soumnibot | 412e23459f733b4bb0e5a173624457c632e04397e364ea5a503e71e93526efe7 | Triage

Submit
Reports

Overview

overview

Static

static

412e23459f...e7.apk

android-11-x64

Sharing

General

Target

412e23459f733b4bb0e5a173624457c632e04397e364ea5a503e71e93526efe7.bin
Size

2.6MB
Sample

250403-12sh2sxpt7
MD5

11a00096901c5ed14f17a7fe9ba557ec
SHA1

69e2536f36d1a93ee60d2abec3302c27a07f9d9d
SHA256

412e23459f733b4bb0e5a173624457c632e04397e364ea5a503e71e93526efe7
SHA512

15c93c2aab90fed667140e346a1d6fc701ea4b44c1f32297d9af02786d927c6845058c283d412bc065ce830b635f1b3ce7769f3c861411afba9f2de89d705a07
SSDEEP

24576:sr4m51+WtE0+gDdgm8xrroKlyAkbrIGhWUlEcsQVfCdLZ:9JWu0ddgm8xx2dWcEcJCdt

Score

10^/10

soumnibot android banker defense_evasion evasion infostealer trojan

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

412e23459f733b4bb0e5a173624457c632e04397e364ea5a503e71e93526efe7.apk

Resource

android-x64-arm64-20240910-en

soumnibot banker defense_evasion evasion infostealer trojan

android-11-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  412e23459f733b4bb0e5a173624457c632e04397e364ea5a503e71e93526efe7.bin
- Size
  
  2.6MB
- MD5
  
  11a00096901c5ed14f17a7fe9ba557ec
- SHA1
  
  69e2536f36d1a93ee60d2abec3302c27a07f9d9d
- SHA256
  
  412e23459f733b4bb0e5a173624457c632e04397e364ea5a503e71e93526efe7
- SHA512
  
  15c93c2aab90fed667140e346a1d6fc701ea4b44c1f32297d9af02786d927c6845058c283d412bc065ce830b635f1b3ce7769f3c861411afba9f2de89d705a07
- SSDEEP
  
  24576:sr4m51+WtE0+gDdgm8xrroKlyAkbrIGhWUlEcsQVfCdLZ:9JWu0ddgm8xx2dWcEcJCdt
Score

10^/10

soumnibot banker defense_evasion evasion infostealer trojan
- Android SoumniBot payload
- SoumniBot
  SoumniBot is an Android banking trojan first seen in April 2024.
  trojan infostealer banker soumnibot
- Soumnibot family
  soumnibot
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  defense_evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Hide Artifacts

User Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

soumnibotbankerdefense_evasionevasioninfostealertrojan

© 2018-2025

Terms | Privacy