Overview

overview

7

Static

static

7

NClientV2....se.apk

android-9-x86

6

NClientV2....se.apk

android-10-x64

6

NClientV2....se.apk

android-11-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NClientV2.2.9.7.Release.apk

  • Size

    5.6MB

  • Sample

    230202-fdpr2agh6x

  • MD5

    8a03001b0003b51d1bf9966d4b1c2045

  • SHA1

    7a98a63c525895d8778d8a69f99b9a87cedab277

  • SHA256

    3cd6e8388dc6e1e326d320044a5daa377dfd4a898a9a725ef7b5ae412fff30f7

  • SHA512

    2988ae543b7e010b54aa362fdd6ebce575de0084f4d7ebb9a0039c02b9bc880cc2c77015f784a3517ab90bf842fef72fd2f1763353528323562df8a5e5c1713e

  • SSDEEP

    98304:POKnf+6rR6y1pgtTyC0rHs5Tfk0bNwqcIDaTyG0AdwLwXPneYPCd2Zra2zT:WKnf+Q12t0jOTf/pwq1WNwR2H

Score
7/10
androidevasion

Malware Config

Targets

    • Target

      NClientV2.2.9.7.Release.apk

    • Size

      5.6MB

    • MD5

      8a03001b0003b51d1bf9966d4b1c2045

    • SHA1

      7a98a63c525895d8778d8a69f99b9a87cedab277

    • SHA256

      3cd6e8388dc6e1e326d320044a5daa377dfd4a898a9a725ef7b5ae412fff30f7

    • SHA512

      2988ae543b7e010b54aa362fdd6ebce575de0084f4d7ebb9a0039c02b9bc880cc2c77015f784a3517ab90bf842fef72fd2f1763353528323562df8a5e5c1713e

    • SSDEEP

      98304:POKnf+6rR6y1pgtTyC0rHs5Tfk0bNwqcIDaTyG0AdwLwXPneYPCd2Zra2zT:WKnf+Q12t0jOTf/pwq1WNwR2H

    Score
    6/10
    evasion

    • Legitimate hosting services abused for malware hosting/C2

    • Removes a system notification.

      evasion
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

1
T1102

Impact

Tasks