all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Bad Zip and new Packer for Android/BianLian

Add to bookmarks
Dec. 14, 2023, 2:26 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

I got my hands on a new sample of Android/BianLian (sha256: 0070bc10699a982a26f6da48452b8f5e648e1e356a7c1667f393c5c3a1150865), a banking botnet I have been tracking for months (no, years).

On December 14, 2023, there are 6 active C&C for Android/BianLian botnet. This is a partial list which shows (1) a known active C&C (“UP”), (2) a new active C&C (“NEW”) and (3) an old C&C which is no longer active.

Attempt to unpack #1

As most samples are packed nowadays, I directly through it into Kavanoz …

android far issue malformed malware analysis manifest medusa packer patching payload process sample unpacking visible wrong zip

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Malicious repositories proliferate in Docker Hub 32 minutes ago | malware.news
article campaigns container docker +12
Microsoft Azure, Cloudflare lures leveraged to spread Latrodectus malware downloader 32 minutes ago | malware.news
article azure bleepingcomputer campaigns +14
Novel Wpeeper Android malware examined 32 minutes ago | malware.news
android android devices android malware app +21
Philadelphia Inquirer breach impacts over 25K 32 minutes ago | malware.news
article bleepingcomputer breach cyberattack +8
More than 450K hit by JPMorgan breach 33 minutes ago | malware.news
article august breach compromised +14
Host takeovers likely with critical Judge0 flaws 33 minutes ago | malware.news
arbitrary code arbitrary code execution article code +17
Microsoft vulnerability prevalence slightly declines 33 minutes ago | malware.news
microsoft microsoft vulnerability reports security +4
FTC urged to probe automakers' location data sharing practices 33 minutes ago | malware.news
access car car manufacturers court +24
UK cracks down on default passwords for smart devices 33 minutes ago | malware.news
act and telecommunications article bolster +26

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Security Cyber Risk Analyst

@ Intel | USA - AZ - Chandler
View on infosec-jobs.com

Senior Cloud Security Engineer (Fullstack)

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Principal Product Security Engineer

@ Oracle | United States
View on infosec-jobs.com

Cybersecurity Strategy Director

@ Proofpoint | Sunnyvale, CA
View on infosec-jobs.com

Information Security Consultant/Auditor

@ Devoteam | Lisboa, Portugal
View on infosec-jobs.com

IT Security Engineer til Netcompany IT Services

@ Netcompany | Copenhagen, Denmark
View on infosec-jobs.com
View more jobs