General

  • Target

    dd794114969c211223cfad7471043888843825d887ad4a3fa74f4b0dcc54ba81

  • Size

    1023KB

  • Sample

    220725-c188eabbb3

  • MD5

    547cb27f35e0f05a6d19fc94d38bf6d5

  • SHA1

    3543a94bf59d7ff0f8ac84b6f0887e0306b0a2c7

  • SHA256

    dd794114969c211223cfad7471043888843825d887ad4a3fa74f4b0dcc54ba81

  • SHA512

    632771a96ec2e1414bfa7eddeb589e8286a3e6343946d1355dd65c9c20064cc7934e4ba62908fe78011003adee1ae8027a893ec9c1804cd6e18b7c911e82ecfa

Malware Config

Targets

    • Target

      dd794114969c211223cfad7471043888843825d887ad4a3fa74f4b0dcc54ba81

    • Size

      1023KB

    • MD5

      547cb27f35e0f05a6d19fc94d38bf6d5

    • SHA1

      3543a94bf59d7ff0f8ac84b6f0887e0306b0a2c7

    • SHA256

      dd794114969c211223cfad7471043888843825d887ad4a3fa74f4b0dcc54ba81

    • SHA512

      632771a96ec2e1414bfa7eddeb589e8286a3e6343946d1355dd65c9c20064cc7934e4ba62908fe78011003adee1ae8027a893ec9c1804cd6e18b7c911e82ecfa

    • Agent smith

      Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads the content of SMS inbox messages.

    • Uses Crypto APIs (Might try to encrypt user data).

MITRE ATT&CK Matrix

Tasks