axbanker | 7803edca36272a0dd0db6c92a15d75a7be22d6d0ef211281520f40336d74c925 | Triage

Sharing

General

Target

6be5f03c8f98c80241c9c9d8a5348ffa.apk
Size

10.9MB
Sample

250221-je7wsawncs
MD5

6be5f03c8f98c80241c9c9d8a5348ffa
SHA1

bdf5336de045f3cf4cd49bbb972caea0cb23a07d
SHA256

7803edca36272a0dd0db6c92a15d75a7be22d6d0ef211281520f40336d74c925
SHA512

3ba3f2991a69ebda0177121892dbbfe6187c123ba833847143eefb76fd6abeba9681a48045d1bca843e434c37790e62b5491dca2a7113aef8b7ae24ece6071c5
SSDEEP

196608:ITR2F27PMY+dTiDDOnFKwsF8jeOL5vN4z1sBcDPvI0Is6r60yWY4KHqLXn9mkoJ0:6RMMDOnFVb5vyJsWDPvqs6r60CJQNYPe

Score

10^/10

axbanker android banker discovery infostealer

Malware Config

Extracted

Family

axbanker

C2

https://icstoreapp.co.in/index.php/api/user/step3

https://newax-d7dc6-default-rtdb.firebaseio.com

Targets

- Target
  
  6be5f03c8f98c80241c9c9d8a5348ffa.apk
- Size
  
  10.9MB
- MD5
  
  6be5f03c8f98c80241c9c9d8a5348ffa
- SHA1
  
  bdf5336de045f3cf4cd49bbb972caea0cb23a07d
- SHA256
  
  7803edca36272a0dd0db6c92a15d75a7be22d6d0ef211281520f40336d74c925
- SHA512
  
  3ba3f2991a69ebda0177121892dbbfe6187c123ba833847143eefb76fd6abeba9681a48045d1bca843e434c37790e62b5491dca2a7113aef8b7ae24ece6071c5
- SSDEEP
  
  196608:ITR2F27PMY+dTiDDOnFKwsF8jeOL5vN4z1sBcDPvI0Is6r60yWY4KHqLXn9mkoJ0:6RMMDOnFVb5vyJsWDPvqs6r60CJQNYPe
Score

1^/10
behavioral1
- Target
  
  app.apk
- Size
  
  7.0MB
- MD5
  
  3576766d992b7c33538a39ae246dcdde
- SHA1
  
  7141d8f16a509cdcf0c8ad20e0cce321af094cb3
- SHA256
  
  aa359e67e5ad3fd36d9487b30fb08d7a47d66dae31edc7c4f32cdb626bc3228f
- SHA512
  
  4bdc5acf901e568c5c64d099bc5c2b4d7d9e770e649b1876305b4420f2a0044c3f4c0669306b7eefbdb131dec9c9d865bb34d6194087d6f62c36b5c849fd6965
- SSDEEP
  
  196608:LfL/hEh5MF+rrAMwv2IieF6RoEmLpolMYCF:nivMInAMwvJieF6K3LiM9
Score

10^/10

axbanker banker discovery infostealer
- AxBanker
  AxBanker is an Android banking trojan that targets bank customers information distributed through fake bank applications.
  banker infostealer axbanker
- Axbanker family
  axbanker
- Queries information about active data network
  discovery
behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

axbankerbankerdiscoveryinfostealer