Overview

overview

10

Static

static

7

3fc91b032c...44.apk

android-9-x86

10

3fc91b032c...44.apk

android-10-x64

10

3fc91b032c...44.apk

android-11-x64

10

AboutCompat.js

windows7-x64

1

AboutCompat.js

windows10-2004-x64

1

MultiSelection.js

windows7-x64

1

MultiSelection.js

windows10-2004-x64

1

aboutCompat.html

windows7-x64

1

aboutCompat.html

windows10-2004-x64

1

aboutCompat.js

windows7-x64

1

aboutCompat.js

windows10-2004-x64

1

aboutPage.js

windows7-x64

1

aboutPage.js

windows10-2004-x64

1

aboutPageP...ipt.js

windows7-x64

1

aboutPageP...ipt.js

windows10-2004-x64

1

adsTelemetry.js

windows7-x64

1

adsTelemetry.js

windows10-2004-x64

1

bridgeShop...tor.js

windows7-x64

1

bridgeShop...tor.js

windows10-2004-x64

1

errorPageScripts.js

windows7-x64

1

errorPageScripts.js

windows10-2004-x64

1

highRiskErrorPages.js

windows7-x64

1

highRiskErrorPages.js

windows10-2004-x64

1

icons.js

windows7-x64

1

icons.js

windows10-2004-x64

1

lowMediumE...ges.js

windows7-x64

1

lowMediumE...ges.js

windows10-2004-x64

1

reader.js

windows7-x64

1

reader.js

windows10-2004-x64

1

reader_theme.js

windows7-x64

1

reader_theme.js

windows10-2004-x64

1

run.js

windows7-x64

1

Analysis

  • max time kernel
    402415s
  • max time network
    159s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231023-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231023-enlocale:en-usos:android-11-x64system
  • submitted
    28-11-2023 22:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3fc91b032c9fdbd7eef055f5596e7c6f45b163019ab86af102e44df31966ec44.apk

  • Size

    3.0MB

  • MD5

    8658787a0d5a6b7dbee0ae22dd193d4d

  • SHA1

    231660f83f1c32cc08d4b1d4bf7eb03a4a18beee

  • SHA256

    3fc91b032c9fdbd7eef055f5596e7c6f45b163019ab86af102e44df31966ec44

  • SHA512

    5512e9894c2d8a767ad1fd2a41e5104388da7f81fecaabcb001f6aa3c31a96ea043a0b0b7aa929ce7facbe455a982a6ce574f7f5d18630454a38cf265d9e469d

  • SSDEEP

    49152:EDfvHtz/p0qosFuZ+FkDG8Z4KLvlj5bl3/y3cSTkGVTSmJOQlyBILAkklymKZs:qfv7/w6kqWr3KM6kGxDyBfkeyW

Score
10/10
hydrabankerinfostealertrojan

Malware Config

Signatures

  • Hydra

    Android banker and info stealer.

    bankertrojaninfostealerhydra
  • Hydra payload 2 IoCs
  • Makes use of the framework's Accessibility service. 2 IoCs
  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

  • Requests enabling of the accessibility settings. 1 IoCs
  • Legitimate hosting services abused for malware hosting/C2 1 TTPs
  • Looks up external IP address via web service 1 IoCs

    Uses a legitimate IP lookup service to find the infected system's external IP.

  • Reads information about phone network operator.

Processes

  • com.boss.butter
    1⤵
    • Makes use of the framework's Accessibility service.
    • Loads dropped Dex/Jar
    • Requests enabling of the accessibility settings.
    PID:4545

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.boss.butter/app_DynamicOptDex/BhUjK.json
    Filesize

    1.9MB

    MD5

    1caf4e80f11a70398164a82f95ad0dd8

    SHA1

    52ede92d9986ae45241b2f9c1cdab6cc6aa07857

    SHA256

    3890cdcc44a8b2916ad382dd48dfd190589e068af774078d9b62f95158e84083

    SHA512

    4cff8a09bc8c3e182686d6c86d00399667f4ff5ca3e0b8939b5a7f7f5f41bf27b29893711946a0e5a47d36559b69baac43f7e8acf315488b3617b0df9d56443a

    Download Submit

  • /data/user/0/com.boss.butter/app_DynamicOptDex/BhUjK.json
    Filesize

    1.9MB

    MD5

    92456f247ee56926a8f031744087d699

    SHA1

    4946e57d4829709d10afd71daae709e43ebe209b

    SHA256

    01f60860114d740fe37b5cf5160a757105f74126a7a1582f99d73a2364fb5355

    SHA512

    03238877bf358f4f1a632bc218759a8332a7423b298c8b05eaa207e0bc270644a54f31ccb945e2eeef4fa69ffe949ea6d1fbd25952f83376ce25a18480d9b9dc

    Download Submit

  • /data/user/0/com.boss.butter/app_DynamicOptDex/BhUjK.json
    Filesize

    5.0MB

    MD5

    b849cbba8d099d24e879fe4d691030cc

    SHA1

    5aa3dabe43e791c1262e72960fd155fc36b452e0

    SHA256

    21b562f2ccb7099612361fe26ad15434d4877daf00d266b307cba53d9d13e2fc

    SHA512

    e896509d54833c674a777487e4a3b8ee7a828054c7bfdd03c31cbd015ed55f8418eeeaedff2c6c71829f92ac5035dacccba3978673201dc3bdf263441ca24ff4

    Download Submit