Overview

overview

10

Static

static

10

GBWA 16.20...ds.apk

android-11-x64

10

origin.apk

android-11-x64

7

Analysis

  • max time kernel
    4s
  • max time network
    314s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240221-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system
  • submitted
    17-04-2024 19:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    GBWA 16.20 SamMods.apk

  • Size

    97.0MB

  • MD5

    12aa3280b4ce5d1b34212eb9b9f29abd

  • SHA1

    886c180c861aef699ebd6be49f220389b389d49a

  • SHA256

    6dcd7ff6314ea4e516e2d30d7069be53447bf64f05c3bf688867a310561ab1f6

  • SHA512

    801f9f4abc5b760099da3936d5d805024f65ed3484d019e1f6ecb10d802729878966e11963024e04eb5fcfe4bcdc84d35eb4cc098ce4d2b142176acdfc2ecfac

  • SSDEEP

    1572864:xpOjmryc1oFAOLAjIo0dVZPapJHhbozN986aPJHj7OCBjF:xpOjmO32R0dTQJoRiJHjq+jF

Score
10/10
triadabankerevasioninfostealertrojan

Malware Config

Signatures

  • Android Triada payload 2 IoCs
  • Triada

    Triada is an Android banking trojan first seen in 2016.

    trojaninfostealerbankertriada
  • Loads dropped Dex/Jar 1 TTPs 2 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Acquires the wake lock 1 IoCs
  • Declares services with permission to bind to the system 3 IoCs
  • Requests dangerous framework permissions 24 IoCs

Processes

  • com.gbwhatsapp
    1⤵
    • Loads dropped Dex/Jar
    • Acquires the wake lock
    PID:4444

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.gbwhatsapp/origin.apk
    Filesize

    76.1MB

    MD5

    243a705993221c7b739e8573d903f8e8

    SHA1

    b2a49e0c713954aa533b6d643edeae7f1dd0a9ac

    SHA256

    5b6380ea8a1e902174a03920c2876219efe7b69615dbd5d357ee0ed26889c734

    SHA512

    c4c8a0d5a3a4746882d01994e853d08797d62796106b603f2e939dcc1cc240a8bf17f4d871856f05f924d794fe911c0956eff592eeb9b8d2c487931fd65face7

    Download Submit

  • /system_ext/framework/androidx.window.sidecar.jar
    Filesize

    12KB

    MD5

    bdf3529e80318eb14e53a5bf3720c10d

    SHA1

    25c9ace4b1af6e80ebb2572345972c56505969ba

    SHA256

    bbc8300dd1e9cd08de8f66560c1ac2c928615b72b51cef9649f88974f586d64b

    SHA512

    48b9c2d01171bb651b9b54826baa51f4add48431a3efd8ceb5f7cc3bcd6f8f37edf47fabb24349dd15b3a02329cd450f90a8d164bf4f8dfae554bf3b35a8a55b

    Download Submit