daam | 0fdfbf20e59b28181801274ad23b951106c6f7a516eb914efd427b6617630f30 | Triage

Resubmissions

29-05-2023 01:11

230529-bj2assha72 10

27-05-2023 19:22

230527-x3jqrach68 10

27-05-2023 19:19

230527-x1ph8adc8s 10

06-05-2023 03:47

230506-ecc66sab7y 10

Sharing

General

Target

ee6aec48e19191ba6efc4c65ff45a88e.bin
Size

7.4MB
Sample

230506-ecc66sab7y
MD5

ee6aec48e19191ba6efc4c65ff45a88e
SHA1

f3b135555ae731b5499502f3b69724944ab367d5
SHA256

0fdfbf20e59b28181801274ad23b951106c6f7a516eb914efd427b6617630f30
SHA512

0f1fb2554bd05df4c4987f64fc9c22695cb2f0951b1b46202fb0aa24ff5008d14dfd2782e1c508b5534c16c024034d75b72cee2aebeeb4337e0fda69314ee0db
SSDEEP

196608:Cej0iP9EswQ2qypeQa/twJFQdKShmodX34Rd1k7Q8Ufy6mC:CUvP9ryjeQa/tYFQRtd4be7cfZmC

Score

10^/10

daam android evasion

Malware Config

Extracted

Family

daam

C2

http://192.99.251.51:3000

Attributes

uri
/socket.io

Targets

- Target
  
  ee6aec48e19191ba6efc4c65ff45a88e.bin
- Size
  
  7.4MB
- MD5
  
  ee6aec48e19191ba6efc4c65ff45a88e
- SHA1
  
  f3b135555ae731b5499502f3b69724944ab367d5
- SHA256
  
  0fdfbf20e59b28181801274ad23b951106c6f7a516eb914efd427b6617630f30
- SHA512
  
  0f1fb2554bd05df4c4987f64fc9c22695cb2f0951b1b46202fb0aa24ff5008d14dfd2782e1c508b5534c16c024034d75b72cee2aebeeb4337e0fda69314ee0db
- SSDEEP
  
  196608:Cej0iP9EswQ2qypeQa/twJFQdKShmodX34Rd1k7Q8Ufy6mC:CUvP9ryjeQa/tYFQRtd4be7cfZmC
Score

7^/10

evasion
- Acquires the wake lock.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3