General

  • Target

    5f78c2f536bff9ee5f83a259f3270e57aa89e751c2efd3bb1c704d98fb4c7c9d

  • Size

    637KB

  • Sample

    221126-rmyxvaab66

  • MD5

    1ddc2b61b1ea2c5c830ca0bc29065f65

  • SHA1

    ff070490ea4a9f6d1ca632c85097faf501e2f0df

  • SHA256

    5f78c2f536bff9ee5f83a259f3270e57aa89e751c2efd3bb1c704d98fb4c7c9d

  • SHA512

    a93715bdde01e16334d7924fae6a937bfe245e4675ce31ddbc4b46e54003d813d0c8b2069a8400f2e27e4b5ecc353a9f0281f9958b858be8b2c1a8b535216c4d

  • SSDEEP

    12288:jgFKPs6PsPhTx8EkCOXTRdS02Q6XRSnn329Hfdcur1yBUcJHsxPDeH3coET:jgFAnscNXVdSDQ6BUn32d1Zr1yCcyDT

Malware Config

Targets

    • Target

      5f78c2f536bff9ee5f83a259f3270e57aa89e751c2efd3bb1c704d98fb4c7c9d

    • Size

      637KB

    • MD5

      1ddc2b61b1ea2c5c830ca0bc29065f65

    • SHA1

      ff070490ea4a9f6d1ca632c85097faf501e2f0df

    • SHA256

      5f78c2f536bff9ee5f83a259f3270e57aa89e751c2efd3bb1c704d98fb4c7c9d

    • SHA512

      a93715bdde01e16334d7924fae6a937bfe245e4675ce31ddbc4b46e54003d813d0c8b2069a8400f2e27e4b5ecc353a9f0281f9958b858be8b2c1a8b535216c4d

    • SSDEEP

      12288:jgFKPs6PsPhTx8EkCOXTRdS02Q6XRSnn329Hfdcur1yBUcJHsxPDeH3coET:jgFAnscNXVdSDQ6BUn32d1Zr1yCcyDT

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Reads the content of SMS inbox messages.

    • Reads information about phone network operator.

    • Uses Crypto APIs (Might try to encrypt user data).

MITRE ATT&CK Matrix

Tasks