xloader_apk | ab857862a181beaabb52da98ccc504253a38ad8c1515cae5614c9243ab43a06e | Triage

Submit
Reports

Overview

overview

Static

static

6

d120bd9b73...16.apk

android-9-x86

Resubmissions

17-03-2024 14:59

240317-scxsgagh38 10

17-03-2024 14:39

240317-r1c8asha7w 10

Sharing

General

Target

d120bd9b73ea7cc5bff0648ef9f15116
Size

445KB
Sample

240317-scxsgagh38
MD5

d120bd9b73ea7cc5bff0648ef9f15116
SHA1

251ab5f8aa09497ee9e893521055a72678887cbf
SHA256

ab857862a181beaabb52da98ccc504253a38ad8c1515cae5614c9243ab43a06e
SHA512

9ec8bd2820e9495e83f22949225192723cf021834975dd58d71b3ea8a4b14239386efedd5cf115da19febd99c91646376c1fecd84987a1d05fdf63b2e3b6cf8e
SSDEEP

12288:Dg5JKeJ5r67ru/D7DAEXqyqQnSMey7SQZya:DgzNJQ+/D7Duy5g8ka

Score

10^/10

xloader_apk android banker collection discovery evasion infostealer stealth trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d120bd9b73ea7cc5bff0648ef9f15116.apk

Resource

android-x86-arm-20240221-en

xloader_apk banker collection discovery evasion infostealer stealth trojan

android-9-x86

8 signatures

150 seconds

Malware Config

Extracted

Family

xloader_apk

C2

http://91.204.227.39:28844

DES_key

Targets

- Target
  
  d120bd9b73ea7cc5bff0648ef9f15116
- Size
  
  445KB
- MD5
  
  d120bd9b73ea7cc5bff0648ef9f15116
- SHA1
  
  251ab5f8aa09497ee9e893521055a72678887cbf
- SHA256
  
  ab857862a181beaabb52da98ccc504253a38ad8c1515cae5614c9243ab43a06e
- SHA512
  
  9ec8bd2820e9495e83f22949225192723cf021834975dd58d71b3ea8a4b14239386efedd5cf115da19febd99c91646376c1fecd84987a1d05fdf63b2e3b6cf8e
- SSDEEP
  
  12288:Dg5JKeJ5r67ru/D7DAEXqyqQnSMey7SQZya:DgzNJQ+/D7Duy5g8ka
Score

10^/10

xloader_apk banker collection discovery evasion infostealer stealth trojan
- XLoader payload
- XLoader, MoqHao
  An Android banker and info stealer.
  trojan infostealer banker xloader_apk
- Removes its main activity from the application launcher
  stealth trojan evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Reads the content of the MMS message.
  collection
- Acquires the wake lock
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

xloader_apkbankercollectiondiscoveryevasioninfostealerstealthtrojan

© 2018-2024

Terms | Privacy