General

  • Target

    ready.apk

  • Size

    2.7MB

  • Sample

    230517-2nwh8aff3w

  • MD5

    25ea5952cb4833a54e035641d9c0a930

  • SHA1

    b75950542e74b30ba572b578dbaa6c73cab0e4bb

  • SHA256

    e1cf39bf9caa65d044c1b0f14696f6609cd9e0b341d8ca8c96ab84e96434beec

  • SHA512

    fdae5ef838a497b4f554c105b857b5110514254a51793da247f1763e066cd420cbc784ddd9d661a46ae1a88ce18d185337cf874b0aee10f3846fd779d1e32a63

  • SSDEEP

    49152:cbF1MIp8lMlTRaJdSIjAfZOb29BKN9dALbQ7R4ChN/3IK/CF2lpQH3kWeogXBtgx:cbF7p86lNauU6ZOb290GLbdChAF2o3PR

Score
10/10

Malware Config

Extracted

Family

spynote

C2

127.0.0.1:7771

Targets

    • Target

      ready.apk

    • Size

      2.7MB

    • MD5

      25ea5952cb4833a54e035641d9c0a930

    • SHA1

      b75950542e74b30ba572b578dbaa6c73cab0e4bb

    • SHA256

      e1cf39bf9caa65d044c1b0f14696f6609cd9e0b341d8ca8c96ab84e96434beec

    • SHA512

      fdae5ef838a497b4f554c105b857b5110514254a51793da247f1763e066cd420cbc784ddd9d661a46ae1a88ce18d185337cf874b0aee10f3846fd779d1e32a63

    • SSDEEP

      49152:cbF1MIp8lMlTRaJdSIjAfZOb29BKN9dALbQ7R4ChN/3IK/CF2lpQH3kWeogXBtgx:cbF7p86lNauU6ZOb290GLbdChAF2o3PR

    Score
    8/10
    • Makes use of the framework's Accessibility service.

    • Acquires the wake lock.

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

    • Removes a system notification.

MITRE ATT&CK Matrix

Tasks