7f4bdec81b152dae8e3a2ee49ea44081230e127ac2f5f992434bb2d8eaec2899

General
Target

7f4bdec81b152dae8e3a2ee49ea44081230e127ac2f5f992434bb2d8eaec2899

Size

21MB

Sample

220520-gkv33afgdl

Score
10 /10
MD5

b6a3115b02eed8a4019382077a207a37

SHA1

7a40ee187c35031ee3b7af7f3852016ea98dc297

SHA256

7f4bdec81b152dae8e3a2ee49ea44081230e127ac2f5f992434bb2d8eaec2899

SHA512

51ef758cab19be0696b1497c110e834ffc07e1171ccceb6927575e9e0417c113b995df83235184d7cfe1a6548f8c2f1cbf0db0863fd68867bedf932da950ae11

Malware Config
Targets
Target

7f4bdec81b152dae8e3a2ee49ea44081230e127ac2f5f992434bb2d8eaec2899

MD5

b6a3115b02eed8a4019382077a207a37

Filesize

21MB

Score
10/10
SHA1

7a40ee187c35031ee3b7af7f3852016ea98dc297

SHA256

7f4bdec81b152dae8e3a2ee49ea44081230e127ac2f5f992434bb2d8eaec2899

SHA512

51ef758cab19be0696b1497c110e834ffc07e1171ccceb6927575e9e0417c113b995df83235184d7cfe1a6548f8c2f1cbf0db0863fd68867bedf932da950ae11

Tags

Signatures

  • Agent smith

    Description

    Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    Tags

  • Reads information about phone network operator.

  • Uses Crypto APIs (Might try to encrypt user data).

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          7/10

                          behavioral1

                          10/10