General

  • Target

    d20a7d7d76407fff9f2e50c6a2d9a3a5d215dd179b0d295a37128f7dd32893c3

  • Size

    3.5MB

  • Sample

    220724-1sln5saaen

  • MD5

    6f982ae360ca45d7dc281dc04c2dcb89

  • SHA1

    e3014de404de3517f1a3a87ce228dbe0ca36b59a

  • SHA256

    d20a7d7d76407fff9f2e50c6a2d9a3a5d215dd179b0d295a37128f7dd32893c3

  • SHA512

    db69d821e809a97d4b2a94fee60367089d5e212a745422fa82383ed6629600f6212040440e6fa919a5afc571d933a78cf7f71b3790674a5fa6bfbf3e45c8732a

Malware Config

Targets

    • Target

      d20a7d7d76407fff9f2e50c6a2d9a3a5d215dd179b0d295a37128f7dd32893c3

    • Size

      3.5MB

    • MD5

      6f982ae360ca45d7dc281dc04c2dcb89

    • SHA1

      e3014de404de3517f1a3a87ce228dbe0ca36b59a

    • SHA256

      d20a7d7d76407fff9f2e50c6a2d9a3a5d215dd179b0d295a37128f7dd32893c3

    • SHA512

      db69d821e809a97d4b2a94fee60367089d5e212a745422fa82383ed6629600f6212040440e6fa919a5afc571d933a78cf7f71b3790674a5fa6bfbf3e45c8732a

    • Agent smith

      Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    • Queries the unique device ID (IMEI, MEID, IMSI).

    • Reads information about phone network operator.

    • Uses Crypto APIs (Might try to encrypt user data).

MITRE ATT&CK Matrix

Tasks