General

  • Target

    828132b6a72eb38e731a0e035bbf9111d38bacd7289be6cda9cea7c80a60bcc9.apk

  • Size

    4.4MB

  • Sample

    220605-p9dt3seggn

  • MD5

    162b8f9a0af305b7816383081928163c

  • SHA1

    6ce97f5702f054029690ec46a54acfe839def5ee

  • SHA256

    828132b6a72eb38e731a0e035bbf9111d38bacd7289be6cda9cea7c80a60bcc9

  • SHA512

    452d0600b85955301dbee4af642d3013f851ed2df111754a0504e02e3f257ef1c831355f3e48fe0528e2b3fc1953042ca64a3fd6811843d4e3df6bad7cd63153

Malware Config

Targets

    • Target

      828132b6a72eb38e731a0e035bbf9111d38bacd7289be6cda9cea7c80a60bcc9.apk

    • Size

      4.4MB

    • MD5

      162b8f9a0af305b7816383081928163c

    • SHA1

      6ce97f5702f054029690ec46a54acfe839def5ee

    • SHA256

      828132b6a72eb38e731a0e035bbf9111d38bacd7289be6cda9cea7c80a60bcc9

    • SHA512

      452d0600b85955301dbee4af642d3013f851ed2df111754a0504e02e3f257ef1c831355f3e48fe0528e2b3fc1953042ca64a3fd6811843d4e3df6bad7cd63153

    • Agent smith

      Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Reads information about phone network operator.

    • Removes a system notification.

    • Uses Crypto APIs (Might try to encrypt user data).

MITRE ATT&CK Matrix

Tasks