antidot | hxxps://www[.]apkmirror[.]com/apk/robtop-games/geometry-dash-lite/geometry-dash-lite-2-2-144-release/geometry-dash-lite-2-2-144-android-apk-download/download/?key=e32c2183c3ccf6e23b8f88504747aaee7d315b4d | Triage

Sharing

General

Target

https://www.apkmirror.com/apk/robtop-games/geometry-dash-lite/geometry-dash-lite-2-2-144-release/geometry-dash-lite-2-2-144-android-apk-download/download/?key=e32c2183c3ccf6e23b8f88504747aaee7d315b4d
Sample

250207-z9hs5szlcp

Score

10^/10

antidot android banker infostealer trojan

Malware Config

Targets

- Target
  
  https://www.apkmirror.com/apk/robtop-games/geometry-dash-lite/geometry-dash-lite-2-2-144-release/geometry-dash-lite-2-2-144-android-apk-download/download/?key=e32c2183c3ccf6e23b8f88504747aaee7d315b4d
Score

10^/10

antidot banker infostealer trojan
- Antidot
  Antidot is an Android banking trojan first seen in May 2024.
  banker trojan infostealer antidot
- Antidot family
  antidot
- Antidot payload
- Declares services with permission to bind to the system
- Requests dangerous framework permissions
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

behavioral2

antidotbankerinfostealertrojan

behavioral3