axbanker | 12916e7243ac4d13afb5ec33f8bd3ec400a85da5329d02d0c3b70b53fb273d9d | Triage

Sharing

General

Target

fa82ebade3c00934194f75f93f9086bd.apk
Size

5.4MB
Sample

240812-tvtn7sygqr
MD5

fa82ebade3c00934194f75f93f9086bd
SHA1

44e10c86744e8062e994509a8da26efb26d70cea
SHA256

12916e7243ac4d13afb5ec33f8bd3ec400a85da5329d02d0c3b70b53fb273d9d
SHA512

c00696db817f45939df8810307f75c645e8ef25a65795ac175a58d0f70dbd13c953622c43e7239768fe343c0743621c7b451c064f0741fd8b9ece1717b3ca346
SSDEEP

98304:kud41M2lX7EsrjiEQq9qgtdICtrS2FaYppQfMba2KcpetQobs37eV7b/X8dbeG:ko41M2lqEtJzIyS2jQUDgTsgb/E

Score

10^/10

axbanker android banker infostealer persistence

Malware Config

Extracted

Family

axbanker

C2

https://pointwinoffer.co.in/api/message.php/

Targets

- Target
  
  fa82ebade3c00934194f75f93f9086bd.apk
- Size
  
  5.4MB
- MD5
  
  fa82ebade3c00934194f75f93f9086bd
- SHA1
  
  44e10c86744e8062e994509a8da26efb26d70cea
- SHA256
  
  12916e7243ac4d13afb5ec33f8bd3ec400a85da5329d02d0c3b70b53fb273d9d
- SHA512
  
  c00696db817f45939df8810307f75c645e8ef25a65795ac175a58d0f70dbd13c953622c43e7239768fe343c0743621c7b451c064f0741fd8b9ece1717b3ca346
- SSDEEP
  
  98304:kud41M2lX7EsrjiEQq9qgtdICtrS2FaYppQfMba2KcpetQobs37eV7b/X8dbeG:ko41M2lqEtJzIyS2jQUDgTsgb/E
Score

10^/10

persistence axbanker banker infostealer
- AxBanker
  AxBanker is an Android banking trojan that targets bank customers information distributed through fake bank applications.
  banker infostealer axbanker
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

axbankerbankerinfostealerpersistence

behavioral3