General

  • Target

    base(androiod).apk

  • Size

    1.2MB

  • Sample

    230418-cy6z9sba5v

  • MD5

    8c164ce849694a91ebc0ac28667ddbea

  • SHA1

    b8a79943b695f0ca9015949ff573324b5381e167

  • SHA256

    ef0543f2fb0e21f9ef278e8c503943acd1fb3988ef6a000235e8209828ea26c8

  • SHA512

    f6c8325610d2d2aa17eaec62ff5daa19cd3868c6a9afb7b8e015a5d7f69d72284fb8c0bd7e68fef5f7be241b9dc364782c0da4a1423ce258db3dd121453cd99c

  • SSDEEP

    24576:M9OFQ/ZDkvoyOfv+lS/Giq9COKKFjZi1u4yLj6fs68CgvHDc:M96Q/ZQhmGiq9Wocu9L68CR

Score
10/10

Malware Config

Extracted

Family

spynote

C2

134.122.166.235:6655

Targets

    • Target

      base(androiod).apk

    • Size

      1.2MB

    • MD5

      8c164ce849694a91ebc0ac28667ddbea

    • SHA1

      b8a79943b695f0ca9015949ff573324b5381e167

    • SHA256

      ef0543f2fb0e21f9ef278e8c503943acd1fb3988ef6a000235e8209828ea26c8

    • SHA512

      f6c8325610d2d2aa17eaec62ff5daa19cd3868c6a9afb7b8e015a5d7f69d72284fb8c0bd7e68fef5f7be241b9dc364782c0da4a1423ce258db3dd121453cd99c

    • SSDEEP

      24576:M9OFQ/ZDkvoyOfv+lS/Giq9COKKFjZi1u4yLj6fs68CgvHDc:M96Q/ZQhmGiq9Wocu9L68CR

    Score
    8/10
    • Makes use of the framework's Accessibility service.

    • Acquires the wake lock.

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

    • Removes a system notification.

MITRE ATT&CK Matrix

Tasks