xloader_apk | 305122d541f3736ce622ad4086235f86017bc56b0821ab409f8687b9b1bace5a | Triage

Submit
Reports

Overview

overview

Static

static

6

d2110db05a...b7.apk

android-9-x86

Sharing

General

Target

d2110db05a98311069c20b3ecc2814b7
Size

445KB
Sample

240318-abl1gaba43
MD5

d2110db05a98311069c20b3ecc2814b7
SHA1

60441e5b7881d063e849452cbe4af37669f10e0e
SHA256

305122d541f3736ce622ad4086235f86017bc56b0821ab409f8687b9b1bace5a
SHA512

4b2910eaabc3618e34f98468413a9497e2d8880db804db1e2344ba3c958417603b5082a46c90d6ddb66fa146c8bb65299969ec0431733b20a358993189c22a5b
SSDEEP

6144:vUSv4krzSXaIg1iJu10m5C7XrXDDUEW+3qyqPoQ+8QVbSda8lysdWINQZoFSF+Ax:vf1rOnqiJZD7DAEXqyqQnSMey7SQZyP0

Score

10^/10

xloader_apk android banker collection discovery evasion infostealer stealth trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d2110db05a98311069c20b3ecc2814b7.apk

Resource

android-x86-arm-20240221-en

xloader_apk banker collection discovery evasion infostealer stealth trojan

android-9-x86

9 signatures

150 seconds

Malware Config

Extracted

Family

xloader_apk

C2

http://91.204.227.39:28844

DES_key

Targets

- Target
  
  d2110db05a98311069c20b3ecc2814b7
- Size
  
  445KB
- MD5
  
  d2110db05a98311069c20b3ecc2814b7
- SHA1
  
  60441e5b7881d063e849452cbe4af37669f10e0e
- SHA256
  
  305122d541f3736ce622ad4086235f86017bc56b0821ab409f8687b9b1bace5a
- SHA512
  
  4b2910eaabc3618e34f98468413a9497e2d8880db804db1e2344ba3c958417603b5082a46c90d6ddb66fa146c8bb65299969ec0431733b20a358993189c22a5b
- SSDEEP
  
  6144:vUSv4krzSXaIg1iJu10m5C7XrXDDUEW+3qyqPoQ+8QVbSda8lysdWINQZoFSF+Ax:vf1rOnqiJZD7DAEXqyqQnSMey7SQZyP0
Score

10^/10

xloader_apk banker collection discovery evasion infostealer stealth trojan
- XLoader payload
- XLoader, MoqHao
  An Android banker and info stealer.
  trojan infostealer banker xloader_apk
- Removes its main activity from the application launcher
  stealth trojan evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Reads the contacts stored on the device.
  collection
- Reads the content of the MMS message.
  collection
- Acquires the wake lock
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

xloader_apkbankercollectiondiscoveryevasioninfostealerstealthtrojan

© 2018-2024

Terms | Privacy