Resubmissions

25-11-2022 09:59

221125-lz2avacg61 10

General

  • Target

    38dd8dd176a1f6f1a68ecbee675df7bf220484aa72b9dbde0f49a7b8cfd730c7

  • Size

    2.5MB

  • Sample

    221125-lz2avacg61

  • MD5

    7b5621db21e666d6eaa4285d6c14f5b4

  • SHA1

    84f918c1a3e8c64aaa6591d69eb2e27d1b945ce8

  • SHA256

    38dd8dd176a1f6f1a68ecbee675df7bf220484aa72b9dbde0f49a7b8cfd730c7

  • SHA512

    ae8825c268a55215da6a2a3ec0278cfd03e46ea3b66eac1fe71396ac90c4c5c69404b4e4444ef9b985f9ac2e8fb76970f6303b0b08da69ec6419d66fbbac305b

  • SSDEEP

    49152:xASxVPa2K9ph2NMOBf8XZ9f8tbuSHyOo2uEAe3oeYUcunYzom3cTRexHSaoA:xAL9pQNMOB0J0buSHyV2aX3z7fj1

Malware Config

Targets

    • Target

      38dd8dd176a1f6f1a68ecbee675df7bf220484aa72b9dbde0f49a7b8cfd730c7

    • Size

      2.5MB

    • MD5

      7b5621db21e666d6eaa4285d6c14f5b4

    • SHA1

      84f918c1a3e8c64aaa6591d69eb2e27d1b945ce8

    • SHA256

      38dd8dd176a1f6f1a68ecbee675df7bf220484aa72b9dbde0f49a7b8cfd730c7

    • SHA512

      ae8825c268a55215da6a2a3ec0278cfd03e46ea3b66eac1fe71396ac90c4c5c69404b4e4444ef9b985f9ac2e8fb76970f6303b0b08da69ec6419d66fbbac305b

    • SSDEEP

      49152:xASxVPa2K9ph2NMOBf8XZ9f8tbuSHyOo2uEAe3oeYUcunYzom3cTRexHSaoA:xAL9pQNMOB0J0buSHyV2aX3z7fj1

    • Agent smith

      Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Requests dangerous framework permissions

    • Reads information about phone network operator.

    • Uses Crypto APIs (Might try to encrypt user data).

MITRE ATT&CK Matrix

Tasks