Overview

overview

10

Static

static

6

70f495a5f7...9b.apk

android-9-x86

10

70f495a5f7...9b.apk

android-10-x64

10

Analysis

  • max time kernel
    5s
  • max time network
    156s
  • platform
    android_x64
  • resource
    android-x64-20240624-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
  • submitted
    15-01-2025 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    70f495a5f7d9f90c2f6223d14a8427d6b1080b6cc6980313ab4800108a8ebe9b.apk

  • Size

    1.9MB

  • MD5

    98ce3d5996531cea7da9e1d45b37dce6

  • SHA1

    1f4f13818a5e438ded8785c7f21331e8acf22910

  • SHA256

    70f495a5f7d9f90c2f6223d14a8427d6b1080b6cc6980313ab4800108a8ebe9b

  • SHA512

    6958b14c1cc29d83823e8505fa16d10a37f699a7a9cf3d3459b5883227bb95c650ebca75bc7e590b5018d9b197dc0e66eb2432fd6c0cb0e63c81e845250efc40

  • SSDEEP

    49152:yQ2ZTI6Ce1boatXivbBo3hIQO5ZeC8b/WPfCHZludC5TeeQRFiP:yQ2NI6PQjy3yeoCXudC5TeRFQ

Score
10/10
octobankerdiscoveryevasioninfostealerrattrojan

Malware Config

Extracted

Family

octo

C2

https://hastanebilgimrehber.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimiletisim.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimkapsami.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimtavsiyesi.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimkaynak.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimyolu.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimgucu.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimguncel.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimyonetim.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimdestek.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimyenilik.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimtarih.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimkaynaklari.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimplatform.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimdogru.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimdogruluk.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimanlayis.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimhizmet.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimkalite.xyz/MzhiMTg0NTAwOTY5/

https://hastanebilgimiletim.xyz/MzhiMTg0NTAwOTY5/
rc4.plain

Signatures

Processes

  • co.learnol.bksfz
    1⤵
    • Loads dropped Dex/Jar
    PID:4966

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/co.learnol.bksfz/app_oppose/fP.json
    Filesize

    153KB

    MD5

    1bcfd8c1b883d6a4cb56b0110b4556af

    SHA1

    0fcf7efb6404c5850ddcde5070e60bf5dd151b34

    SHA256

    bbf02e2ed76a96c0905ec28de9e5ff9e2cfd3b77694584319f957384a10c4c2a

    SHA512

    819f153d58c9a39bd5198e3abcd12d05face07773b64dbba30c6fa4a82b749839fb3d2e004e8f9cefca63bec24fa238b4f2404febf1cddb1d7ad849655413358

    Download Submit

  • /data/data/co.learnol.bksfz/app_oppose/fP.json
    Filesize

    153KB

    MD5

    d8365816d2a2280c5d12c8446b48278b

    SHA1

    e59099c287c5d9ab5982e46ebef8c2a78984aaf3

    SHA256

    b75ec0034cfcff8ae84d4c7f6760227dd39256d8a34c51b6ea6c90ec660c5e3c

    SHA512

    742da0b423e72e015aa2403d570abfd106bc3bf1635d5acbcb6efd58d6dd14ff19dba825c739d73e49bdca66e70a727cc04601e0e52e20fd97ab02dd93a0b184

    Download Submit

  • /data/user/0/co.learnol.bksfz/app_oppose/fP.json
    Filesize

    450KB

    MD5

    a26559217d84c32c2c8a0bb59f1ce1d8

    SHA1

    f0ea68ad2bd177d8a4216b21db87500f5e0d25ee

    SHA256

    2e51decdc36ac38ab36758a65dc87817eb319eff59b95f9c36abef0805671224

    SHA512

    cea40a37df07feba39b6b106c9a9741b4b026da56af50b63352c440c4388c4be83c5477eab690a8c33735201ed3e1f2eac344b3262036c2a4f948154132f759a

    Download Submit