8cdd6e72f3b86b583780af78d129d60846c66fe41bd3fe67a4ed2f8c840b2a07

General
Target

8cdd6e72f3b86b583780af78d129d60846c66fe41bd3fe67a4ed2f8c840b2a07

Size

2MB

Sample

220516-cbzmnshed9

Score
10 /10
MD5

19a426de1f4e93ec51437bad0095f54d

SHA1

fd3c7476c456d3f218825a64eee21f43a19bf0f4

SHA256

8cdd6e72f3b86b583780af78d129d60846c66fe41bd3fe67a4ed2f8c840b2a07

SHA512

e56d37e3561669cf4df94d7290632bdeac3cfddad6da9406cb5e94d42a2bcb71021106d147808243f103d7353a81e39254b7cbebbfab15c433d1f3c3d030cdaa

Malware Config
Targets
Target

8cdd6e72f3b86b583780af78d129d60846c66fe41bd3fe67a4ed2f8c840b2a07

MD5

19a426de1f4e93ec51437bad0095f54d

Filesize

2MB

Score
10/10
SHA1

fd3c7476c456d3f218825a64eee21f43a19bf0f4

SHA256

8cdd6e72f3b86b583780af78d129d60846c66fe41bd3fe67a4ed2f8c840b2a07

SHA512

e56d37e3561669cf4df94d7290632bdeac3cfddad6da9406cb5e94d42a2bcb71021106d147808243f103d7353a81e39254b7cbebbfab15c433d1f3c3d030cdaa

Tags

Signatures

  • Agent smith

    Description

    Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    Tags

  • Loads dropped Dex/Jar

    Description

    Runs executable file dropped to the device during analysis.

  • Reads information about phone network operator.

  • Uses Crypto APIs (Might try to encrypt user data).

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          7/10

                          behavioral1

                          10/10