Overview

overview

10

Static

static

10

b308ca8b09...d8.apk

android-9-x86

8

b308ca8b09...d8.apk

android-10-x64

8

b308ca8b09...d8.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b308ca8b09a4869fef5bb520a38a408d6992ee596002646aab95951381c2efd8.bin

  • Size

    4.8MB

  • Sample

    240124-1yqv2sacam

  • MD5

    2c391ccd9c9e7512fb98c6cc0c4f8d48

  • SHA1

    7d5c496a8860bdcb09c95cd8ac3a5fb1a77dacb1

  • SHA256

    b308ca8b09a4869fef5bb520a38a408d6992ee596002646aab95951381c2efd8

  • SHA512

    372f5758cdce2f75614ed7b28991b749601f89e59224d9ab784d88353022ea98fcf83b30e64a30c37f339b93bacc62173d9c73a69ecaf15fad2ffb82992ef2e5

  • SSDEEP

    98304:NZTBTC4w431hKrLjXzq/7FgTyzBThn0tIJmzre:NvTPJFhKrHCpEPI8zC

Score
10/10
spynoteandroidbanker

Malware Config

Targets

    • Target

      b308ca8b09a4869fef5bb520a38a408d6992ee596002646aab95951381c2efd8.bin

    • Size

      4.8MB

    • MD5

      2c391ccd9c9e7512fb98c6cc0c4f8d48

    • SHA1

      7d5c496a8860bdcb09c95cd8ac3a5fb1a77dacb1

    • SHA256

      b308ca8b09a4869fef5bb520a38a408d6992ee596002646aab95951381c2efd8

    • SHA512

      372f5758cdce2f75614ed7b28991b749601f89e59224d9ab784d88353022ea98fcf83b30e64a30c37f339b93bacc62173d9c73a69ecaf15fad2ffb82992ef2e5

    • SSDEEP

      98304:NZTBTC4w431hKrLjXzq/7FgTyzBThn0tIJmzre:NvTPJFhKrHCpEPI8zC

    Score
    8/10
    banker

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

      banker

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Acquires the wake lock

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks