octo | 9cf53337faf1ec990efd9b64c80a808632cb97a10d13cba26a360b24e2ac63a9 | Triage

Resubmissions

09-10-2024 09:28

241009-lfc4xaycld 10

09-10-2024 05:19

241009-fz3wsawflf 10

09-09-2024 22:13

240909-148m2svdne 10

Sharing

General

Target

9cf53337faf1ec990efd9b64c80a808632cb97a10d13cba26a360b24e2ac63a9.bin
Size

1.4MB
Sample

241009-lfc4xaycld
MD5

8b66343d68ea2ca94c03147ff58595a2
SHA1

bbdf9f88970bbfec8f2e30afa4cee71572502a43
SHA256

9cf53337faf1ec990efd9b64c80a808632cb97a10d13cba26a360b24e2ac63a9
SHA512

58d26b3f10bc32326c6edfeb246f82b220d6967269703737d932b3fef63a3beef5292fb993bbe5268dad15c6eeb72f5fd5f64d28cf4a92847f7d87614a542cf2
SSDEEP

24576:Tssbx7S6kAVrAXYEvRSZcTeoe0blje0o32JxGN3ePq920qdQwT5rXpgvEiEmC0:jf/EvlDble32eNuS9jqdQWrXpgvEs5

Score

10^/10

octo android banker discovery evasion infostealer rat trojan

Malware Config

Targets

- Target
  
  9cf53337faf1ec990efd9b64c80a808632cb97a10d13cba26a360b24e2ac63a9.bin
- Size
  
  1.4MB
- MD5
  
  8b66343d68ea2ca94c03147ff58595a2
- SHA1
  
  bbdf9f88970bbfec8f2e30afa4cee71572502a43
- SHA256
  
  9cf53337faf1ec990efd9b64c80a808632cb97a10d13cba26a360b24e2ac63a9
- SHA512
  
  58d26b3f10bc32326c6edfeb246f82b220d6967269703737d932b3fef63a3beef5292fb993bbe5268dad15c6eeb72f5fd5f64d28cf4a92847f7d87614a542cf2
- SSDEEP
  
  24576:Tssbx7S6kAVrAXYEvRSZcTeoe0blje0o32JxGN3ePq920qdQwT5rXpgvEiEmC0:jf/EvlDble32eNuS9jqdQWrXpgvEs5
Score

10^/10

octo banker discovery evasion infostealer rat trojan
- Octo
  Octo is a banking malware with remote access capabilities first seen in April 2022.
  banker trojan infostealer rat octo
- Octo payload
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

Software Discovery

Security Software Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

octobankerdiscoveryevasioninfostealerrattrojan