c6bdb19cce73130173c6eff7961f220359c6006dd9936111eeae25975c26773c

Sharing

Copy URL

Twitter E-mail

General

Target

.trashed-1688821088-Skype.apk
Size

48.6MB
Sample

230610-zjrncsfg76
MD5

1da9e8b2111b770131ef94ee824aa37e
SHA1

9020c652ac7d6a7834ab884a2fd05b6de5666896
SHA256

c6bdb19cce73130173c6eff7961f220359c6006dd9936111eeae25975c26773c
SHA512

42c8cc5bbbaf3c24f7795a6aff229e96a136ddfd27bce058da912e5b4687f7ca4d006eaa4ada29cee9cf1bd8ab28b7e47927f61e260b540a20fe0b05fd9c784a
SSDEEP

786432:tl7qUTKEwOCVqdsE1rNHDgUGk3KKiS7A4H0mX2UBcYLoQF/E5vlgKKud:zWHQdXj6oKHSaKNLPXMd

Score

7^/10

android evasion

Malware Config

Targets

- Target
  
  .trashed-1688821088-Skype.apk
- Size
  
  48.6MB
- MD5
  
  1da9e8b2111b770131ef94ee824aa37e
- SHA1
  
  9020c652ac7d6a7834ab884a2fd05b6de5666896
- SHA256
  
  c6bdb19cce73130173c6eff7961f220359c6006dd9936111eeae25975c26773c
- SHA512
  
  42c8cc5bbbaf3c24f7795a6aff229e96a136ddfd27bce058da912e5b4687f7ca4d006eaa4ada29cee9cf1bd8ab28b7e47927f61e260b540a20fe0b05fd9c784a
- SSDEEP
  
  786432:tl7qUTKEwOCVqdsE1rNHDgUGk3KKiS7A4H0mX2UBcYLoQF/E5vlgKKud:zWHQdXj6oKHSaKNLPXMd
Score

7^/10

evasion
- Acquires the wake lock.
- Checks Android system properties for emulator presence.
- Reads information about phone network operator.
- Removes a system notification.
  evasion
behavioral1
- Target
  
  Beer.json
- Size
  
  26KB
- MD5
  
  e5ae971d8717b8dc78d9227ddab29dff
- SHA1
  
  527942bacdc78d8ee219e888efb7301364fb1294
- SHA256
  
  9a01d8e41e3c53bb97444fb78eb869d28fe64644335251e5ccb6b60de9ec4d07
- SHA512
  
  a77656c05d298736712ed7c81ae98efc15a6ea21ea4090ffa23e94bdd70fa8829935b0a7dabf43d4600ac3f759a414ff8f8615c0d16faf44b33f32ffc754c38e
- SSDEEP
  
  384:fw/ECFpGE+if2V9JO1xgOzZMDgd8YfphnIGvCo+Uo+X2rz6A7hBBrd6/ZEFfKe:LtieX9nwZhhI/oxoDr2A7hPd6BEFCe
Score

3^/10
behavioral2 behavioral3
- Target
  
  Clap.json
- Size
  
  16KB
- MD5
  
  7aee31d89d2061f7b818bd335f6892ec
- SHA1
  
  2388e17475d4498247495c0dee331daa2d276585
- SHA256
  
  de635ae7ce8e26604aa794267f52b4aff5f2554449395763ad99b40b3b1d6fd3
- SHA512
  
  090befc4578cb7199c16f9108a30894333cd26dca5cfafa6a974e3aeed2f5fb4137e9c75968ae43504ef8ea39dad51632eb62b06c07765067b22e372c69ed3bc
- SSDEEP
  
  384:/DirnKjOYMY9fmueLOVFAc1Gw7Rdky2hK:/D0nRfnyV+ub7kyQK
Score

3^/10
behavioral4 behavioral5
- Target
  
  Dropthemic.json
- Size
  
  39KB
- MD5
  
  0355f7cff42e48f2ea679fd7bc3692ad
- SHA1
  
  ce0e57cd397b91a321636c4a1d5c5116f9d83476
- SHA256
  
  8af141a8aa70dfab379c15c490b7b3166fc35e51c0bf6e9f153920bba007c3f6
- SHA512
  
  1cf9e222f4a9d37f8e7305ccfaef50ba2d93e8f7fe90affadc82e2812184f5a92f2954ec8b1cc858b93172c224f9f56dde267bc29a4bcdffe8cb716ae49f6eb9
- SSDEEP
  
  768:h5OvWexaVwTwUwvwMwgwawFqw1wmwFwLvFdZyo:h5OvWexaVwTwUwvwMwgwawUw1wmwFwLH
Score

3^/10
behavioral6 behavioral7
- Target
  
  Facepalm.json
- Size
  
  23KB
- MD5
  
  46c406d4b423f48754a347ce0b558ba2
- SHA1
  
  52a7d22f01810dce10c1335c6dd651cb2574598d
- SHA256
  
  a62544ab64a37ffc3c782db33d64e2b24f06000fecd9b540e80a784e018a8b94
- SHA512
  
  1466b080534a5b3b33a4de062b110d8dd503ac8f6e80208835f76b59cc8cbdb95085622c22dd855ded93f4f3f8872b3daf2d2fdadeb41396ef3252f66ebba937
- SSDEEP
  
  384:mlgkUTPjiItTzl+ztkDWxDWo1xs88Sr/VG/9q8Sr/VG/9k/97kJL0H:KgkIb3pzEzKIL/Th/s/kh/s/e/hkJI
Score

3^/10
behavioral8 behavioral9
- Target
  
  Fire.json
- Size
  
  15KB
- MD5
  
  3a545cb9b422e26d9cfd2a0a809b0fca
- SHA1
  
  b3e7c994b7a50b24f5e2a9aed8c968d0f84e8192
- SHA256
  
  4ad45c244a4fb952df73eb44f7af5e7c0a83e0a5c4e8a861c53e25c10fb4750d
- SHA512
  
  6ab89c6ca35dff023df949ed33ac4dcc7b5b8a256e5aec614c5737155d569e9f45329c761be86a3b0bc7fd91616857783eae22acfea44beb92d9a987c61c2efe
- SSDEEP
  
  192:ShWQsVqcIzAv7pCKH5BEIg6W3XyAUtbks1oDZ8Y:FrqnAv1CKH5BED6CXLUtbks1oDZ8Y
Score

3^/10
behavioral10 behavioral11
- Target
  
  Heart.json
- Size
  
  8KB
- MD5
  
  1d1a8b17e7c2c82e5799053a7b250536
- SHA1
  
  56249e22c20486cd54c5fc82f34802983714799b
- SHA256
  
  d9a9524049607d233acb09dd48efae53154f5845a41f38044716f5f02f5fdb0c
- SHA512
  
  67ce5f8f06b522db2e7fc0e3944b54f19206c4799506088f20456fc4f9edf3259d72a427a2c32d9aaee669f5ab5ccac286f664cb461ae0a0bc346dcb827f6c70
- SSDEEP
  
  96:4fVdR2+5mXXUE0Wj+r4sh9chN5hr1h56hjWhYuGhGhYh+hBFQhXhCl7hBF5h0hpB:sdRmUE0Wj+MHaivl9ksK
Score

3^/10
behavioral12 behavioral13
- Target
  
  Highfive.json
- Size
  
  16KB
- MD5
  
  ea1b340d3e4723ad6a00eabd7e347dc9
- SHA1
  
  2c8bd8bb5f98c5fd09234296318944d2047beace
- SHA256
  
  0329f11692260602cc211e17fb1e06a55201c8404ae3367fdf203453dc3d1408
- SHA512
  
  a4497d45f94da8ee5ee5db36e7e4ba74d47e073f03046632875d1582bfa82b8b5b36a89ae16ce0a82c81c7392b76a59d6f221ccc9b98b97afd2bb87fb261bc91
- SSDEEP
  
  384:cFrNVrcOlEZUTNFIDIUYNx6Pxr13GVH3hS8tPxr13GVH3hV3djNa:c5NVwQ2cS5vPR12RomPR12R7NjI
Score

3^/10
behavioral14 behavioral15
- Target
  
  ICBC.json
- Size
  
  116KB
- MD5
  
  13283173c971e3cb27a8e719e2954eb4
- SHA1
  
  7e70c8c86b16fab7f6e9d57b7235f1cde63c7e27
- SHA256
  
  433d09051d06e11a48aaaa9521b806b03fff5b12e5c995885475cdc4bb95a0e2
- SHA512
  
  ed634a632fd01172662791f95b8d6e180341d02038fd03e4facf08285bd11948d24fe52f8a7102263175c647a36798018fe2e457cad3590fcaab14f52158001f
- SSDEEP
  
  3072:i67kaQlhtLuMGU0J6PKYln+mhJT5xLyDMzPV142T:L7kaQlhtLuMGU0J6PKYln+mhJT5xLyDU
Score

3^/10
behavioral16 behavioral17
- Target
  
  ICBC_portrait.json
- Size
  
  116KB
- MD5
  
  404ca63d84a8b76da82c8397fd076bae
- SHA1
  
  3c2e4b36ef7f63847a52334a3f2669e5d57e18f3
- SHA256
  
  df1ee8d9dc51a20bff0e9f231d95dab0ca7f8cc5c42f40cbc280bc8a6d7f056d
- SHA512
  
  20a0087fb3ad55553cb4cae9a520c1ca02bb289a1a350b2dd5bd7225897599250b5f36fa8e5977e4f4eab0b88aa61a86c5be57d6736479be7a0bdcf448fae906
- SSDEEP
  
  3072:N64pa9ljCiuNGvbQ6iKeow+vh3uuxUypFePQ1bRi:o4pa9ljCiuNGvbQ6iKeow+vh3uuxUypM
Score

3^/10
behavioral18 behavioral19
- Target
  
  Laugh.json
- Size
  
  24KB
- MD5
  
  66181322e6e1fbe199638cf4327f0a10
- SHA1
  
  b5f9f5767e4babde187fa4d5b83e216862a4cd35
- SHA256
  
  acc3fca68f5a4be9d0dbc3481fe87c7d7eca82f3085d224ae155107964cbb4f7
- SHA512
  
  f79ef84e3a6cc2f4a7eb7d1e59ba6bf6484e5f75a4d1c5c3b68684abea0e2dfea5cd9e253674f6283818938d0e8e8892a087a595d1f91268201f8e26a2b3b407
- SSDEEP
  
  384:6RMc74EBIp/48yVxSs/acJXgM6z8EEqmD8wwK8gZDWXuhrIdz/ieDJ6alXK:Jc7fqyNxSEDlcOLDX5SM0B/TDNVK
Score

3^/10
behavioral20 behavioral21
- Target
  
  LocalizedStrings_ar.json
- Size
  
  472KB
- MD5
  
  cc22eec5a34c74c6811949dd0f2f13a0
- SHA1
  
  24c9a87dceaa0c32b18bf110099a81fa5184d190
- SHA256
  
  8590ef0a911e3354c43ca1733e466d7a7c8e41cdcf2ac3c73fa43ef2fd53aecf
- SHA512
  
  3a20b7cd88ddd0288f5390cf2c5dc54642a13d3ee36b984f730056d185fe60f485e921f9aaf1bec786e5c9b8acb5414b1b3e5c3412d1b7e40c6cea8978c5f54d
- SSDEEP
  
  6144:1lUQ9cR/48FlwiOSr5TV34nEuvU3YBflu9fFAjdQeC:ZclGChgIApHC
Score

3^/10
behavioral22 behavioral23
- Target
  
  LocalizedStrings_bg.json
- Size
  
  507KB
- MD5
  
  bd247de35f063b8fdf42b5dd7511ea8c
- SHA1
  
  e664362d2c517fb8bd4f536c2d28d8601a2eec14
- SHA256
  
  012f042caf6a7f8027ebaefd002f079f8cbf8fdf83f45294c56a997d8128c944
- SHA512
  
  4105f7ab2dd0e50b7b46cb0f825232d70f294389e6bc7c69ebd10bbf282a599126b9750065bbd39a354ab77520f88ac76fe384146d3fc97fc7d874ca66b16d3f
- SSDEEP
  
  12288:ZPtWrwr4dFwLtiAvAsUtk+aNbjginipmYDxTTcAghkIL5SASHtyBLjEyfDfnrk:ZEwr4dFwLtiwjcpmmBGhk3yfDfrk
Score

3^/10
behavioral24 behavioral25
- Target
  
  LocalizedStrings_ca.json
- Size
  
  363KB
- MD5
  
  d3caa35aa49c78359359770bf22f8d7d
- SHA1
  
  affe6cedc143a3a4c0918d41f622280989805551
- SHA256
  
  91356a79c0f8d08b691e783d65db5e8da672630461386daa2360ddf77f9dbd82
- SHA512
  
  9ee3e2347a477a4fa4b855fb2f5206b2a96885d23f52db96015cedd06f808a60965c80b5bc3228c6c0607739b7d27179c075d9068e9c6ede6e3ce04e1a46b4a5
- SSDEEP
  
  6144:bxQJ3lxL7Qkd8WY4Ln9YtL2reTfglaNzHrJYkDVnh5m2Ein4l+KmzD6BlyESWTdh:bxQJ3lxL7Qkd8WY4hYtL2reTfglaNzHA
Score

3^/10
behavioral26 behavioral27
- Target
  
  LocalizedStrings_cs.json
- Size
  
  374KB
- MD5
  
  4facc120511ac50049bad4fb890461cd
- SHA1
  
  7db3a6be6530c627f0bdd29e9abcd6edac41df81
- SHA256
  
  70120b96f0ea9f55ac35a44495eb8a4d51fe18408919bd59934fd2268f1669ee
- SHA512
  
  e5d4e95f1cf7dddc81e0b5ad52aac92bf259f9a1b3eaa6401f3e4ef733e1985c17cc7c6db80aa0e882dd13bd75349d74764ffa7f9e20dfa0f49bc82306f62745
- SSDEEP
  
  6144:127M/iZgpwyxQTJsAhTdErF7Dj/ubYa0mQ9:12/+pwyxQTJsAhmVmQ9
Score

3^/10
behavioral28 behavioral29
- Target
  
  LocalizedStrings_da.json
- Size
  
  341KB
- MD5
  
  8671d310c81dc7f9c7a2c8cb5a5fac3d
- SHA1
  
  370daf672d8b80c2f2c512d919c738e78062a9e8
- SHA256
  
  a6b5fb4fbef4ad65ab8a6bcf3a0a1083ad2a99f29082fb6540bd5a5a8b6de914
- SHA512
  
  129b1e6b5575f1d2892170b2e32f5913f9e9217ddccd15c149d3e08bf84d7669b940a9e58725f32d597080f350b717682ddccdc7d317c2ba29e7b00bfcf5fafa
- SSDEEP
  
  6144:a7vc6OAdBHnh+M5u/BmjgQ5uyFPJCSX4CbtavU8i:a7vc6Oa75u/e5XFPUSX4C4s8i
Score

3^/10
behavioral30 behavioral31
- Target
  
  LocalizedStrings_de.json
- Size
  
  367KB
- MD5
  
  d30e87f5827296b31d564b825ea958e7
- SHA1
  
  e4bac83b24cb333281fa510b135b0ca0386d4bf3
- SHA256
  
  933b0c75fd24a2bacb4959b08392277d25b9f7530cdf74d8ef2ac823051f1251
- SHA512
  
  4e631ebf73605663863da35d63d9dbad5c7d5733962e35e5008790a0e64db98777b5adf0556fa1feebd7d867de9f51071c74fa9183efbfcb9d7b99f9c931dc48
- SSDEEP
  
  6144:Y3HPSyyCkjzIbKqMwLGttqZMiOHzXrBCGXXo:Yf4Ckjze2pikBCYXo
Score

3^/10
behavioral32

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

Sharing

General

Malware Config

Targets

Acquires the wake lock.

Checks Android system properties for emulator presence.

Reads information about phone network operator.

Removes a system notification.

MITRE ATT&CK Matrix ATT&CK v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32