hydra | 77b51738442f4d1b388db76db05388bd358b19f21c1f663e7993f9e32a7d6278 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

6

8421a95ea4...8b.apk

android-9-x86

8421a95ea4...8b.apk

android-10-x64

8421a95ea4...8b.apk

android-11-x64

Sharing

General

Target

8421a95ea4edfe3a06cb6c78db58848b
Size

3.0MB
Sample

240131-l59jeabfdj
MD5

8421a95ea4edfe3a06cb6c78db58848b
SHA1

7b31ba4b4b2b5971ddbc812689c8ac28f28bd2a8
SHA256

77b51738442f4d1b388db76db05388bd358b19f21c1f663e7993f9e32a7d6278
SHA512

aaccf4c3343a3c0218b62e8545baeb8f2c3ebc1401001844303bb4f3d75b45538c7a99dc01482ee79990bbfe5bedd9edc27c614931d30f5a244488acbc409bb1
SSDEEP

49152:v+afhiOsnVv0VdZNg6ieo3jGkIuFMEh4X64AKdA90Y3xnb5n5UgQCVSHn:vdf9aVv0Vd7rmXIWRj90WFusV0n

Score

10^/10

hydra android banker infostealer trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

8421a95ea4edfe3a06cb6c78db58848b.apk

Resource

android-x86-arm-20231215-en

hydra banker infostealer trojan

android-9-x86

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

8421a95ea4edfe3a06cb6c78db58848b.apk

Resource

android-x64-20231215-en

hydra banker infostealer trojan

android-10-x64

5 signatures

150 seconds

Behavioral task

behavioral3

Sample

8421a95ea4edfe3a06cb6c78db58848b.apk

Resource

android-x64-arm64-20231215-en

hydra banker infostealer trojan

android-11-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  8421a95ea4edfe3a06cb6c78db58848b
- Size
  
  3.0MB
- MD5
  
  8421a95ea4edfe3a06cb6c78db58848b
- SHA1
  
  7b31ba4b4b2b5971ddbc812689c8ac28f28bd2a8
- SHA256
  
  77b51738442f4d1b388db76db05388bd358b19f21c1f663e7993f9e32a7d6278
- SHA512
  
  aaccf4c3343a3c0218b62e8545baeb8f2c3ebc1401001844303bb4f3d75b45538c7a99dc01482ee79990bbfe5bedd9edc27c614931d30f5a244488acbc409bb1
- SSDEEP
  
  49152:v+afhiOsnVv0VdZNg6ieo3jGkIuFMEh4X64AKdA90Y3xnb5n5UgQCVSHn:vdf9aVv0Vd7rmXIWRj90WFusV0n
Score

10^/10

hydra banker infostealer trojan
- Hydra
  Android banker and info stealer.
  banker trojan infostealer hydra
- Makes use of the framework's Accessibility service
  Retrieves information displayed on the phone screen using AccessibilityService.
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Reads information about phone network operator.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

hydrabankerinfostealertrojan

behavioral2

hydrabankerinfostealertrojan

behavioral3

hydrabankerinfostealertrojan

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.