164a3ace3e2f6152b789679efceb87668c29ed27f510db732722c952de2a9af9

General
Target

164a3ace3e2f6152b789679efceb87668c29ed27f510db732722c952de2a9af9

Size

14MB

Sample

220516-caal6abegl

Score
10 /10
MD5

01edca7549e02e9cc1a1c6ad98478a37

SHA1

5d9170b58eed6d1dd3f737e90a50d53fe2dbf548

SHA256

164a3ace3e2f6152b789679efceb87668c29ed27f510db732722c952de2a9af9

SHA512

04be6be3bec6bc2bed8d5edc35e6d7d500d1c6f4bf538b6bf79be0f601e7548f2b0c90178ea4dca7dd50bf44d20dbc176f0d1f023bc7f8382505edfc4a04008e

Malware Config
Targets
Target

164a3ace3e2f6152b789679efceb87668c29ed27f510db732722c952de2a9af9

MD5

01edca7549e02e9cc1a1c6ad98478a37

Filesize

14MB

Score
10/10
SHA1

5d9170b58eed6d1dd3f737e90a50d53fe2dbf548

SHA256

164a3ace3e2f6152b789679efceb87668c29ed27f510db732722c952de2a9af9

SHA512

04be6be3bec6bc2bed8d5edc35e6d7d500d1c6f4bf538b6bf79be0f601e7548f2b0c90178ea4dca7dd50bf44d20dbc176f0d1f023bc7f8382505edfc4a04008e

Tags

Signatures

  • Agent smith

    Description

    Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    Tags

  • Loads dropped Dex/Jar

    Description

    Runs executable file dropped to the device during analysis.

  • Reads information about phone network operator.

  • Removes a system notification.

    Tags

  • Uses Crypto APIs (Might try to encrypt user data).

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          7/10