soumnibot | 5103554fd6b85ca5c1e54434d7a889aa17fb7d5f4afa38f92a2d728aabdcff76 | Triage

Submit
Reports

Overview

overview

Static

static

5103554fd6...76.apk

android-13-x64

Sharing

General

Target

5103554fd6b85ca5c1e54434d7a889aa17fb7d5f4afa38f92a2d728aabdcff76.bin
Size

4.6MB
Sample

250327-13n71s1lz6
MD5

ada9135130e3480d95903a6635fa7a6a
SHA1

5ef05858efc4a876204758279712b693a7d8eaaa
SHA256

5103554fd6b85ca5c1e54434d7a889aa17fb7d5f4afa38f92a2d728aabdcff76
SHA512

6f97323198f5f68cb29f3a837a727e3edeeb9c85d1e1cd18911796241e14af8b27ba77a14b774722d9335f94e32ffb5219fad5507175bdc52f794e95c6101a94
SSDEEP

24576:kBP4m51+WtE02qQ/kiKl08btTMbYtSi9IwiWlsOCCcabUZXlujJg4Cpl2VxoK1TL:rJWu02cswaJabUZXl6CpqbDsBFt4Aot1

Score

10^/10

soumnibot android banker defense_evasion evasion infostealer trojan

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

5103554fd6b85ca5c1e54434d7a889aa17fb7d5f4afa38f92a2d728aabdcff76.apk

Resource

android-33-x64-arm64-20240910-en

soumnibot banker defense_evasion evasion infostealer trojan

android-13-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  5103554fd6b85ca5c1e54434d7a889aa17fb7d5f4afa38f92a2d728aabdcff76.bin
- Size
  
  4.6MB
- MD5
  
  ada9135130e3480d95903a6635fa7a6a
- SHA1
  
  5ef05858efc4a876204758279712b693a7d8eaaa
- SHA256
  
  5103554fd6b85ca5c1e54434d7a889aa17fb7d5f4afa38f92a2d728aabdcff76
- SHA512
  
  6f97323198f5f68cb29f3a837a727e3edeeb9c85d1e1cd18911796241e14af8b27ba77a14b774722d9335f94e32ffb5219fad5507175bdc52f794e95c6101a94
- SSDEEP
  
  24576:kBP4m51+WtE02qQ/kiKl08btTMbYtSi9IwiWlsOCCcabUZXlujJg4Cpl2VxoK1TL:rJWu02cswaJabUZXl6CpqbDsBFt4Aot1
Score

10^/10

soumnibot banker defense_evasion evasion infostealer trojan
- Android SoumniBot payload
- SoumniBot
  SoumniBot is an Android banking trojan first seen in April 2024.
  trojan infostealer banker soumnibot
- Soumnibot family
  soumnibot
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  defense_evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Hide Artifacts

User Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

soumnibotbankerdefense_evasionevasioninfostealertrojan

© 2018-2025

Terms | Privacy