Overview

overview

7

Static

static

1

AirDroid_D....2.exe

windows7-x64

AirDroid_D....2.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    AirDroid_Desktop_Client_3.7.1.2.exe

  • Size

    58.2MB

  • Sample

    230417-nzpcdsea37

  • MD5

    946f889f75c67b3212fd7e2f6ab29b9c

  • SHA1

    97139b037f72f36d0d3f1b2a08c7239338ccedb8

  • SHA256

    69acf8e481a7178e2f8d5f82fa987fa335dfa832dfe3f6b65886165ef097a3bc

  • SHA512

    de65fe3c8e300bd3ff9352aa64a7aac8018c5d9b6603df523e0216ed5a61bd3eaec2355c4f7cce89bc57a15e35aefcc000a522c3286365900662cddb9ffe0b81

  • SSDEEP

    1572864:QLgTxtKGv60uo5ywqX1IkB9JoQtyl+rhADFVLL9ueN:EgTxtKn0uo5AXa2koO+r2FK

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      AirDroid_Desktop_Client_3.7.1.2.exe

    • Size

      58.2MB

    • MD5

      946f889f75c67b3212fd7e2f6ab29b9c

    • SHA1

      97139b037f72f36d0d3f1b2a08c7239338ccedb8

    • SHA256

      69acf8e481a7178e2f8d5f82fa987fa335dfa832dfe3f6b65886165ef097a3bc

    • SHA512

      de65fe3c8e300bd3ff9352aa64a7aac8018c5d9b6603df523e0216ed5a61bd3eaec2355c4f7cce89bc57a15e35aefcc000a522c3286365900662cddb9ffe0b81

    • SSDEEP

      1572864:QLgTxtKGv60uo5ywqX1IkB9JoQtyl+rhADFVLL9ueN:EgTxtKn0uo5AXa2koO+r2FK

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks