octo | 3164dcde64c4fbbe4ec85f87e432fc9acdc8a0be90ed5e34171aa5be4bcca053 | Triage

Submit
Reports

Overview

overview

Static

static

6

3164dcde64...53.apk

android-10-x64

Sharing

General

Target

3164dcde64c4fbbe4ec85f87e432fc9acdc8a0be90ed5e34171aa5be4bcca053
Size

8.0MB
Sample

241009-j2b3ma1dqc
MD5

567a74ac5b9feb8f02d1d3fc105c0f6c
SHA1

c277615cb3758a8d7559ac427258a4405f0ff1e5
SHA256

3164dcde64c4fbbe4ec85f87e432fc9acdc8a0be90ed5e34171aa5be4bcca053
SHA512

10cd15aff29a280dc347eea2091d8c8252502deb0d087913df75bcd58f4cc62d67a0f09fb9d2742b4ae30bd06238b5d6b93ce12904f4ec36c783956f8979dc9e
SSDEEP

98304:dO8KfmaJ0Uj7URsbBVKeg5iSRGZP5j69baMWBcfXtm7rXcsSyC9:w8KfmaXj7URYU7rs5m9xWBcfdm/o

Score

10^/10

octo android banker discovery evasion infostealer rat trojan

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

3164dcde64c4fbbe4ec85f87e432fc9acdc8a0be90ed5e34171aa5be4bcca053.apk

Resource

android-x64-20240624-en

octo banker discovery evasion infostealer rat trojan

android-10-x64

6 signatures

30 seconds

Malware Config

Targets

- Target
  
  3164dcde64c4fbbe4ec85f87e432fc9acdc8a0be90ed5e34171aa5be4bcca053
- Size
  
  8.0MB
- MD5
  
  567a74ac5b9feb8f02d1d3fc105c0f6c
- SHA1
  
  c277615cb3758a8d7559ac427258a4405f0ff1e5
- SHA256
  
  3164dcde64c4fbbe4ec85f87e432fc9acdc8a0be90ed5e34171aa5be4bcca053
- SHA512
  
  10cd15aff29a280dc347eea2091d8c8252502deb0d087913df75bcd58f4cc62d67a0f09fb9d2742b4ae30bd06238b5d6b93ce12904f4ec36c783956f8979dc9e
- SSDEEP
  
  98304:dO8KfmaJ0Uj7URsbBVKeg5iSRGZP5j69baMWBcfXtm7rXcsSyC9:w8KfmaXj7URYU7rs5m9xWBcfdm/o
Score

10^/10

octo banker discovery evasion infostealer rat trojan
- Octo
  Octo is a banking malware with remote access capabilities first seen in April 2022.
  banker trojan infostealer rat octo
- Octo payload
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Queries the phone number (MSISDN for GSM devices)
  discovery
- Queries the mobile country code (MCC)
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

octobankerdiscoveryevasioninfostealerrattrojan

© 2018-2025

Terms | Privacy