50404b238608281c6c1d5de7b453f7c7c93bfdd8fb9a063ce2712529a9265986

Resubmissions

04/07/2023, 05:52

230704-gk5bqscg4w 7

04/07/2023, 05:38

230704-gbyslacf9s 7

Sharing

Copy URL Twitter E-mail

General

Target

samp.apk
Size

16.2MB
Sample

230704-gk5bqscg4w
MD5

642a742cac128ba998be27ea20fdb10b
SHA1

bc9862f1f3a7d3ee8142b8bd401ea3bb12a3b00f
SHA256

50404b238608281c6c1d5de7b453f7c7c93bfdd8fb9a063ce2712529a9265986
SHA512

0776fdbc9ca75909212bc1ba36ae6eae440115dba327a7f64d981cdf1ecbf67af2be3744cde3fcf07c72e7e2b304ef94260911a3637e99383cc110aff1304649
SSDEEP

393216:9J+hakmTKaSQB8g4HVsYQ4KJozhHU9G4uFvrR54mbU4ooddHBIIBvunF2isnpmEc:7mlmGFu8gI7Q4W6h0E4ajRugDoGdHBWN

Score

7^/10

android

Malware Config

Targets

- Target
  
  samp.apk
- Size
  
  16.2MB
- MD5
  
  642a742cac128ba998be27ea20fdb10b
- SHA1
  
  bc9862f1f3a7d3ee8142b8bd401ea3bb12a3b00f
- SHA256
  
  50404b238608281c6c1d5de7b453f7c7c93bfdd8fb9a063ce2712529a9265986
- SHA512
  
  0776fdbc9ca75909212bc1ba36ae6eae440115dba327a7f64d981cdf1ecbf67af2be3744cde3fcf07c72e7e2b304ef94260911a3637e99383cc110aff1304649
- SSDEEP
  
  393216:9J+hakmTKaSQB8g4HVsYQ4KJozhHU9G4uFvrR54mbU4ooddHBIIBvunF2isnpmEc:7mlmGFu8gI7Q4W6h0E4ajRugDoGdHBWN
Score

1^/10
behavioral1
- Target
  
  360Default1280x720.cfg
- Size
  
  10KB
- MD5
  
  561609b81469d3ac5dd7325ff388b8de
- SHA1
  
  266a62e979e4a32b070b09618399efc896ad8ac2
- SHA256
  
  b26d40d280bf93dc685668b099c303b2a0700dd9f0460307d5643cbad70c6ca6
- SHA512
  
  c6424750b0a465338d4f1735fc011f582de24a478ffb1b277b71aa40ff1bc1bb789854c214d9849b61485d1abcf04662578b327a5793888b635b29a6ce258882
- SSDEEP
  
  96:3IYNsUOixFAPx0Oxe5uvBsj7Bhl/R2Olv/BSv2MOxmk2Mz+by6/38o:3IYWOA50CpwnBxoNbyM
Score

3^/10
behavioral2 behavioral3
- Target
  
  360Default960x720.cfg
- Size
  
  10KB
- MD5
  
  cbd566273bb949526dd68f9cd6a34ad4
- SHA1
  
  c8f36ab1e25c53bfa75a31c94f1bee27ca6ee177
- SHA256
  
  142128a657affbbe4dabbc2c992c58890cb8fa5157e72d95fbbe50c3194011fd
- SHA512
  
  331012b28a02f9a59886d2760220be6d158d9aaf7e120f0c480e78ebd1ee2f66df9770f0be2bc68d9efd26f3960f3636c39c15fb905133fa3257412fb80e16c5
- SSDEEP
  
  96:3S9CNaBkuUkZkbrD+0anuvBTj7Bhl/RROSv/BSv2MOxmk2MzhFy6/BNg6g:3S9CZucXPnBxoUFyZ
Score

3^/10
behavioral4 behavioral5
- Target
  
  BRADLEYHANDITCTTBOLD.TTF
- Size
  
  140KB
- MD5
  
  2d688310106e8c7db0a70fd12ad73757
- SHA1
  
  1ec7bd82ecc6529147fea09362c1f7b997c8ffb8
- SHA256
  
  1439743c9f1ca82a8c50b9e2f8498596b6adc8f72211acff0675d3e6e8503895
- SHA512
  
  f7dd33c1dfcfd92db3a59777ac249dbb4fd54109c3be4dc041e032d48316b89f4b85304a2eba0bbe6b6afaa0702f0cb891e56fdc243377373e2b0b02ee25f8f9
- SSDEEP
  
  1536:xHgMj4hNERqJ4xGf3TyVl4wipCJvdtH8bF0ixoxhJGwGFixtC5ZNvNjIGUEQ0LY4:Gy4iqzy4wiMJ4aANvNfYu3/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral6 behavioral7
- Target
  
  ChaletComprime-CologneSixty.otf
- Size
  
  75KB
- MD5
  
  bd6c2d08400647883fb9a6f7c04ae995
- SHA1
  
  826a5755ccf2b257f240650c64939fafb3cbb0a8
- SHA256
  
  6c89dc2e02b6f672c5626333d6669021c1fb018591db0215ddcfe6afbf8be841
- SHA512
  
  faad6ab388caa0dd611c84a3fbd994aba1ce8a81f87048f94cbad2a3c2c950bff01e03ff50ce9c8cf03b58fc5c284530adb25848331c9da04fdc705a7c85fbd6
- SSDEEP
  
  1536:OFtX3ffAPNqtUl6adu45d2877dCc48cTEjSxT+z9e/jGS6:aN3wPNqtIpvpQcuTEjSx5/jY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral8 behavioral9
- Target
  
  GTALICENSE-REGULAR.TTF
- Size
  
  38KB
- MD5
  
  c8aba349f0015b4e325dca9ee2fc33eb
- SHA1
  
  324d3fca64ab722b6ddd08b18d25868eb889394f
- SHA256
  
  e6331158fbcb0c0b65c8b1210873a0563525a66c2cf4f701f8e5ac626779c0ff
- SHA512
  
  3e66317cdb882ed0b05aac3ea943a74393ab9489eccacfad3ae894e5ffd17e3e4c0ba7f063f018b53ab16db8f1642837825a6a302ed7805577443deae059b2d9
- SSDEEP
  
  768:M6W+WsV3plNRqa8tJrMk1IsnvJGvYCL1LtbkWsV3plNRqa8tJrMk1IsnvJGvYCLs:MPk3pJz8JzjnEASVY3pJz8JzjnEASVlA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral10 behavioral11
- Target
  
  HELVETICANEUELT-LIGHTCOND.TTF
- Size
  
  76KB
- MD5
  
  659fde32e135ba4cd02b84bdb1503e00
- SHA1
  
  017be700a0b37be27a10475d6854d9c88349b3d2
- SHA256
  
  9c379a6b449ac2504cf1bcbdb159c5fffe2379b58ff6512ba5cead778cb6c85d
- SHA512
  
  82c19390921e1cca3fa1da424e935c947fd59056295ec757b55065f77b7be33ac23c180534845b4aa95a1f328f4398f5203ff21ca88a95862d21b5f95de2d4ee
- SSDEEP
  
  1536:FJemDHKl9fOFZ3Cy0XnspDkql4c4cQPbqEe5P:SEHXpCn3GycgPbEh
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral12 behavioral13
- Target
  
  HELVETICANEUELT-MEDIUMCOND.TTF
- Size
  
  66KB
- MD5
  
  00e74bf991b7fc5991e987a43c24e288
- SHA1
  
  2a86aea8df58f76060785b0bdf7123e7c43f0a65
- SHA256
  
  27ba99097ba642f2b1f47ea604c6f6d6df605271c2810055f9f74e4ad9ec600d
- SHA512
  
  703300716ac12309bc35afdc73d2bb1488af42b0cfc44646cb1281cb33fc9cd5c78f450923869bd54ec8e4fd0d7649e73a365b346b94c374bc0525e1e8a97d58
- SSDEEP
  
  768:UyzM3YB5dZOqjVsfXJB0tIAE+9+7ODFGF6uu937WTR466201jES/CZ8SRvsE5P10:23oXPjqJyIm+6BGF6t3Mf01jENd75MN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral14 behavioral15
- Target
  
  HELVETICANEUELTCOM-MD.TTF
- Size
  
  139KB
- MD5
  
  62c4a265b8cd2d1ef5c5f995019905c8
- SHA1
  
  1c0c4e83990dfba3200bde554e43f92cacfb062f
- SHA256
  
  78e22b09367289b56210745694561513cd3f89da75982a9ad6e9ff1552a8e826
- SHA512
  
  9a892535dca725e921b85247f431952ecf66ceb385da2a808f40ba9b142d1e8275f2baf89f72b672574c230ea66fa010e2db9337c300d5330328d4153cab4abb
- SSDEEP
  
  3072:G3NOT/miyxcX0q71FoXX8tLUdcPq2pGYk3+3rJuOvfBgedQwDV:G3NOsPqv9L1Pq24XSJuOvfBgedBV
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral16 behavioral17
- Target
  
  HELVETICANEUELTCOM-MDCN.TTF
- Size
  
  152KB
- MD5
  
  b8634fddc57a4fd723669b393b8e49fe
- SHA1
  
  6e42089678607cdb57d7b2afb96e7460863f214e
- SHA256
  
  78db18c1de8b6805c13c59a868e5a34b7cf7440edb3e0aca6321f96fc1bf2879
- SHA512
  
  e2d86f5875d267e2e665b8493f7ffd2d6d55e56744f835cf6e3a842cba489b7ca58fb6c929d882195437a2e7dfa9a20bfa295ef60254c403b4ad5d970221291e
- SSDEEP
  
  3072:JLTBz2jOGAU1nVD/bRoBJdwyT7DrN0sxoxmzxsoJ:JLEjqU15mvx0sxoxmXJ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral18 behavioral19
- Target
  
  HELVETICANEUELTCYR-LIGHTCN.TTF
- Size
  
  82KB
- MD5
  
  763d83e4303f4a0dabc0cd1bbc78e0de
- SHA1
  
  1e824cc7a0177f43c033f49d1332c5cef5f7412f
- SHA256
  
  9b0580abd7bd4391aaa23d0cecec522d5cf5886ddad3653bcd6b89fc61606e7b
- SHA512
  
  b5a9be6b445d955994974426133114ecbb4fae7e3ce9b1dcdc3eb4cab769298b17c08b755b89bb294a9b6818d1401af36afcaf419dbfabf437aa59aecea9e3c5
- SSDEEP
  
  1536:3zKkYQ7BP83nbkqSAftzG7pJlcdkHqJugYL9RcQstXSS+ZFC1My90N:3zPVP83wqSAlzG7pJlcyKJ4L7cQstXSn
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral20 behavioral21
- Target
  
  HELVETICANEUELTCYR-MDCOND.TTF
- Size
  
  72KB
- MD5
  
  cb4b02697b487976550e02a0c384cc64
- SHA1
  
  2c595878fbbd93dcbe1d08e71b6fed5c14e237af
- SHA256
  
  122766ce3da4936926dbcf9fd9d9e2cb9bc9da56569a68a53f8de533cab2eda3
- SHA512
  
  a45cff0f4cda1f6ef959893d13079b7da8201788e86faaae7da6eec22b8776a803211f29e7673666b2326b1a5da01b6318b81367519935b81a9692d5f9717464
- SSDEEP
  
  1536:f2FzTVNor3yUYZ/QDDp4C2VSRgNVYUBdg6SrN7Fqtow:uF9S3W/QDF4C20eNJBdg6Sh7dw
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral22 behavioral23
- Target
  
  HELVETICANEUELTW1G-ROMAN.OTF
- Size
  
  101KB
- MD5
  
  9b8ad127609fdf39d422d63f6b0582fd
- SHA1
  
  821d7fe5c1910f358d4ff8581dc42ab3ad0ee0af
- SHA256
  
  f662a5953b6fbb729f6b13e0af6b7b2e09d5acb2d4070574d6bc2f9b9cbc6cd5
- SHA512
  
  c27ff7782257d6382fc9a2e6587141f02f3fbd4c99860648293c5e155a4dbe0d4e3fef0ef498f80b318008155e7ebd848a0dde41d473535b5da96b26d4f5a422
- SSDEEP
  
  3072:SoOVBsjqTzRt01yfwvk79vZp3MeJJ77QbH+/VQ1+:S1VajqJuAm+/VQ1+
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral24 behavioral25
- Target
  
  JapaneseFont.met
- Size
  
  44KB
- MD5
  
  7c0b04bc3fb9739a1764d9a6e3af2db6
- SHA1
  
  92915d4cb6e9e17b545b41c1397f4b70b1d76310
- SHA256
  
  0a7b2817a92fbbf2d2a90ee30e852e327bf64842a35c92295e7cbe96fb59a0a2
- SHA512
  
  0c5b9cc8f1874b4cd96d3947c0e91ab7949014c2f40308c614a4cd2d2bdd7029eeb6608fd4146d0581a2bbac3b6f0a9e3ab1dd9934202f940b549d388ae3b04c
- SSDEEP
  
  768:ZCIK6jHW706csgbiMT+yE0KFH6OUSKkUX93xtPUwq+LLLw1Q5YhyqpPRm6ZGeOH6:ZCIK6jHW706csgbitFH6OUSKkUX93xta
Score

3^/10
behavioral26 behavioral27
- Target
  
  JapaneseFont.png
- Size
  
  198KB
- MD5
  
  ab3423aba0e80277c8d104820b96d7e2
- SHA1
  
  8cfdf9ab89c6cdba40cca08113acca5b7f64b284
- SHA256
  
  e1ba957984f3ec641f03c9497e6b601e1661ea1d86af84df5b851a4e0972a508
- SHA512
  
  ce77833d60c12601a22466b75517abf3a854c318d7863934b5110a35d7edb738d3181f7a4e6ebd1a5651af056e3a810130a33e7938b68254416e26866f707aa2
- SSDEEP
  
  6144:iYoXTIFLhtVUtEpRuvN90Y58C4PV17oEIPfcai/:iNTc8EywfC4PzIPS
Score

3^/10
behavioral28 behavioral29
- Target
  
  NAV_DOWN.ogg
- Size
  
  5KB
- MD5
  
  e7977c345b60b12e15e335007f80105f
- SHA1
  
  dbb3d2d9a6dade78ece9395135838617e07bf01b
- SHA256
  
  e40ff9f9230e63d923076dbf4a29775490c3efe48b6c0bb520be164cbe638bbd
- SHA512
  
  ac6b4c4498464d333c1481ba9eac2302217ea5cfec14faa57fe87099262e7c43cd2ea84d69d680b015647a3eed5783c2addda06add730496098969086d352c65
- SSDEEP
  
  96:KRSatuKjmRBOx1OoThgkvWoaKi5JrPNalPPPPPPPPPPPPPPPPPPPPPHq0QPPPPPp:ctoKa3o1hFgkFaKwJ7I0j9Y3WXd/iFWB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral30 behavioral31
- Target
  
  NAV_UP.ogg
- Size
  
  5KB
- MD5
  
  b0d2ba03b7f5e3a037d79c14b930da17
- SHA1
  
  2830a9174cd2457ad498b05cf9fe20933e9a8a51
- SHA256
  
  f1fbc2d1d837a0b4ec6b9d17138c8e2f5405f87d55749b5ffee09623eb080132
- SHA512
  
  e2865cb03b32310297d72be6083f7000a0e9377749bf4e36ce5886db76ba2f10720e25282724fc50f1da2f70a996ee34a7526f4beb5b2f2d6c13a9507ef4c14c
- SSDEEP
  
  96:3RSatuKjmRBOx1OoThgkvWoaKi5JrPNalPPPPPPPPPPPPPPPPPPPPPHq0QPPPPPK:BtoKa3o1hFgkFaKwJ7I0j9Y/zD4nS0E
Score

1^/10
behavioral32

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32