axbanker | c6d701287fa8b065989ef6f157b47249866d56ad857f296ccfa2c3745a3fe4a8 | Triage

Sharing

General

Target

c6d701287fa8b065989ef6f157b47249866d56ad857f296ccfa2c3745a3fe4a8
Size

5.4MB
Sample

241127-ye7y4stman
MD5

f9b7d4639b59abb30e0f3489e8d27906
SHA1

15851f7e107976e9ad16d310e19446579b902188
SHA256

c6d701287fa8b065989ef6f157b47249866d56ad857f296ccfa2c3745a3fe4a8
SHA512

ce8d453d0a7680bf287b338e22be6e4d7641838a914fba9dde1a08ff165d3a2722cda3eb24016fbfc206319f07f99f91878490e065ab2ec5e562c65e64e56d87
SSDEEP

98304:+/CdIM97uW4yje5CU6aim/q8HJSZywIcIu/uCcYZN9rBopDkg26i5EFlQMsPfr2r:u29qW4rN6aimywQywIjuoYZN9rBiDkgx

Score

10^/10

axbanker android collection credential_access discovery impact persistence

Malware Config

Extracted

Family

axbanker

C2

https://sheet-14c1d-default-rtdb.firebaseio.com

Targets

- Target
  
  c6d701287fa8b065989ef6f157b47249866d56ad857f296ccfa2c3745a3fe4a8
- Size
  
  5.4MB
- MD5
  
  f9b7d4639b59abb30e0f3489e8d27906
- SHA1
  
  15851f7e107976e9ad16d310e19446579b902188
- SHA256
  
  c6d701287fa8b065989ef6f157b47249866d56ad857f296ccfa2c3745a3fe4a8
- SHA512
  
  ce8d453d0a7680bf287b338e22be6e4d7641838a914fba9dde1a08ff165d3a2722cda3eb24016fbfc206319f07f99f91878490e065ab2ec5e562c65e64e56d87
- SSDEEP
  
  98304:+/CdIM97uW4yje5CU6aim/q8HJSZywIcIu/uCcYZN9rBopDkg26i5EFlQMsPfr2r:u29qW4rN6aimywQywIjuoYZN9rBiDkgx
Score

7^/10

discovery persistence collection credential_access impact
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Queries the mobile country code (MCC)
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

System Information Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

discoverypersistence

behavioral2

behavioral3

collectioncredential_accessimpact