Overview

overview

10

Static

static

10

1b7ac6418b...0f.apk

android-13-x64

10

Analysis

  • max time kernel
    149s
  • max time network
    152s
  • platform
    android-13_x64
  • resource
    android-33-x64-arm64-20240910-en
  • resource tags

    arch:arm64arch:x64arch:x86image:android-33-x64-arm64-20240910-enlocale:en-usos:android-13-x64system
  • submitted
    27/03/2025, 22:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1b7ac6418b44cf8c0f7ab905052671bb1113ac233caf93467a9e2021f364010f.apk

  • Size

    2.6MB

  • MD5

    4a96e561fb2153c8b57c7d63e927fde1

  • SHA1

    9c8540032f1512bcd6137e7a19eaa5d08f1cbc08

  • SHA256

    1b7ac6418b44cf8c0f7ab905052671bb1113ac233caf93467a9e2021f364010f

  • SHA512

    911bd34b18168eece41971b9a8c2620168f96f4b665bd1e2d5a4f2170f61022986c3107909f1520bd0d1060bb72dcff5697f838758311c3572332e051d19a7aa

  • SSDEEP

    49152:ZJWu0Xlnx7DtVhwFPFRv6TkT1c8arVtDQgodvNAxCYf:ZcXltDtVhwFPFRv6TkT1c8arVtQuf

Score
10/10
soumnibotbankerdefense_evasionevasioninfostealertrojan

Malware Config

Signatures

  • Android SoumniBot payload 1 IoCs
  • SoumniBot

    SoumniBot is an Android banking trojan first seen in April 2024.

    trojaninfostealerbankersoumnibot
  • Soumnibot family
    soumnibot
  • Loads dropped Dex/Jar 1 TTPs 1 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Requests disabling of battery optimizations (often used to enable hiding in the background). 1 TTPs 1 IoCs
    defense_evasion

Processes

  • sfrgbkk.epgor.eswdf
    1⤵
    • Loads dropped Dex/Jar
    • Requests disabling of battery optimizations (often used to enable hiding in the background).
    PID:4502

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/sfrgbkk.epgor.eswdf/app_sfrgbkk.epgor.eswdf.AAbaseZZ.AABaseApplicationZZ/newobfs/0.pobfs
    Filesize

    1.8MB

    MD5

    23d35ef7abadbc5440272278cf8b1d68

    SHA1

    086b30a4b4bcfa157159f011e7b10b065146a943

    SHA256

    862aec0565943f5496f569f7b5c15def4ab760fd800f6195e3524053946dc66b

    SHA512

    9bcd229f82d5bd2c9b49470f11b7e0aa9da1035fa68d5475a0ccdf55b35fcf75f681b3f3bd2bf0c12cfc727a0b5131eb443b50a1c062d8f404121258961599ce

    Download Submit