General

  • Target

    GB_B10851cyz.apk

  • Size

    81.7MB

  • Sample

    230831-j91e7adf5x

  • MD5

    844b113a939853f0f14eab88104f23bd

  • SHA1

    b32e0be67876fd46f3a7fc1848f93ef824fe5262

  • SHA256

    1de884f307ee10b814a9956404829a28e0ca6b8eff2262c90bd265365b52d8f5

  • SHA512

    662418080363b4ee778a077ce4821011ead6998c6b36db23743f4d04fcefa09b8db74e7d7afaf31c210c7b201ee0d3dcd49537c98a8c8a4e860e35a3238f7375

  • SSDEEP

    1572864:mrE2ZPXn+06xwXdteq0I0tS8UDGvP142KgbKIFSlGsP7MdD98OUehYlIDcz2Yg0y:QXLH0tSnA9K3lkLX8BBy

Malware Config

Targets

    • Target

      GB_B10851cyz.apk

    • Size

      81.7MB

    • MD5

      844b113a939853f0f14eab88104f23bd

    • SHA1

      b32e0be67876fd46f3a7fc1848f93ef824fe5262

    • SHA256

      1de884f307ee10b814a9956404829a28e0ca6b8eff2262c90bd265365b52d8f5

    • SHA512

      662418080363b4ee778a077ce4821011ead6998c6b36db23743f4d04fcefa09b8db74e7d7afaf31c210c7b201ee0d3dcd49537c98a8c8a4e860e35a3238f7375

    • SSDEEP

      1572864:mrE2ZPXn+06xwXdteq0I0tS8UDGvP142KgbKIFSlGsP7MdD98OUehYlIDcz2Yg0y:QXLH0tSnA9K3lkLX8BBy

    • Target

      YOWA.html

    • Size

      648B

    • MD5

      ef14c11378b0dc4dd189cf73252dcd05

    • SHA1

      265f50dd560f0c0a50592fe44c0942c90c08889b

    • SHA256

      09e344b53d5408688c0912395a94f265ffd2fe4df1936acd662127665746ef9f

    • SHA512

      3e6c279043278e06cf962fc450a9bf63d94aa04d48f35e44ad4d48cb03622a7eab22a27272915e32705761aa4b5b136b336d7a62a9d2dc70ed5151c884dbbcda

    Score
    1/10
    • Target

      changelog-ar.html

    • Size

      74KB

    • MD5

      e7075cb78534b08db5f15054b1834fe3

    • SHA1

      028f6772bc7f7bc6bee394e39cd0c02c55884db3

    • SHA256

      bcac510def61094e74d30796886866d35866b74b8afa32422d20cb0bd84899ed

    • SHA512

      f7aa9eb2efad9a532295f8eac9ab216ed7444139ad7830d74c5176b29071edb9dd05bd6cc0aeab8a2504d44aaff1685fb147802c84d1c43988350e1c34d325ee

    • SSDEEP

      1536:0Hpk9zQweFu6MydzhX0iYvTqrSFL7pGXtiEmfxZb6JOL4suMApYlvpENCdjWbFll:Spk9kBu6Mydz90TqmFL7pGdiEMxZb6JJ

    Score
    1/10
    • Target

      changelog.html

    • Size

      75KB

    • MD5

      f9e42b8ef70b3096b39a456141659cf1

    • SHA1

      058ed7d8e12511adb04f6d5be8615cdb62be9da6

    • SHA256

      cdfbd3848a97722a64a2ede540f6a7df9dc61fb389ea4a7e336894615e8f3ba5

    • SHA512

      9d6e0d376db9a50e95f4862ac319cf1296e9b133d582a22fab672fee5e0e7e11f70f14ae7e0dc93f08a39a33efe1424bd728d7b4e0b863ae5d48317612e7af32

    • SSDEEP

      1536:6UU56uT4YbDk68dvzfMBBx+N24Dt2XGyjdwa8cID20+ADN6z+yH0ZyQmbvfZ/4Ob:3U5bTFDk68dreB0N24DsXGSwaZIDH+Ao

    Score
    1/10
    • Target

      clockDarkTheme.svg

    • Size

      1KB

    • MD5

      663e33bfbbb0d14830694114d49c457d

    • SHA1

      3231baf54a3c1f336f1b11d9a7011bc5502a9d4a

    • SHA256

      43b0cd84c7344f57b2656d66d5bf215a4f1d1713a8117e0ecf92226b8ce1a200

    • SHA512

      c116ffaf6c1f8ad9bd6a1d85de318c9ca2c3b6d4931a1aa165dc7ef7351c80fbddc7ca1371c81dee35b3e12720fee2d3146d7a510b54026c3aba9202dee5f1b8

    Score
    3/10
    • Target

      clockLightTheme.svg

    • Size

      3KB

    • MD5

      2235609a58ada82f2110d941341a720d

    • SHA1

      d3b06251eb8f131034ba1ea3b0db982cb31bd813

    • SHA256

      d89ab1d4bc636a73d64ef1d8976d517f13449a11af28d70e88ca3d0c40e114a7

    • SHA512

      ff7543b27941add4a92579f1a55f3b40a16cd8ec8cc43b678b229be38a3878267fcdbb80b040e91132fd938082c47e6e237f62ac3903422ad9499cf7164228d5

    Score
    3/10
    • Target

      credits.html

    • Size

      3KB

    • MD5

      ea1e972a3d9b04f75f1943eb2d5d3434

    • SHA1

      62891a235aa91562b87ebc9aed81b22aa950fdf1

    • SHA256

      bc73b55c5ff82dbba70814aa0239ff32f3e4b3324bcda900c1860d109b2220a6

    • SHA512

      209cb5be7070b602d2344c239e24340322d22e9d8334981f02875e85f86d060d145f9acaeb4047ae57a6e0478184906042908479ad866107651d91e01b1927b1

    Score
    1/10
    • Target

      ic_content_sticker_location.svg

    • Size

      1KB

    • MD5

      4e1bfd935af6c3abdbde4cd2eba4a72b

    • SHA1

      a698232554fe0e28e65556549d97977a4fcf375e

    • SHA256

      b887e3205ff5b8e38c1ad986ea7f534c73c2a28f989639fc1f4fb672521e1e3a

    • SHA512

      697f7b42c02f1ce5fde22474c5c10cc1adc838eab76eb47269cccf4c7fc1cdebbe3de1f81d231c87cc3c8bf090502c4e405fba92ccf345163644d17d17baf84f

    Score
    3/10
    • Target

      ic_content_sticker_location_60_percent_black.svg

    • Size

      1KB

    • MD5

      a3c9e4e574c26a244e4660e3412d803c

    • SHA1

      98c4d769e0efa91892b72887ff5075944b3547a6

    • SHA256

      1b6c02ff1e1e60d73f6b31c1c53faebe6d1f57782e3caf3c4328a65b4929648e

    • SHA512

      f0660665f035131c70589a70955b2bfa8c7c8b9c45053f914bad335be06a2f8c23246c24348e3e469a03ae4449811796e39843a07a275cca1806dfed10df1610

    Score
    3/10
    • Target

      ic_content_sticker_location_black.svg

    • Size

      1KB

    • MD5

      fb77f4f57cfc4c4a6016d10c56e879d9

    • SHA1

      d98ed1a853a61e722f35525e47b16616d5b56fce

    • SHA256

      c6f4e62c0d25cc789058a5563bcc546bd10f492f2e95fa5cd3824951680f1b1b

    • SHA512

      78ec21798b9adca5822ac03446a8e66017281c6767d99114e524c57952942c745699e58e3228441e54ba42654f91156ee5a26fd8025afbe4e5543e053d63f627

    Score
    3/10
    • Target

      ic_content_sticker_location_emerald.svg

    • Size

      1KB

    • MD5

      aadfe32db3ccc31c96197f0591e0fa18

    • SHA1

      59ce2e9a22fff2e9a1b68578c429f5d710463d0e

    • SHA256

      71d43fecf9f2ef6e37022c8446194d74f11b7c05816ce321f6a84279c870b4fc

    • SHA512

      914f19b03527d440752bc284fa46af19ae7cf9f4d2c11cb7bb2753fd50526181e6ca5abed68c695236227b5d8e39db1b5f9359c2d0470a4eaa147c244cc91ddd

    Score
    3/10
    • Target

      l17846d7a_a32.so

    • Size

      3.3MB

    • MD5

      b0d3c37cd8d9c089285f8b098ea311f5

    • SHA1

      ce2ebb886b3a6e3b91aeb3da5b250e163ac10e30

    • SHA256

      a138aee955098459137d435da661cd340948357eab23fe13c0661f9d65b22b9c

    • SHA512

      394111fa2c7c39cc8e5ad649b8cd94eead090364f6234f110c1b9a0e75073a46bc5215c87828ff4422d479f79ff60b67d40e874dececb945b6ffca8e4ac75b9e

    • SSDEEP

      24576:9ciU91u4qMJBz9pGIJ4C5p7gnok0lUYaXVSy2sytpR1zfopi6wrX34sgJpSL1nVm:9dU9ZVNHQnM1uwnVpmnBpkhEbtQKf

    Score
    1/10
    • Target

      l17846d7a_a64.so

    • Size

      4.7MB

    • MD5

      4f9bf083437dc5bcc2a3885b743f02f6

    • SHA1

      945f94ac74ca225fdf449ffc92a9e41a86efc8c1

    • SHA256

      e347341c411a228ae85c608dd025ad0bd99af8b651771cddba67d223a8250cee

    • SHA512

      4f1f2b58366e7a3158f800f7c1411b5010bba371e2839d3edfc5190de512c811123eba50c44efad434f1c1ae6d473d14eeeee2f00911bb60be30300ce0deeda0

    • SSDEEP

      49152:n7+aHmJtRQgW8iJ8w9xRsp3gMNy4L77noNpi:7+aGJtRQ0qG3HNz7V

    Score
    1/10
    • Target

      l17846d7a_x64.so

    • Size

      2.0MB

    • MD5

      8d7980ec850beb1876e3724f97dabaf8

    • SHA1

      5f1a22b01ba88590df67d2ac759340c103d11e57

    • SHA256

      38db547f45194a5cbc4922016483889ebe12efdfe96d545b8bf0ba9232270e68

    • SHA512

      9797d8a9658d3f99eb9040a1637a1ad9ac039a77d3a9b65d91204ac31107e57fb014fe527a5986b2063381bb028edd58da6b32feaf94b530d929ad6a60926dda

    • SSDEEP

      49152:UjCtC0Cj5rBR4gNlBNVPdy/Q5B+L0qV4AyhJh:YG/wBvqSh7

    Score
    1/10
    • Target

      l17846d7a_x86.so

    • Size

      2.0MB

    • MD5

      cb93e2fac80c6ca4490ac4c0c19ff36f

    • SHA1

      863e03be04a2fc4fdf047c83c704c84187741320

    • SHA256

      50c31f978b1ec4efee274b2bcdbbb2afe4a212188d40c32d0bc9aecdf79f108f

    • SHA512

      fc543ffce7c6c4c0e47f8d8844cc910760434ca319ea27327888f2264c890639cf09898ebb3ac046944ec051e2cc84130a6197f2b84417c0f4a96661a33826c5

    • SSDEEP

      24576:7zJo+UqD6IeRf9mpw7fqBm1/8h2Q65PXSxOr:/JPj+TqBs/8UhKW

    Score
    1/10
    • Target

      stella_e2e.svg

    • Size

      4KB

    • MD5

      deb02e17bcc92fef2298a466d71f9457

    • SHA1

      e4259e3c073d4cb4af07bb3a2147fb1e8d7943cb

    • SHA256

      83d0ffc0ea968c3b71c194ecb47bbeb4512137a06e8f7ff7b3973ca23dc467bf

    • SHA512

      cda1fc10cba541658d1f826d735641c2058fadbaf42a9f05e1d8cd3b25fe146db53187548b131bd248e56f34dfebeb3e7b2c1d53784dbe88c8266731aa7401cc

    • SSDEEP

      96:38fSxf3sWhw3h0A+sJCxox9rxT57OxjrWthy9xFnNLWtEy8PM+cRSjOA+Ay:OSxf3sWhw3hysJCxoxHtSZ6tMNoaPsAw

    Score
    3/10
    • Target

      stella_wa.svg

    • Size

      9KB

    • MD5

      4ee3c0dc45185231589902397c7a4c38

    • SHA1

      28a4882e91c2bbb68562fd9373efe43d24dce3ff

    • SHA256

      8fead4d413917d70a317375083a0cab7bcde24530fed6d9eb39de05bf14348f2

    • SHA512

      c22274e0cfe22cddc65f0d258ec623360ba34d8ddeb09a2e7c88290d949cb20f76cb6e8ba8f02c7f5ee7ef4ab551d2d61f680c1dfa0b9acb30143f76d908eec5

    • SSDEEP

      192:OCxf3sWhw3hysJPiaJfdvLZacjO/SbEgle3iVIept8CMei3ttdLx7Kx:Oa/sW63hNJPV9VZvjbj03ISpei3ttdLI

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
7/10

behavioral1

gigabudinfostealerrattrojan
Score
10/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
3/10

behavioral10

Score
1/10

behavioral11

Score
3/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
3/10

behavioral16

Score
1/10

behavioral17

Score
3/10

behavioral18

Score
1/10

behavioral19

Score
3/10

behavioral20

Score
1/10

behavioral21

Score
3/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
3/10

behavioral31

Score
1/10

behavioral32

Score
3/10