xloader_apk | 65430b6906c9d3c94e280d0e8ea98a908f016eeedc02e4ffa01f1e43b9e7f9cc | Triage

Submit
Reports

Overview

overview

Static

static

6

cd00306d04...be.apk

android-9-x86

Sharing

General

Target

cd00306d04bdf8e2bf79f7176f0714be
Size

445KB
Sample

240316-d37ysscg72
MD5

cd00306d04bdf8e2bf79f7176f0714be
SHA1

89ec165c2e1b8feaecaed2964debe1f0ed0ef574
SHA256

65430b6906c9d3c94e280d0e8ea98a908f016eeedc02e4ffa01f1e43b9e7f9cc
SHA512

5bfb8e92c1a470c6bb95969acba2fc274dc8fb3024a310131c84a531316f5690845c79c411dcbbda0936ca3c7a30ba2eb074245d4fec2863bcbaaea92f98f08f
SSDEEP

6144:kaL4aqvHxu0510m5C7XrXDDUEW+3qyqPoQ+8QVbSda8lysdWINQZoFSF+Au:klaqZu0AD7DAEXqyqQnSMey7SQZyN

Score

10^/10

xloader_apk android banker collection discovery evasion infostealer stealth trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

cd00306d04bdf8e2bf79f7176f0714be.apk

Resource

android-x86-arm-20240221-en

xloader_apk banker collection discovery evasion infostealer stealth trojan

android-9-x86

9 signatures

150 seconds

Malware Config

Extracted

Family

xloader_apk

C2

http://91.204.227.39:28844

DES_key

Targets

- Target
  
  cd00306d04bdf8e2bf79f7176f0714be
- Size
  
  445KB
- MD5
  
  cd00306d04bdf8e2bf79f7176f0714be
- SHA1
  
  89ec165c2e1b8feaecaed2964debe1f0ed0ef574
- SHA256
  
  65430b6906c9d3c94e280d0e8ea98a908f016eeedc02e4ffa01f1e43b9e7f9cc
- SHA512
  
  5bfb8e92c1a470c6bb95969acba2fc274dc8fb3024a310131c84a531316f5690845c79c411dcbbda0936ca3c7a30ba2eb074245d4fec2863bcbaaea92f98f08f
- SSDEEP
  
  6144:kaL4aqvHxu0510m5C7XrXDDUEW+3qyqPoQ+8QVbSda8lysdWINQZoFSF+Au:klaqZu0AD7DAEXqyqQnSMey7SQZyN
Score

10^/10

xloader_apk banker collection discovery evasion infostealer stealth trojan
- XLoader payload
- XLoader, MoqHao
  An Android banker and info stealer.
  trojan infostealer banker xloader_apk
- Removes its main activity from the application launcher
  stealth trojan evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Reads the contacts stored on the device.
  collection
- Reads the content of the MMS message.
  collection
- Acquires the wake lock
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

xloader_apkbankercollectiondiscoveryevasioninfostealerstealthtrojan

© 2018-2024

Terms | Privacy