General

  • Target

    IDFC First Bank.apk

  • Size

    2.1MB

  • MD5

    5defa2bf8a511eb6fa9bb21754482d4b

  • SHA1

    0fa61f019e89ae3dc717922c9e3d63e759178442

  • SHA256

    43c5335e34988d51a288da3a76dd2c0c87da56fc1f65ab9b23a2d70242ac9e04

  • SHA512

    85c68975f402e349f322e1c939c049dbb3cdd96ff22d1a33b3ddd25edaa49588c4efe6c2c091e3a54223cf0c8d5f84578c219e302dde6484e5382f38e9c9ffa9

  • SSDEEP

    49152:tmOaig8VWQRlQwsKsGnlbuzPpLn2Erp8Ki23xn/8h4oe:tmOLWjzGlsVnaKi23x/8g

Score
10/10

Malware Config

Extracted

Family

axbanker

C2

https://hdf-1-80164-default-rtdb.firebaseio.com

Signatures

  • Axbanker family
  • Requests dangerous framework permissions 1 IoCs

Files

  • IDFC First Bank.apk
    .apk android

    com.ex4ashdhfvy6ple.idcfirstbk

    com.ex4ashdhfvy6ple.idcfirstbk.MainActivity


Android Permissions

IDFC First Bank.apk

Permissions

android.permission.RECEIVE_SMS

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

com.ex4ashdhfvy6ple.idcfirstbk.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION