Extracted

• • Target

    c85f3596b16876457948b8f52da0a3c8

  • Size

    445KB

  • MD5

    c85f3596b16876457948b8f52da0a3c8

  • SHA1

    de2f85a2391a9cd78deddbe287661c8f71c772a9

  • SHA256

    081076dc58f1917835ca8ea35910d7826a9ce3aa29fccd0370bb6ea5dfc3e066

  • SHA512

    f7ea154339258281ccb06e65ca17646ff7c0335a65743d2732970e2cd8a24edb6239e3f139459899f2743f2cf16377a4e76d6c9daa494fe27b8597a59fc303b6

  • SSDEEP

    12288:aBhKSvVg6M1SyD7DAEXqyqQnSMey7SQZyH:aPKSvK6M1SyD7Duy5g8kH

  Score

  10^/10

  xloader_apkbankercollectiondiscoveryevasioninfostealerstealthtrojan

  • XLoader payload

  • XLoader, MoqHao

    An Android banker and info stealer.

    trojaninfostealerbankerxloader_apk

  • Removes its main activity from the application launcher

    stealthtrojanevasion

  • Loads dropped Dex/Jar

    Runs executable file dropped to the device during analysis.

    evasion

  • Reads the contacts stored on the device.

    collection

  • Reads the content of the MMS message.

    collection

  • Acquires the wake lock

  • Reads information about phone network operator.

    discovery
  behavioral1