octo | c098908271baf8f8c7d3fde0a421cf390ff6ad6d4c991d08feaab7a99f10634d | Triage

Submit
Reports

Overview

overview

Static

static

6

c098908271...4d.apk

android-10-x64

Sharing

General

Target

c098908271baf8f8c7d3fde0a421cf390ff6ad6d4c991d08feaab7a99f10634d
Size

9.4MB
Sample

241009-j2y76axcjm
MD5

c9210640a1e19915b8cdfaffff5cb658
SHA1

83f2c926a0e11a185eaa824f834c53206cebbd2b
SHA256

c098908271baf8f8c7d3fde0a421cf390ff6ad6d4c991d08feaab7a99f10634d
SHA512

620621efa2aae48ffdcaa7224c970f245f57b4c3026c2682594198672b956617bbbf383582814ab29acc7301dc91dcdd9320cc10b2211c9a083caeb9888e558f
SSDEEP

196608:97hXfNriUADezEFVtaX0MN7cn0zxWv9dj7wR/5dzKHSo3nD:97hXfNrixjn0zxWo5dmHSo3nD

Score

10^/10

octo android banker discovery evasion infostealer rat trojan

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

c098908271baf8f8c7d3fde0a421cf390ff6ad6d4c991d08feaab7a99f10634d.apk

Resource

android-x64-20240624-en

octo banker discovery evasion infostealer rat trojan

android-10-x64

6 signatures

30 seconds

Malware Config

Targets

- Target
  
  c098908271baf8f8c7d3fde0a421cf390ff6ad6d4c991d08feaab7a99f10634d
- Size
  
  9.4MB
- MD5
  
  c9210640a1e19915b8cdfaffff5cb658
- SHA1
  
  83f2c926a0e11a185eaa824f834c53206cebbd2b
- SHA256
  
  c098908271baf8f8c7d3fde0a421cf390ff6ad6d4c991d08feaab7a99f10634d
- SHA512
  
  620621efa2aae48ffdcaa7224c970f245f57b4c3026c2682594198672b956617bbbf383582814ab29acc7301dc91dcdd9320cc10b2211c9a083caeb9888e558f
- SSDEEP
  
  196608:97hXfNriUADezEFVtaX0MN7cn0zxWv9dj7wR/5dzKHSo3nD:97hXfNrixjn0zxWo5dmHSo3nD
Score

10^/10

octo banker discovery evasion infostealer rat trojan
- Octo
  Octo is a banking malware with remote access capabilities first seen in April 2022.
  banker trojan infostealer rat octo
- Octo payload
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Queries the phone number (MSISDN for GSM devices)
  discovery
- Queries the mobile country code (MCC)
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

octobankerdiscoveryevasioninfostealerrattrojan

© 2018-2025

Terms | Privacy