General
-
Target
3a6776960a1664a016efcec58e5c2dd9223c13f20e91fe7da7dc187beb45cd9a
-
Size
26.9MB
-
Sample
220418-qcm7xscaa7
-
MD5
859bdfb161b0164f9c8e515a0e5259ac
-
SHA1
e91e88533bd35a1a1cb2c2fbcb931ab2e240cec8
-
SHA256
3a6776960a1664a016efcec58e5c2dd9223c13f20e91fe7da7dc187beb45cd9a
-
SHA512
80c2e6558e903f1b9c6ef16d69c33a7a20a8e4ef71773334db7fa77e7eb22bee2043d66ad62b0281f26628f2e91909927c14ccc732a0b14657b1c6b53c0a825a
Malware Config
Targets
-
-
Target
3a6776960a1664a016efcec58e5c2dd9223c13f20e91fe7da7dc187beb45cd9a
-
Size
26.9MB
-
MD5
859bdfb161b0164f9c8e515a0e5259ac
-
SHA1
e91e88533bd35a1a1cb2c2fbcb931ab2e240cec8
-
SHA256
3a6776960a1664a016efcec58e5c2dd9223c13f20e91fe7da7dc187beb45cd9a
-
SHA512
80c2e6558e903f1b9c6ef16d69c33a7a20a8e4ef71773334db7fa77e7eb22bee2043d66ad62b0281f26628f2e91909927c14ccc732a0b14657b1c6b53c0a825a
Score10/10-
Agent smith
Agent smith is a modular adware that installs malicious ADs into legitimate applications.
-
Checks Android system properties for emulator presence.
-
Checks known Qemu files.
Checks for known Qemu files that exist on Android virtual device images.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Requests dangerous framework permissions
-
Reads information about phone network operator.
-
Removes a system notification.
-
Uses Crypto APIs (Might try to encrypt user data).
-