General

  • Target

    2dc8J3pZXd.apk

  • Size

    26.4MB

  • Sample

    230111-cebp1sea7y

  • MD5

    e3239df547764ae46a462ce8aa2bd46b

  • SHA1

    a9bdbfd6bc9bc0588b81e9562089cb0af5372f85

  • SHA256

    63cfb0691dcc420c025d9e33f531d784f3a8b1bf2706c66b088fca6338996a3a

  • SHA512

    9046989de28730b644e7f1344058b91a039343fc73cda48f017c10622fe55a54ff748546ad14380878c7f7ca94e53d3db1af49e60315137d30c0303b50978d09

  • SSDEEP

    393216:XVe3uEqqKp+Mq6HMLq0GRczGR1Tl7yEK7rxW17bcCKg9TGzHJg4FKn1URy+TSGT:o38qa+zS02cYIrx27gPg9TGyKK1UkQ

Malware Config

Targets

    • Target

      2dc8J3pZXd.apk

    • Size

      26.4MB

    • MD5

      e3239df547764ae46a462ce8aa2bd46b

    • SHA1

      a9bdbfd6bc9bc0588b81e9562089cb0af5372f85

    • SHA256

      63cfb0691dcc420c025d9e33f531d784f3a8b1bf2706c66b088fca6338996a3a

    • SHA512

      9046989de28730b644e7f1344058b91a039343fc73cda48f017c10622fe55a54ff748546ad14380878c7f7ca94e53d3db1af49e60315137d30c0303b50978d09

    • SSDEEP

      393216:XVe3uEqqKp+Mq6HMLq0GRczGR1Tl7yEK7rxW17bcCKg9TGzHJg4FKn1URy+TSGT:o38qa+zS02cYIrx27gPg9TGyKK1UkQ

    • Agent smith

      Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    • Acquires the wake lock.

    • Checks known Qemu files.

      Checks for known Qemu files that exist on Android virtual device images.

    • Checks known Qemu pipes.

      Checks for known pipes used by the Android emulator to communicate with the host.

    • Reads information about phone network operator.

    • Uses Crypto APIs (Might try to encrypt user data).

MITRE ATT&CK Matrix

Tasks