Analysis
-
max time kernel
2213309s -
platform
android_x86 -
resource
android-x86-arm -
submitted
15-10-2021 12:25
Static task
static1
Behavioral task
behavioral1
Sample
Android_Guncelleme_build_flow.apk
Resource
android-x86-arm
0 signatures
0 seconds
General
-
Target
Android_Guncelleme_build_flow.apk
-
Size
241KB
-
MD5
0c266c61ace74fd4950d361b023f0265
-
SHA1
63c4d87d4496484375d708e808859e4e511eea36
-
SHA256
e8b591d2678800298512295002a936d4850bac44d4f76908b38bb2b616ca2ff6
-
SHA512
60535f079cdb9dfc62979aacf4dfa6ca3a4117152b7c46cf5946bd3cc93eee49acd513b1cbe471efa9094cf1c73e31576596276681daa498053551cdbf28c405
Malware Config
Extracted
Family
cerberus
C2
https://hayallerimizdemiyalanoldu.com
Signatures
-
Requests disabling of battery optimizations (often used to enable hiding in the background). 1 IoCs
description ioc Process Intent action android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS com.vscsals.ogteuluecljooplc -
Uses reflection 1 IoCs
description pid Process Invokes method android.content.pm.PackageManager.isInstantApp 4903 com.vscsals.ogteuluecljooplc