axbanker | 00bd84003c003029ed6f50b2a88a90b48c0c50a46dcc6f8273b554a4f003b391 | Triage

Sharing

General

Target

00bd84003c003029ed6f50b2a88a90b48c0c50a46dcc6f8273b554a4f003b391.bin
Size

2.2MB
Sample

240523-1xljyaae5s
MD5

4f4451405493f338b17ea02b52c8559f
SHA1

c9b73557b5c081ea5f9b37677d2ede8ef6f9111c
SHA256

00bd84003c003029ed6f50b2a88a90b48c0c50a46dcc6f8273b554a4f003b391
SHA512

ef36774829d2703419209fa364be095cadad1ebb0eb7fce6e9d595bf079fdf24f16f1fb76dcc122341e8063467759111b6ae3e8d1015cac873d2cdc8f01d5887
SSDEEP

49152:+smKDsBhhfhV9QVEjvoi5eyPpNtttttttJd8yR5Erpfji23NnUxMn2K:+smKDipr9QcQi98yyji23NUxIv

Score

10^/10

axbanker android persistence

Malware Config

Extracted

Family

axbanker

C2

https://au-6-c8bb1-default-rtdb.firebaseio.com

Targets

- Target
  
  00bd84003c003029ed6f50b2a88a90b48c0c50a46dcc6f8273b554a4f003b391.bin
- Size
  
  2.2MB
- MD5
  
  4f4451405493f338b17ea02b52c8559f
- SHA1
  
  c9b73557b5c081ea5f9b37677d2ede8ef6f9111c
- SHA256
  
  00bd84003c003029ed6f50b2a88a90b48c0c50a46dcc6f8273b554a4f003b391
- SHA512
  
  ef36774829d2703419209fa364be095cadad1ebb0eb7fce6e9d595bf079fdf24f16f1fb76dcc122341e8063467759111b6ae3e8d1015cac873d2cdc8f01d5887
- SSDEEP
  
  49152:+smKDsBhhfhV9QVEjvoi5eyPpNtttttttJd8yR5Erpfji23NnUxMn2K:+smKDipr9QcQi98yyji23NUxIv
Score

7^/10

persistence
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3