soumnibot | f636b31d60db339f6f25414d30ad5dff1d61c888583bdea5f345e11680a83562 | Triage

Submit
Reports

Overview

overview

Static

static

f636b31d60...62.apk

android-13-x64

Sharing

General

Target

f636b31d60db339f6f25414d30ad5dff1d61c888583bdea5f345e11680a83562.bin
Size

4.6MB
Sample

250403-1zw4fsxnv9
MD5

0f1d58d82c7697426e131a5ea69f2332
SHA1

e559378be62d6e0ba7d67eec88b0c97b88867576
SHA256

f636b31d60db339f6f25414d30ad5dff1d61c888583bdea5f345e11680a83562
SHA512

7d7ed3d25adf1f85d7bbf18a6deb943c624358cec062e8734e063649a590d7ab4618e69fc129e45dfb545e89c28a1d73048d3e86fa4f23fb712d6589c64504bc
SSDEEP

49152:vAJWu04F3r8PtLxej5aC1dGuK9wZdR5KmUS1wX:YcHmFdVK9wZ/5K3X

Score

10^/10

soumnibot android banker defense_evasion evasion infostealer trojan

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

f636b31d60db339f6f25414d30ad5dff1d61c888583bdea5f345e11680a83562.apk

Resource

android-33-x64-arm64-20240910-en

soumnibot banker defense_evasion evasion infostealer trojan

android-13-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  f636b31d60db339f6f25414d30ad5dff1d61c888583bdea5f345e11680a83562.bin
- Size
  
  4.6MB
- MD5
  
  0f1d58d82c7697426e131a5ea69f2332
- SHA1
  
  e559378be62d6e0ba7d67eec88b0c97b88867576
- SHA256
  
  f636b31d60db339f6f25414d30ad5dff1d61c888583bdea5f345e11680a83562
- SHA512
  
  7d7ed3d25adf1f85d7bbf18a6deb943c624358cec062e8734e063649a590d7ab4618e69fc129e45dfb545e89c28a1d73048d3e86fa4f23fb712d6589c64504bc
- SSDEEP
  
  49152:vAJWu04F3r8PtLxej5aC1dGuK9wZdR5KmUS1wX:YcHmFdVK9wZ/5K3X
Score

10^/10

soumnibot banker defense_evasion evasion infostealer trojan
- Android SoumniBot payload
- SoumniBot
  SoumniBot is an Android banking trojan first seen in April 2024.
  trojan infostealer banker soumnibot
- Soumnibot family
  soumnibot
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  defense_evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Hide Artifacts

User Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

soumnibotbankerdefense_evasionevasioninfostealertrojan

© 2018-2025

Terms | Privacy