xloader_apk | 871b9c6ca4cc3ae8e1e969cc50c0f4880bd9d142af8cd75108f1444d662e3706 | Triage

Submit
Reports

Overview

overview

Static

static

6

871b9c6ca4...06.apk

android-13-x64

Sharing

General

Target

871b9c6ca4cc3ae8e1e969cc50c0f4880bd9d142af8cd75108f1444d662e3706
Size

278KB
Sample

231220-f2w61sgfb4
MD5

83fc6c31428c7d6205bc932c36d6e8df
SHA1

2426f4ea284df04e86c154ff1a8647845e062f09
SHA256

871b9c6ca4cc3ae8e1e969cc50c0f4880bd9d142af8cd75108f1444d662e3706
SHA512

8d721e32931198ce01fd10fcac1096c4586299773ded32dbca364c8b5c802c493ab2d787da783b106dfd2b90e0d71893feffa96d6b6ff92987476f0f2c7e5020
SSDEEP

6144:Raa3DpCN/zhDQ8qSCIwi441D8ng/6/quXWv98ZWeIaQ10xTem70W:BDcbqSCbi4oDGgjuGVC+se20W

Score

10^/10

xloader_apk android banker evasion infostealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

871b9c6ca4cc3ae8e1e969cc50c0f4880bd9d142af8cd75108f1444d662e3706.apk

Resource

android-33-x64-arm64-20231215-en

xloader_apk banker evasion infostealer trojan

android-13-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  871b9c6ca4cc3ae8e1e969cc50c0f4880bd9d142af8cd75108f1444d662e3706
- Size
  
  278KB
- MD5
  
  83fc6c31428c7d6205bc932c36d6e8df
- SHA1
  
  2426f4ea284df04e86c154ff1a8647845e062f09
- SHA256
  
  871b9c6ca4cc3ae8e1e969cc50c0f4880bd9d142af8cd75108f1444d662e3706
- SHA512
  
  8d721e32931198ce01fd10fcac1096c4586299773ded32dbca364c8b5c802c493ab2d787da783b106dfd2b90e0d71893feffa96d6b6ff92987476f0f2c7e5020
- SSDEEP
  
  6144:Raa3DpCN/zhDQ8qSCIwi441D8ng/6/quXWv98ZWeIaQ10xTem70W:BDcbqSCbi4oDGgjuGVC+se20W
Score

10^/10

xloader_apk banker evasion infostealer trojan
- XLoader payload
- XLoader, MoqHao
  An Android banker and info stealer.
  trojan infostealer banker xloader_apk
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Acquires the wake lock
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  evasion
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

xloader_apkbankerevasioninfostealertrojan

© 2018-2024

Terms | Privacy