c680c23fe3a6e2449ca0eca2a3c3cbae547da83a45649800e6696ebb38ea1fb5

Sharing

Copy URL

Twitter E-mail

General

Target

hdo.2.0.16.apk
Size

35.6MB
Sample

230830-ajvycabg9y
MD5

63ecabfd9a4a5c20813d9822738fd93a
SHA1

1e89834d753899fd740874d3b58378c1b6451fdc
SHA256

c680c23fe3a6e2449ca0eca2a3c3cbae547da83a45649800e6696ebb38ea1fb5
SHA512

994a01c1476f7ea5a6a7ed977bfd0e078ac179916e3214b07b923d6f2e26f08757fb0127447ada34f910f22127b17e1ef2f5e15ebda4dde9b30fbb998c82010b
SSDEEP

786432:YdCbINpZlecU4PBsknk3P+U8e27K4PCEBLUo6i2tQd2tKm7okV:Y4M/nxUiFkfCegK46EBp6Ptj7oa

Score

7^/10

android

Malware Config

Targets

- Target
  
  hdo.2.0.16.apk
- Size
  
  35.6MB
- MD5
  
  63ecabfd9a4a5c20813d9822738fd93a
- SHA1
  
  1e89834d753899fd740874d3b58378c1b6451fdc
- SHA256
  
  c680c23fe3a6e2449ca0eca2a3c3cbae547da83a45649800e6696ebb38ea1fb5
- SHA512
  
  994a01c1476f7ea5a6a7ed977bfd0e078ac179916e3214b07b923d6f2e26f08757fb0127447ada34f910f22127b17e1ef2f5e15ebda4dde9b30fbb998c82010b
- SSDEEP
  
  786432:YdCbINpZlecU4PBsknk3P+U8e27K4PCEBLUo6i2tQd2tKm7okV:Y4M/nxUiFkfCegK46EBp6Ptj7oa
Score

6^/10
- Legitimate hosting services abused for malware hosting/C2
- Reads information about phone network operator.
behavioral1
- Target
  
  AntDesign.ttf
- Size
  
  68KB
- MD5
  
  3a2ba31570920eeb9b1d217cabe58315
- SHA1
  
  4e77868439280fb434d4697c7b911271406c81f3
- SHA256
  
  7955ca14127b30412c114eb13cfd702b5dab265feb1880d1695d73caa824cde1
- SHA512
  
  41842c1fdea06a042d0faa4fc50e0637e69ed56dfa06ae0e34878b5f4096d624f07cca0ab78e12e3701c2c7bcd40af8b095e8101f8a23e37edc4f1da3d459457
- SSDEEP
  
  1536:lUDjuprnwV0C7S6qlvfSlBCBdbirbD24WKkvemVul3Wnq3:yDqw0uS6q4lN24WKkveHll
Score

1^/10
behavioral2
- Target
  
  CodePushHash
- Size
  
  64B
- MD5
  
  b24090ba4c679f88621cc485a0e49ad3
- SHA1
  
  038e29762a51564f0abe5ba1cd9b1126dc505942
- SHA256
  
  95a7e2cf8528e7d0d039ab28d376a46611939b7c084300837f6d931d3dbfd5f3
- SHA512
  
  88c582e1c81fbc259e88368f5a911a279a7fd880ebf54a38ea4a59db3eec6983dcab56317516987631aec6e4cbbd066e9a2197df6ba2b03e0095257bdd63240c
Score

1^/10
behavioral3
- Target
  
  Entypo.ttf
- Size
  
  64KB
- MD5
  
  31b5ffea3daddc69dd01a1f3d6cf63c5
- SHA1
  
  12b5670eb178138f77285d5f2c246d3cc5fa67d6
- SHA256
  
  16f92298587bab2b469bc13c0dfc6d5d171bca10bad0c9053ad16bc023bf717d
- SHA512
  
  623da02ee5573210b6f30b1ef7d65dd9ea4cc712443884207479362edbb37584c0b437bbb1630c25ce194b014cd76b8aa05e737d64a0a84fc41ca4a3ab07564f
- SSDEEP
  
  1536:eexaJwd3nwRNmJeBc3lDHbmXtrdoJyLwoQflcrWyu:eeIfNg3mo+Cf+1u
Score

1^/10
behavioral4
- Target
  
  EvilIcons.ttf
- Size
  
  13KB
- MD5
  
  140c53a7643ea949007aa9a282153849
- SHA1
  
  91d377ea3cf47490b256c2ed081704a7dabdae0c
- SHA256
  
  a5caeb4d395c5e32f1d5a30acb382aebc664f1badfd149319907f2215e4e3e26
- SHA512
  
  90081da193c95239fd2735b710bd019212b3ee545a0d82f756a5cc46e6a04e53b0781c302f9ed2ff3e49b8c72f8233a8ab41c748013f04fc384419d4bc3aa004
- SSDEEP
  
  384:29l16YGdU7KcnIXYwmjfj71s6wv35j4eC:2J6YAU7KcnIIwmjfjhpwv3Vw
Score

1^/10
behavioral5
- Target
  
  Feather.ttf
- Size
  
  54KB
- MD5
  
  a76d309774d33d9856f650bed4292a23
- SHA1
  
  e6604258b1ced5efd51360875d782fca65381d47
- SHA256
  
  57599360fc9b80bce473b364f7f255b552019ec47462428018cb0e0f838462b4
- SHA512
  
  c029b9b3433d958d23c4e26e3bbf6ad5146d960377b87dcc7d89650b2b83a0766e6cb6bf07e20658b88afdf65bc502810b57cd7235c01079eadc5197a1a64933
- SSDEEP
  
  1536:bD4BCER+8aUwhcY6sb+xapd9h71oLlLNVUwGuVW0Q/nBY3P4Hwb4rsvAxvrVVRYS:bDUCc+8DwaNsi8pXh71oLlLNVUNocW4f
Score

1^/10
behavioral6
- Target
  
  FontAwesome.ttf
- Size
  
  161KB
- MD5
  
  b06871f281fee6b241d60582ae9369b9
- SHA1
  
  13b1eab65a983c7a73bc7997c479d66943f7c6cb
- SHA256
  
  aa58f33f239a0fb02f5c7a6c45c043d7a9ac9a093335806694ecd6d4edc0d6a8
- SHA512
  
  9ffb91e68c975172848b4bba25284678cc2c6eb4fb2d42000aa871c36656c4cebc28bf83c94df9afdfbf2407c01fe6b554c660b9b5c11af27c35acadfe6136ac
- SSDEEP
  
  3072:3bhEnD+IzsU9z9QJ6/P3Xe2iEiEPGFCMW1JVJG6wVTDsk6BmG6S1yKshojskO+b2:3enD+IzsU9z9QJ6/PO2FiEP2C/DVJG6I
Score

1^/10
behavioral7
- Target
  
  Foundation.ttf
- Size
  
  55KB
- MD5
  
  e20945d7c929279ef7a6f1db184a4470
- SHA1
  
  4b2bce6c792493a4a5716b6fec2dbefe89492c3f
- SHA256
  
  7e1dd03dd4ce90b658052554cd7459df16716717389a552fa4c6d56a5f8933e6
- SHA512
  
  436759ba495479a1477e9e62c81b78771805de7d1689ed11eac52e1b8e8d3d79b3455c5446eaa602eaed78b7bbd5dfaf370229759939166b51ba0097ab6a1912
- SSDEEP
  
  768:VMqwKxzATbtc13Q0dwWfJycdymiqCiKKamPCoCkkw1y0DJ6Exby9ypiOX:VvATbCtFjfbViZiK9mrDNL+9aXX
Score

1^/10
behavioral8
- Target
  
  Ionicons.ttf
- Size
  
  241KB
- MD5
  
  b3263095df30cb7db78c613e73f9499a
- SHA1
  
  b5281fbfa43129abc3e412dd938cfcf0b77de999
- SHA256
  
  eeb002b25911df52eccaa4f5b303778ed7f48a9b07852630551e9f15cc709f33
- SHA512
  
  cf45278cea007f2ee55eb67c10cad90410360917136911205e471f661ab066413c71dc04eb1b99641a17e06dddbe781185018868bea0562b4baaae5c4fd59e61
- SSDEEP
  
  6144:WL3SjcyQitJovKqwwXGsIjtVMi1oDESCTyezc:A36cyLwy+IpoE2
Score

1^/10
behavioral9
- Target
  
  MaterialCommunityIcons.ttf
- Size
  
  1.1MB
- MD5
  
  b62641afc9ab487008e996a5c5865e56
- SHA1
  
  4c2a838b00dbb5e8bb1b368fce0de534e8eb241c
- SHA256
  
  9e94d4dbe2e87ea495f0d42d879146bc74c4c4e910776a49154a15eefa37ef59
- SHA512
  
  d5a8b7b0b82227fa3c76b9db3f1dc3515ddc3b89538e9796ed9ab17b77c7d684d2b1f518c3dc21bba48dc81401b3386d9f45e52086e70c662400a2e386e43651
- SSDEEP
  
  24576:Tus5aDYLDAOnOJMW3sjn6/uiALFUm1dtT1r4atWS5091mR4weygOtZyQl8IJCj:T7fxXgOfJy
Score

1^/10
behavioral10
- Target
  
  MaterialIcons.ttf
- Size
  
  224KB
- MD5
  
  8ef52a15e44481b41e7db3c7eaf9bb83
- SHA1
  
  1943803d652750c8ec60415f1e57401c70e72d25
- SHA256
  
  c6b161a38fb2fec8b2a522252d03c907355cd91bcc28e19dfdda5f335abef058
- SHA512
  
  069ceea9f50b7061f391df4415bb17b18b7feb801a6187c896386b304263c6226602cc3c6917ccb7bc1a99cf67f35da6db6f3d7fbfcc053434d017683501b520
- SSDEEP
  
  6144:U+GPuLcc6GsTI9tNzW5DcLHXBkCwihR4syP5VbLF5cXgZ1W4GB8ShVP:U+GuLcpGP9tNzW9cLG8Vx
Score

1^/10
behavioral11
- Target
  
  baseline.prof
- Size
  
  1KB
- MD5
  
  cbf4008ea632b2ea97ec925a65df2fa6
- SHA1
  
  203901e536b251fd33c20fc714b1efc1b49c7f31
- SHA256
  
  7ab3bc36ef1f81174598135229bf8aeb94ad4a5efbe99d2117df00742f85e8f2
- SHA512
  
  7bba325f3f80a4b2af4897cc25d66cf3c1cd89c97855da589c27f291240154e36e3d11cdcc93c7caa891f55f83857436faea1aae4667b5f2533589747b248296
Score

1^/10
behavioral12
- Target
  
  baseline.profm
- Size
  
  152B
- MD5
  
  a10f14f531862794e40c2150c93fe970
- SHA1
  
  11778bcc9a1acbddc0c99cf4ceecd9a4eecede7e
- SHA256
  
  d27408c30555a56fec52d9783fa4c3df51a677ca607dce6b4b1812c8ef42de23
- SHA512
  
  b9ada19968938eaa5fd4f1629170978c79fe71e87ccd9d6464b2954ee19cce777e06ad5dfcd9781cae67d0a4c2e9d98812907f0416d3dab46c4bc8a4e3837ada
Score

1^/10
behavioral13
- Target
  
  index.android.bundle
- Size
  
  4.1MB
- MD5
  
  c0f36e99268e0826c56a5442e1f5233c
- SHA1
  
  2136d73e06779eed0edde9646c6fbe0ce849d0aa
- SHA256
  
  591886b1402cad27a4e29c9076f8dd225c78c70028f1fb312c33627a60d2331f
- SHA512
  
  dc8bf7ca65d78f80e98b0762b833ff086754bf48e4f6dc4c43541bc3e2e2114a55aff1f5e3f86d7a4a7235c5923424fa0139637a239197168fe561364876a4e4
- SSDEEP
  
  49152:ukhgl/1zqp3khgl/GRkjKoZA/h10IyDBYBw6E5sNSY15cd/trGzHAhSVt7+HTRO6:Ts/9E5sNvwrUHux
Score

1^/10
behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Legitimate hosting services abused for malware hosting/C2

Reads information about phone network operator.

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14