3b77093893ee4bf1dae481202ad08e881295ac5fb019d0bdd9c901c2e9d02731

General
Target

3b77093893ee4bf1dae481202ad08e881295ac5fb019d0bdd9c901c2e9d02731

Size

16MB

Sample

220516-q9njysdce3

Score
10 /10
MD5

6921eeda2be0d1ea76228b85fddcfcc1

SHA1

2667519d006c57ffc4be03ba065820ab775ef2f2

SHA256

3b77093893ee4bf1dae481202ad08e881295ac5fb019d0bdd9c901c2e9d02731

SHA512

29de655e38e07a0cc38a15a7ecf9bbf9503911cc74d35033abbbcd334c7698c07fbb67b541ec368857c63c2afb4e47660d2daba94bb78d3e7320c1aec0d79b8d

Malware Config
Targets
Target

3b77093893ee4bf1dae481202ad08e881295ac5fb019d0bdd9c901c2e9d02731

MD5

6921eeda2be0d1ea76228b85fddcfcc1

Filesize

16MB

Score
10/10
SHA1

2667519d006c57ffc4be03ba065820ab775ef2f2

SHA256

3b77093893ee4bf1dae481202ad08e881295ac5fb019d0bdd9c901c2e9d02731

SHA512

29de655e38e07a0cc38a15a7ecf9bbf9503911cc74d35033abbbcd334c7698c07fbb67b541ec368857c63c2afb4e47660d2daba94bb78d3e7320c1aec0d79b8d

Tags

Signatures

  • Agent smith

    Description

    Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    Tags

  • Requests cell location

    Description

    Uses Android APIs to to get current cell location.

  • Reads information about phone network operator.

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          7/10

                          behavioral1

                          10/10