axbanker | e23d076ddf298b415b0069475857a137da7422c458b36e34b29f137985bcdd39 | Triage

Sharing

General

Target

42f6e3a194a7b51c63210223096dbd35.apk
Size

2.5MB
Sample

240602-n8l9dscb3x
MD5

42f6e3a194a7b51c63210223096dbd35
SHA1

c563c2492b4abd7aec766b952d5d52cc4ad6f41b
SHA256

e23d076ddf298b415b0069475857a137da7422c458b36e34b29f137985bcdd39
SHA512

8a8085d85aadfdc657c8656724fa22740685562939efc9adb3a02b17a0850d54ed443f994428c8c8ed99fe8fb6f710727635eb781b8ec6bc0b9ff44593104656
SSDEEP

49152:zvfYqOO4Ga48vRAwE3TFhh3WWUVdpyjbao/Kr3ZtNLp5:zvOO4GRQRlETFzWW8o/Kr3ZtZp5

Score

10^/10

axbanker android persistence

Malware Config

Extracted

Family

axbanker

C2

https://ic-bb-3-default-rtdb.firebaseio.com

Targets

- Target
  
  42f6e3a194a7b51c63210223096dbd35.apk
- Size
  
  2.5MB
- MD5
  
  42f6e3a194a7b51c63210223096dbd35
- SHA1
  
  c563c2492b4abd7aec766b952d5d52cc4ad6f41b
- SHA256
  
  e23d076ddf298b415b0069475857a137da7422c458b36e34b29f137985bcdd39
- SHA512
  
  8a8085d85aadfdc657c8656724fa22740685562939efc9adb3a02b17a0850d54ed443f994428c8c8ed99fe8fb6f710727635eb781b8ec6bc0b9ff44593104656
- SSDEEP
  
  49152:zvfYqOO4Ga48vRAwE3TFhh3WWUVdpyjbao/Kr3ZtNLp5:zvOO4GRQRlETFzWW8o/Kr3ZtZp5
Score

7^/10

persistence
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3