axbanker | f9a66340c0d1af937a27b9eb2f2997bd90aa4ac3b16f7b2ac5db71c93534c544 | Triage

Sharing

General

Target

f9a66340c0d1af937a27b9eb2f2997bd90aa4ac3b16f7b2ac5db71c93534c544.bin
Size

2.2MB
Sample

240521-1xa37sbg57
MD5

1ef20c5fea7d23ca0c3d369a05200047
SHA1

1b5d31af4b6a97ae049607c803f9f16b48696ed6
SHA256

f9a66340c0d1af937a27b9eb2f2997bd90aa4ac3b16f7b2ac5db71c93534c544
SHA512

31825a71bfc6ea9d9b575840df68fb3858168a61ddeb6a150a9e41a0b34d91fee99e1dadf90b40da390bb89b7f96aad116cbe58003b3ee58575f1ae3c24f23ba
SSDEEP

49152:SORjOY8nzOG/tieyPpNtttttttJd8yRDErpFji23NnZwMnf:sYozBK98y2ji23NZwMf

Score

10^/10

axbanker android persistence

Malware Config

Extracted

Family

axbanker

C2

https://au-859ef-default-rtdb.firebaseio.com

Targets

- Target
  
  f9a66340c0d1af937a27b9eb2f2997bd90aa4ac3b16f7b2ac5db71c93534c544.bin
- Size
  
  2.2MB
- MD5
  
  1ef20c5fea7d23ca0c3d369a05200047
- SHA1
  
  1b5d31af4b6a97ae049607c803f9f16b48696ed6
- SHA256
  
  f9a66340c0d1af937a27b9eb2f2997bd90aa4ac3b16f7b2ac5db71c93534c544
- SHA512
  
  31825a71bfc6ea9d9b575840df68fb3858168a61ddeb6a150a9e41a0b34d91fee99e1dadf90b40da390bb89b7f96aad116cbe58003b3ee58575f1ae3c24f23ba
- SSDEEP
  
  49152:SORjOY8nzOG/tieyPpNtttttttJd8yRDErpFji23NnZwMnf:sYozBK98y2ji23NZwMf
Score

7^/10

persistence
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3