General

  • Target

    signed10317c.apk

  • Size

    1.2MB

  • Sample

    230417-skleeaeg25

  • MD5

    f01ab033ea66ca873eac16a16209758b

  • SHA1

    c540a01133931ad7d46f8832d3993ccfa309969e

  • SHA256

    841271e95e9ac8e2f246043a55d3b4470e8c54f652a6a92e2cc962db5716fca8

  • SHA512

    893d703ee66e7b5f11601f90ccf3d972220ae94f9f6f9296aeb5c3a2abc746cc73dbfecadac27a6cb856f9d9d1f444da3870518607ab825ee0e056422ffdc94e

  • SSDEEP

    24576:49OFQ/ZDkvoyOf3VhTtrg21hqTYSwd1EbCZHIHfWBiU:496Q/ZQh6VhTtn7qcQcRBiU

Score
10/10

Malware Config

Extracted

Family

spynote

C2

45.76.52.179:7771

Targets

    • Target

      signed10317c.apk

    • Size

      1.2MB

    • MD5

      f01ab033ea66ca873eac16a16209758b

    • SHA1

      c540a01133931ad7d46f8832d3993ccfa309969e

    • SHA256

      841271e95e9ac8e2f246043a55d3b4470e8c54f652a6a92e2cc962db5716fca8

    • SHA512

      893d703ee66e7b5f11601f90ccf3d972220ae94f9f6f9296aeb5c3a2abc746cc73dbfecadac27a6cb856f9d9d1f444da3870518607ab825ee0e056422ffdc94e

    • SSDEEP

      24576:49OFQ/ZDkvoyOf3VhTtrg21hqTYSwd1EbCZHIHfWBiU:496Q/ZQh6VhTtn7qcQcRBiU

    Score
    8/10
    • Makes use of the framework's Accessibility service.

    • Acquires the wake lock.

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

    • Removes a system notification.

MITRE ATT&CK Matrix

Tasks