Overview

overview

10

Static

static

6

676252be67...30.apk

android-9-x86

10

676252be67...30.apk

android-10-x64

10

676252be67...30.apk

android-11-x64

10

Analysis

  • max time kernel
    176s
  • max time network
    136s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • submitted
    08-08-2024 22:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    676252be67035bf42b740041865d8a902988eb32111bcf9995e5ae774c420930.apk

  • Size

    4.7MB

  • MD5

    9fc0aa2fac6d9f36c2bc26cfec8278ce

  • SHA1

    f768666ee5f2c8a197bbc95a0b8a674d919c7c08

  • SHA256

    676252be67035bf42b740041865d8a902988eb32111bcf9995e5ae774c420930

  • SHA512

    6ade9d6c32caaa03449e973b9f7e934c07b1ca84e48469cf379abfa81dcf0699b4fcf3e2f85022cd5324d256682edb0d17a768bc8f05562836a8d57588b50c15

  • SSDEEP

    98304:DEJefbQL79Az8VCvGvPEhnzKIrzj5LFnGmu3FOT:D1f4hLVCPzKIrzJu1c

Score
10/10
hydrabankercollectioncredential_accessdefense_evasiondiscoveryevasioninfostealertrojan

Malware Config

Extracted

Family

hydra

C2

https://gist.githubusercontent.com/olimpiamilano200/65c0969b6dc440233852de072ac97545/raw/helloworld.json

Signatures

Processes

  • oppose.assist.baby
    1⤵
    • Loads dropped Dex/Jar
    • Makes use of the framework's Accessibility service
    • Queries information about active data network
    • Queries the mobile country code (MCC)
    PID:4489

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/oppose.assist.baby/app_DynamicOptDex/bTi.json
    Filesize

    3.1MB

    MD5

    ec683eb71d77ec19a2b7f62a896976a5

    SHA1

    c3f8908ebcd923895266ef85c28957a0203f9482

    SHA256

    b044b9c285319817afebd4ced88c901d7ab5c02c5e8307a6d5141c45b553a5c3

    SHA512

    9598028da31de7a4577048dd736a1297ceb1328af038049903e6ecc7d83249f0b50b805ee9c034949631e905f590e379e478916c2fc3824f1bab29e0b57abb13

    Download Submit

  • /data/user/0/oppose.assist.baby/app_DynamicOptDex/bTi.json
    Filesize

    3.1MB

    MD5

    9380d17837e17c235ec232c7def111ab

    SHA1

    0d10ff65ce0bccad51baa16613356d1f6206d510

    SHA256

    e06240fa53e1632d6576fac32a3d60ae099593bba6b985fbbdd5cd305ac56a66

    SHA512

    ddf5e0c4217a2b9c9f8c5e8670facc4e9622f7da063f73d8a23402d937fd72a60ac3b3d2f51bfb17ca0dd49937cdb5f57065a297956369936a0e5d4155bf3420

    Download Submit

  • /data/user/0/oppose.assist.baby/app_DynamicOptDex/oat/bTi.json.cur.prof
    Filesize

    1KB

    MD5

    286f98ddc8a02b932b774950a2f063af

    SHA1

    d6a0b194c8031d45addf0170b0cf628882e244ce

    SHA256

    43c8937739cbd980640bd9aa8d25328c21c9a571b16155a17ca47181df3b2f2b

    SHA512

    8c26e84a2ebe09fbdc488b8c889ffe0472af26aa0f9d006a8d217678c568bb137ef1a13a849128848d7824102e8001be3f5e8a6c154d815afaaed7e30142bbe3

    Download Submit