048e941abebb0ab68f5db6449e7a6e4a7c92acbf2b7f4f048cf2f63afb2f9c81

Sharing

Copy URL

Twitter E-mail

General

Target

base.apk
Size

123.7MB
Sample

230528-be5gnaeb5y
MD5

41ba290c6e605be0d7f85fe6b04800ab
SHA1

f71170461ea50b120123ee2b81fcc7cfa02e31ac
SHA256

048e941abebb0ab68f5db6449e7a6e4a7c92acbf2b7f4f048cf2f63afb2f9c81
SHA512

f0f502bd7655c45c44bf4df39a2890e95a99e0b031918eda72f13b4cd631a4c186059e4009e881fd34057a5891b23daeb9682a59d05cab946db555bbbd89f4a5
SSDEEP

786432:NtPSupQxu9K58JlXZyIiAIb/l3tP6u9j1mmU5r8pCoNfKonsIfu0w6uVBUohYAEj:rSupQxu98QZyIiAIb/Su3LAOVubUMC

Score

7^/10

android

Malware Config

Targets

- Target
  
  base.apk
- Size
  
  123.7MB
- MD5
  
  41ba290c6e605be0d7f85fe6b04800ab
- SHA1
  
  f71170461ea50b120123ee2b81fcc7cfa02e31ac
- SHA256
  
  048e941abebb0ab68f5db6449e7a6e4a7c92acbf2b7f4f048cf2f63afb2f9c81
- SHA512
  
  f0f502bd7655c45c44bf4df39a2890e95a99e0b031918eda72f13b4cd631a4c186059e4009e881fd34057a5891b23daeb9682a59d05cab946db555bbbd89f4a5
- SSDEEP
  
  786432:NtPSupQxu9K58JlXZyIiAIb/l3tP6u9j1mmU5r8pCoNfKonsIfu0w6uVBUohYAEj:rSupQxu98QZyIiAIb/Su3LAOVubUMC
Score

7^/10
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Reads information about phone network operator.
behavioral1 behavioral2 behavioral3
- Target
  
  CertificateWarning.html
- Size
  
  2KB
- MD5
  
  046dd89c427a6a6e87697c62e587c21a
- SHA1
  
  7b57f146cd64eb61158b2296ef813b5051c882bb
- SHA256
  
  6f9f0b68ebaa3383daa1c62dde25420583b763b6748208a78cc876602219453e
- SHA512
  
  3d18ae2c7dd1ce5c8d7e84efb7a73fc2ac68a60fdaa09fca94d4826d587eb505f8f610b08d29664265524d6112a54ce966ba74c1acecfd0a807f20f0e76a68b4
Score

1^/10
behavioral4 behavioral5
- Target
  
  Chat-YTPlayerView-iframe-player.html
- Size
  
  4KB
- MD5
  
  73ab165bfad1ef7766ce2b6796bab22e
- SHA1
  
  6ab201a876d1c6f1765b0f7ace76c6513250a91c
- SHA256
  
  df5963f3c3c9990f6abaf9fe0afc4c2835e15521e839b05172db6da57fb92516
- SHA512
  
  8455e79f6dbb53d6ce91879a3a82e4396a03334dcfb33d2aa07cc407487e54bbb8c3c0320bea4f3e7f44529586d0d2c4b72d78473d0db6becb871289fdc22cf9
- SSDEEP
  
  96:qZ407HFMvsutQJHDkjNSemOtRvvWQdQeBHQ+nQnuhu:qZL7HpJjsS34vtBTXhu
Score

1^/10
behavioral6 behavioral7
- Target
  
  LCS.js
- Size
  
  34KB
- MD5
  
  85f5108a8ba2863ca72f83c73e2bf9b0
- SHA1
  
  bb998cd266b15f5261e8662867c41451c371b82b
- SHA256
  
  63fe5ebd2acdd1cb6ddb10730339f2570cb4e0c4c57b2c5c3bb12f682ad5f9b6
- SHA512
  
  6225a1c50aba24a01e00c4b03a8124b1231de0da044e9a4dca6e100843093c6405cc86a1e36ea503ed21016b185e54610cf40554ae37a757cc4dc007b2c4e59f
- SSDEEP
  
  768:D5slcsTKUyxB2/Tp5xxWu+DuPKvkeS8h4VQvA05lXnpZ9H5f:9sqsTKUyxBhu+DuPKvkeSC4VQvA03Xp5
Score

1^/10
behavioral8 behavioral9
- Target
  
  OPENLCS.js
- Size
  
  9KB
- MD5
  
  7b04c11a079c03c3b3ea8d5a6740adbe
- SHA1
  
  11659dd8bea5b9c0d5ed11bb2aac3e326c1c1b3b
- SHA256
  
  e7d50461498c42b194abfdee3c0a510af1f27f6091faa63d68a57d3ce08bc18c
- SHA512
  
  cdd0b44c65b29619454a9cdbfa58f6a0ccaa6516f50394ff0f4905697424661c154c741db264b7d4af1c90940f519a8bb15a4d0502adf1353aff6b427e9eace2
- SSDEEP
  
  192:YkkbXoEWaTTnTDrTgkCUcutOB0oF5DOYf/sfkeVSJfQdGjjZBFUw:/Ar/rd1oWYxeVSJr
Score

1^/10
behavioral10 behavioral11
- Target
  
  VoIPYTPlayerView-iframe.html
- Size
  
  3KB
- MD5
  
  7eebccf2ce6f907154d9d4a754bceaed
- SHA1
  
  1a11857fafb93cbc7b5766ee153b383ed3a608de
- SHA256
  
  39ae0e1b971bbc53075798a8ccbf5d2e9e3c8160e5c0615c8e9a50eb3db0c6ef
- SHA512
  
  ee0c76d62159787c242ca06f5ca15d2f197e7a531c34228ea960d8183a1551f34dcff7e092a1bdd242138547026bd65ad0032c2114ebfd3d07edb939c02fbce3
Score

1^/10
behavioral12 behavioral13
- Target
  
  blank.html
- Size
  
  61B
- MD5
  
  974b6ce2c0efceca370033373e13a48f
- SHA1
  
  30b9a598a4e7f639a8c7937191aa27fe2b4b329b
- SHA256
  
  d70369ea01b52f3491844cb84125a5bd31556df3ae16e1c0ff1503c2655748b7
- SHA512
  
  41fd25cebabc5b08a88b6ce2fb8a82bf543d66ad2e5793d24cdc4504350c42335e2c2a2d2b14022ac42113a892864714a8074a33c0242542127347aa2f9fa390
Score

1^/10
behavioral14 behavioral15
- Target
  
  cordova.js
- Size
  
  109KB
- MD5
  
  99abea4724d69454c9cf8ae0539b807f
- SHA1
  
  fd9796cea3f37aa3372421bca19732d732914eea
- SHA256
  
  0b99cd35a9c4f2f5e8d80f27c43467eae14c378e94f80b2d0ac62cb7913ffdba
- SHA512
  
  0dda11813db3840c3ab570dbd1e1f718ac7e5cf7d7bb83215ab7f769de2d801e8fec2804253e9a4638e1bcbfda374586888636d0d67577be95954d1942fcdad9
- SSDEEP
  
  3072:PcrSaFkKkOMQE75lJCBsELT8N3eJavtUx/CxVgR:Pc1fMQEvKsELT8N3eJavux/CxOR
Score

1^/10
behavioral16 behavioral17

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped Dex/Jar

Reads information about phone network operator.

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17