.fileman.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

com.mobisystems.fileman.MyReceiver

com.example.autostart.ACTION_IMPLICIT_BROADCAST
com.example.autostart.ACTION_EXPLICIT_BROADCAST
android.provider.Telephony.SMS_RECEIVED

Services
baseline.prof
baseline.profm

Android Permissions

ee9d9e6e577612b583cce381842efdc6.apk

Permissions

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INSTANT_APP_FOREGROUND_SERVICE

android.permission.FOREGROUND_SERVICE

android.permission.START_FOREGROUND_SERVICES_FROM_BACKGROUND

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

com.mobisystems.fileman.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Sharing

General

Malware Config

Extracted

Signatures

Files

com.mobisystems.fileman

com.mobisystems.fileman.SplashActivity

Activities

com.mobisystems.fileman.SplashActivity

Permissions

Receivers

com.mobisystems.fileman.MyReceiver

Services

com.mobisystems.fileman

com.mobisystems.fileman.SplashActivity

Activities

com.mobisystems.fileman.SplashActivity

Permissions

Receivers

com.mobisystems.fileman.MyReceiver

Services

Android Permissions

ee9d9e6e577612b583cce381842efdc6.apk