Overview

overview

8

Static

static

1

Free_Robux...m_.apk

windows10-1703-x64

Resubmissions

09/05/2023, 15:55

230509-tcw2lsef2y 8

09/05/2023, 15:48

230509-s87ybacf62 1

09/05/2023, 15:39

230509-s3v2kacf32 8

09/05/2023, 15:38

230509-s3cj8aee4z 6

09/05/2023, 15:32

230509-sypnzsee21 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Free_Robux_v1.0.19_www.9apps.com_.apk

  • Size

    51.5MB

  • Sample

    230509-s3v2kacf32

  • MD5

    e3155ccd074ddb5212c6020565fb0838

  • SHA1

    080d70e8e7a0b7326e5b8ea94cef98923e30f756

  • SHA256

    b03d2d1193cbbbbb0ac2cd1490aa0b5db63ec917b1d30ef92931dc7b06e5d586

  • SHA512

    7af0acf7c4a260f61b2b56cae0e064bb6fe009ecde48d6045b069aa90967acd1f02c1b228475954eed342d151e119e4a7b2658c08a0e3e03707346404ec145ef

  • SSDEEP

    1572864:o9mo1wOybO2JuXeem2arsmJaU/QQpfytDf:ov1lybO2xe8ImJaUtot7

Score
8/10
bootkitpersistence

Malware Config

Targets

    • Target

      Free_Robux_v1.0.19_www.9apps.com_.apk

    • Size

      51.5MB

    • MD5

      e3155ccd074ddb5212c6020565fb0838

    • SHA1

      080d70e8e7a0b7326e5b8ea94cef98923e30f756

    • SHA256

      b03d2d1193cbbbbb0ac2cd1490aa0b5db63ec917b1d30ef92931dc7b06e5d586

    • SHA512

      7af0acf7c4a260f61b2b56cae0e064bb6fe009ecde48d6045b069aa90967acd1f02c1b228475954eed342d151e119e4a7b2658c08a0e3e03707346404ec145ef

    • SSDEEP

      1572864:o9mo1wOybO2JuXeem2arsmJaU/QQpfytDf:ov1lybO2xe8ImJaUtot7

    Score
    8/10
    bootkitpersistence

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Legitimate hosting services abused for malware hosting/C2

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1

MITRE ATT&CK Enterprise v6

Tasks