axbanker | 6f56da75c24cd4e0f701a8047abd1840fdbf5c4671f7a15cf050821e96fd2878 | Triage

Sharing

General

Target

d2585284068212fed993e19fb080214b.apk
Size

3.5MB
Sample

250108-ygxwxssrhm
MD5

d2585284068212fed993e19fb080214b
SHA1

eeae0422270008dc9d1d581c2d320c5f39a2f736
SHA256

6f56da75c24cd4e0f701a8047abd1840fdbf5c4671f7a15cf050821e96fd2878
SHA512

c6bb86f4f4e9a55870762b274f8e2d3536b8e32e932845f243da6cf953b696fd110423204cf0ea155d9380eca17837e33d8e3a0f00161a14631d95f964cbef1b
SSDEEP

98304:0jEq5em9qx+bGNvcHwq/zgRcvsE952fdFPjOr0EY+T:aEq5JU+gvcQq/zocUcYc

Score

10^/10

axbanker android evasion stealth trojan

Malware Config

Extracted

Family

axbanker

C2

https://broadcast-receive-c6026-default-rtdb.firebaseio.com

Targets

- Target
  
  d2585284068212fed993e19fb080214b.apk
- Size
  
  3.5MB
- MD5
  
  d2585284068212fed993e19fb080214b
- SHA1
  
  eeae0422270008dc9d1d581c2d320c5f39a2f736
- SHA256
  
  6f56da75c24cd4e0f701a8047abd1840fdbf5c4671f7a15cf050821e96fd2878
- SHA512
  
  c6bb86f4f4e9a55870762b274f8e2d3536b8e32e932845f243da6cf953b696fd110423204cf0ea155d9380eca17837e33d8e3a0f00161a14631d95f964cbef1b
- SSDEEP
  
  98304:0jEq5em9qx+bGNvcHwq/zgRcvsE952fdFPjOr0EY+T:aEq5JU+gvcQq/zocUcYc
Score

8^/10

evasion stealth trojan
- Removes its main activity from the application launcher
  stealth trojan evasion
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Suppress Application Icon

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionstealthtrojan

behavioral2

evasionstealthtrojan

behavioral3

evasionstealthtrojan