1fb7ccadf1a52bc09f8d61c4b8a478d88f12e6eea902372a0344988ed8a7a560

General
Target

1fb7ccadf1a52bc09f8d61c4b8a478d88f12e6eea902372a0344988ed8a7a560

Size

25MB

Sample

220516-cl5xfacdbq

Score
10 /10
MD5

2d119bad740db61ef10c260548573666

SHA1

8488405a80ca724b71db99cf0ea7408553224c31

SHA256

1fb7ccadf1a52bc09f8d61c4b8a478d88f12e6eea902372a0344988ed8a7a560

SHA512

b3fdabb676a7f1658f6ee74692de720787fd6a500dfa4e758361f372d8a19b19c3ef3e2b16d53b04bf24086e5ebab456c138f48ea4130ae119e632e551c8132f

Malware Config
Targets
Target

1fb7ccadf1a52bc09f8d61c4b8a478d88f12e6eea902372a0344988ed8a7a560

MD5

2d119bad740db61ef10c260548573666

Filesize

25MB

Score
10/10
SHA1

8488405a80ca724b71db99cf0ea7408553224c31

SHA256

1fb7ccadf1a52bc09f8d61c4b8a478d88f12e6eea902372a0344988ed8a7a560

SHA512

b3fdabb676a7f1658f6ee74692de720787fd6a500dfa4e758361f372d8a19b19c3ef3e2b16d53b04bf24086e5ebab456c138f48ea4130ae119e632e551c8132f

Tags

Signatures

  • Agent smith

    Description

    Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    Tags

  • Requests cell location

    Description

    Uses Android APIs to to get current cell location.

  • Reads information about phone network operator.

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          7/10

                          behavioral1

                          10/10