axbanker | 53634dd0121bb21ef2370fe12aee8c08f1d2ff9456568b15e5f5dd74fcb11de9 | Triage

Sharing

General

Target

sbicard.apk
Size

6.2MB
Sample

241001-pmgx8ayhpk
MD5

45a5f82f611a935a46356aef5ed9adad
SHA1

36c953e3aa653a2aa80e727e964dbe4fdadd6d44
SHA256

53634dd0121bb21ef2370fe12aee8c08f1d2ff9456568b15e5f5dd74fcb11de9
SHA512

b8f129ec7d8cf1ecc8e5b429b31b7900ecfda406c36d65b53cf6f364946b89439c816c9fb53fc8fbf40eeecc02826df98ec407b115f1ccf78750e0406d2b83d7
SSDEEP

98304:fRE1XTVZbVg1+8g5djaYAJo7SMeQjFhXswi+yZH3EQDZyjtFTfSDGMPALe2aoB2G:fOVBeVg5dlS2/Xsw7GeFDQALeToBXLN

Score

10^/10

axbanker android banker discovery infostealer

Malware Config

Extracted

Family

axbanker

C2

https://newax-d7dc6-default-rtdb.firebaseio.com

https://sbireward.applynowic.in/api/user/step2

Targets

- Target
  
  sbicard.apk
- Size
  
  6.2MB
- MD5
  
  45a5f82f611a935a46356aef5ed9adad
- SHA1
  
  36c953e3aa653a2aa80e727e964dbe4fdadd6d44
- SHA256
  
  53634dd0121bb21ef2370fe12aee8c08f1d2ff9456568b15e5f5dd74fcb11de9
- SHA512
  
  b8f129ec7d8cf1ecc8e5b429b31b7900ecfda406c36d65b53cf6f364946b89439c816c9fb53fc8fbf40eeecc02826df98ec407b115f1ccf78750e0406d2b83d7
- SSDEEP
  
  98304:fRE1XTVZbVg1+8g5djaYAJo7SMeQjFhXswi+yZH3EQDZyjtFTfSDGMPALe2aoB2G:fOVBeVg5dlS2/Xsw7GeFDQALeToBXLN
Score

10^/10

axbanker banker discovery infostealer
- AxBanker
  AxBanker is an Android banking trojan that targets bank customers information distributed through fake bank applications.
  banker infostealer axbanker
- Queries information about active data network
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

axbankerbankerdiscoveryinfostealer