octo | 7acfbc2fffd7d395aed93b41aae87a89104139a38ce25b5bb7e1cb5d52e23aea | Triage

Sharing

General

Target

7acfbc2fffd7d395aed93b41aae87a89104139a38ce25b5bb7e1cb5d52e23aea.bin
Size

2.6MB
Sample

250207-1ytxps1ngk
MD5

6d7a5aa85283a8917a1f078a251e49be
SHA1

d06c76725b27b1620ccf9593385f2becf7bd1b9a
SHA256

7acfbc2fffd7d395aed93b41aae87a89104139a38ce25b5bb7e1cb5d52e23aea
SHA512

203daab8c47fe60b6027b0a0844ec43c14e11f877cbacaa63c73e75086d69e481f91a792ea6c77197d870df2d3072a7dcdf5224be50d3fddd5a5fc699947f786
SSDEEP

49152:UYSVe+T/k7p3lMETzZN/3rZz3MsQh4MrFr7ZEqzf/1MdAVbrXp5LWHO9+gPZXbB2:C1Tk7sEPZtdzOeuF3CqzVrrXp56u9tP6

Score

10^/10

octo android banker evasion infostealer rat trojan

Malware Config

Extracted

Family

octo

C2

https://kendimarkam.com/MWRlOTUyYjExM2Ew/

https://sporakademi4734/MWRlOTUyYjExM2Ew/

https://spormalzemeleri3414.com/MWRlOTUyYjExM2Ew/

https://malzemealmalisn552.com/MWRlOTUyYjExM2Ew/

https://designweb3413.com/MWRlOTUyYjExM2Ew/

rc4.plain

Targets

- Target
  
  7acfbc2fffd7d395aed93b41aae87a89104139a38ce25b5bb7e1cb5d52e23aea.bin
- Size
  
  2.6MB
- MD5
  
  6d7a5aa85283a8917a1f078a251e49be
- SHA1
  
  d06c76725b27b1620ccf9593385f2becf7bd1b9a
- SHA256
  
  7acfbc2fffd7d395aed93b41aae87a89104139a38ce25b5bb7e1cb5d52e23aea
- SHA512
  
  203daab8c47fe60b6027b0a0844ec43c14e11f877cbacaa63c73e75086d69e481f91a792ea6c77197d870df2d3072a7dcdf5224be50d3fddd5a5fc699947f786
- SSDEEP
  
  49152:UYSVe+T/k7p3lMETzZN/3rZz3MsQh4MrFr7ZEqzf/1MdAVbrXp5LWHO9+gPZXbB2:C1Tk7sEPZtdzOeuF3CqzVrrXp56u9tP6
Score

10^/10

octo banker evasion infostealer rat trojan
- Octo
  Octo is a banking malware with remote access capabilities first seen in April 2022.
  banker trojan infostealer rat octo
- Octo family
  octo
- Octo payload
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

octobankerevasioninfostealerrattrojan

behavioral2

octobankerevasioninfostealerrattrojan