General

  • Target

    com.strong.control_center_229_apps.evozi.com.apk

  • Size

    12.0MB

  • Sample

    210206-4malvx52g6

  • MD5

    5051b92f73e919f011967d055bb83f0f

  • SHA1

    5b03c332d9a5ced8e53d03e63ec2a5ace6609fa1

  • SHA256

    bcafc08ad3b267c5f9c0547353d4d5b833db680d65cac38c87bf9ef05b6d71ab

  • SHA512

    1d7dfe7b1e85f45fed8b231667bfad55f2111c2bbb82c0cd5ab0cf42da8f0d294b11414460e872f9150ccc6e9be654e1b1c335dd4a7bc9f0f244053bc997baf4

Malware Config

Extracted

AES_key

Targets

    • Target

      com.strong.control_center_229_apps.evozi.com.apk

    • Size

      12.0MB

    • MD5

      5051b92f73e919f011967d055bb83f0f

    • SHA1

      5b03c332d9a5ced8e53d03e63ec2a5ace6609fa1

    • SHA256

      bcafc08ad3b267c5f9c0547353d4d5b833db680d65cac38c87bf9ef05b6d71ab

    • SHA512

      1d7dfe7b1e85f45fed8b231667bfad55f2111c2bbb82c0cd5ab0cf42da8f0d294b11414460e872f9150ccc6e9be654e1b1c335dd4a7bc9f0f244053bc997baf4

    • Agent smith

      Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads name of network operator

      Uses Android APIs to discover system information.

    • Uses Crypto APIs (Might try to encrypt user data).

MITRE ATT&CK Matrix

Tasks