Triage | Malware sandboxing report by Hatching Triage

Resubmissions

02-02-2023 20:43

230202-zhn6vaag2x 7

02-02-2023 20:42

230202-zhemeaag2t 7

02-02-2023 20:40

230202-zfw4nsaf7y 7

02-02-2023 20:35

230202-zdbpysaf5v 7

02-02-2023 20:34

230202-zcpv7aaf4z 7

Sharing

General

Target

8.8.0.347_spremium-telegram.apk
Size

57MB
Sample

230202-zhn6vaag2x
MD5

bb43659850e762cec2430aaea45656da
SHA1

a3f5967c407d17c4df92a3022e3ed25d589eabc6
SHA256

aebd94aaaa323d06d380f184a23a852d72f596c028de14d15376b0b635bcca98
SHA512

4ba3d7c95840e3045fb7d0d681a19e116f6eeed9f9b8e97a1d14b773a2b7f31a188dddd143d4579ca6a57a03964ccf324693cb3c3ae74f80b710d037e75d45c1
SSDEEP

786432:xjw3YRYrIg0aEwjemBalMlsA/ayJB6N/pAc/mypL7pMWmz9HGEQ:ZxgBjheq/xUzIypRRmz9H6

Score

7^/10

android evasion

Malware Config

Targets

- Target
  
  8.8.0.347_spremium-telegram.apk
- Size
  
  57MB
- MD5
  
  bb43659850e762cec2430aaea45656da
- SHA1
  
  a3f5967c407d17c4df92a3022e3ed25d589eabc6
- SHA256
  
  aebd94aaaa323d06d380f184a23a852d72f596c028de14d15376b0b635bcca98
- SHA512
  
  4ba3d7c95840e3045fb7d0d681a19e116f6eeed9f9b8e97a1d14b773a2b7f31a188dddd143d4579ca6a57a03964ccf324693cb3c3ae74f80b710d037e75d45c1
- SSDEEP
  
  786432:xjw3YRYrIg0aEwjemBalMlsA/ayJB6N/pAc/mypL7pMWmz9HGEQ:ZxgBjheq/xUzIypRRmz9H6
Score

6^/10

evasion
- Reads information about phone network operator.
- Removes a system notification.
  evasion
behavioral1

MITRE ATT&CK Matrix

Collection

Command and Control

Credential Access

Defense Evasion

Discovery

Execution

Exfiltration

Impact

Initial Access

Lateral Movement

Persistence

Privilege Escalation

Tasks

static1

behavioral1