axbanker | 53634dd0121bb21ef2370fe12aee8c08f1d2ff9456568b15e5f5dd74fcb11de9

Analysis

max time kernel
144s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
01-10-2024 12:26

Target

sbicard.apk
Size

6.2MB
MD5

45a5f82f611a935a46356aef5ed9adad
SHA1

36c953e3aa653a2aa80e727e964dbe4fdadd6d44
SHA256

53634dd0121bb21ef2370fe12aee8c08f1d2ff9456568b15e5f5dd74fcb11de9
SHA512

b8f129ec7d8cf1ecc8e5b429b31b7900ecfda406c36d65b53cf6f364946b89439c816c9fb53fc8fbf40eeecc02826df98ec407b115f1ccf78750e0406d2b83d7
SSDEEP

98304:fRE1XTVZbVg1+8g5djaYAJo7SMeQjFhXswi+yZH3EQDZyjtFTfSDGMPALe2aoB2G:fOVBeVg5dlS2/Xsw7GeFDQALeToBXLN

Score

10^/10

AxBanker
AxBanker is an Android banking trojan that targets bank customers information distributed through fake bank applications.
banker infostealer axbanker

Queries information about active data network 1 TTPs 1 IoCs

System Network Connections Discovery

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.nowopen.sbirewardcard

com.nowopen.sbirewardcard
1⤵
- Queries information about active data network
PID:4338

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact