soumnibot | f369ed5ebd9ad3a79f84b0103bfdc1cd6b1e01928cabf6d3d7e6f3d5e276b26f | Triage

Submit
Reports

Overview

overview

Static

static

f369ed5ebd...6f.apk

android-13-x64

Sharing

General

Target

f369ed5ebd9ad3a79f84b0103bfdc1cd6b1e01928cabf6d3d7e6f3d5e276b26f.bin
Size

2.6MB
Sample

250327-15djas1mw9
MD5

d2b196e1e993a5543e30e30a10ca2629
SHA1

a64967c5e2b5f5ed5f65dce95b4db968385fa7ea
SHA256

f369ed5ebd9ad3a79f84b0103bfdc1cd6b1e01928cabf6d3d7e6f3d5e276b26f
SHA512

a3e477d2d6a8b80908e04043db804c7202b952002e52eecdfdeb75ceb121f94db1c1ee0188c25295c016b7f239d71d1b08926078ee9727df1a29b68e0f54b589
SSDEEP

24576:d4m51+WtE0Tmv8iZ32NNl4jo29SD/mzONPJrpjhDpvVq5rKKPqXbl9FpGPg69nfw:+JWu0To2NI9SDjPHj3ONCSy

Score

10^/10

soumnibot android banker defense_evasion evasion infostealer trojan

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

f369ed5ebd9ad3a79f84b0103bfdc1cd6b1e01928cabf6d3d7e6f3d5e276b26f.apk

Resource

android-33-x64-arm64-20240910-en

soumnibot banker defense_evasion evasion infostealer trojan

android-13-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  f369ed5ebd9ad3a79f84b0103bfdc1cd6b1e01928cabf6d3d7e6f3d5e276b26f.bin
- Size
  
  2.6MB
- MD5
  
  d2b196e1e993a5543e30e30a10ca2629
- SHA1
  
  a64967c5e2b5f5ed5f65dce95b4db968385fa7ea
- SHA256
  
  f369ed5ebd9ad3a79f84b0103bfdc1cd6b1e01928cabf6d3d7e6f3d5e276b26f
- SHA512
  
  a3e477d2d6a8b80908e04043db804c7202b952002e52eecdfdeb75ceb121f94db1c1ee0188c25295c016b7f239d71d1b08926078ee9727df1a29b68e0f54b589
- SSDEEP
  
  24576:d4m51+WtE0Tmv8iZ32NNl4jo29SD/mzONPJrpjhDpvVq5rKKPqXbl9FpGPg69nfw:+JWu0To2NI9SDjPHj3ONCSy
Score

10^/10

soumnibot banker defense_evasion evasion infostealer trojan
- Android SoumniBot payload
- SoumniBot
  SoumniBot is an Android banking trojan first seen in April 2024.
  trojan infostealer banker soumnibot
- Soumnibot family
  soumnibot
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  defense_evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Hide Artifacts

User Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

soumnibotbankerdefense_evasionevasioninfostealertrojan

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.