spynote | a8091720f391652d0eff77e9abaafbef6d68b5133c8bc948fd8210e3bf143463 | Triage

Submit
Reports

Overview

overview

Static

static

ready.apk

android-11-x64

8

Sharing

General

Target

ready.apk
Size

2.7MB
Sample

230911-1jw4hsbe94
MD5

6e1f03174ed30ce36e61e58162dd7a4a
SHA1

ebd0f7c060825d27883c36253c227e84053e385b
SHA256

a8091720f391652d0eff77e9abaafbef6d68b5133c8bc948fd8210e3bf143463
SHA512

5a3027883a2d8c55d1ce7fe8d2137366e9320d7c69ec8612683f226d89839f8c42fe4deb185c0ead1a48f4438e47fcffb18b2bae655d8a4c94103da73953a478
SSDEEP

49152:0bF1MIp8lMlTRaJdSIjAfZOb29BKN9dALbQ7R4ChN/3IKIQdwu5hiLogOjdQtD:0bF7p86lNauU6ZOb290GLbdChPwwOog5

Score

10^/10

spynote android evasion stealth trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

ready.apk

Resource

android-x64-arm64-20230831-en

evasion stealth trojan

android-11-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

spynote

C2

fee-harmful.gl.at.ply.gg:41934

Targets

- Target
  
  ready.apk
- Size
  
  2.7MB
- MD5
  
  6e1f03174ed30ce36e61e58162dd7a4a
- SHA1
  
  ebd0f7c060825d27883c36253c227e84053e385b
- SHA256
  
  a8091720f391652d0eff77e9abaafbef6d68b5133c8bc948fd8210e3bf143463
- SHA512
  
  5a3027883a2d8c55d1ce7fe8d2137366e9320d7c69ec8612683f226d89839f8c42fe4deb185c0ead1a48f4438e47fcffb18b2bae655d8a4c94103da73953a478
- SSDEEP
  
  49152:0bF1MIp8lMlTRaJdSIjAfZOb29BKN9dALbQ7R4ChN/3IKIQdwu5hiLogOjdQtD:0bF7p86lNauU6ZOb290GLbdChPwwOog5
Score

8^/10

evasion stealth trojan
- Makes use of the framework's Accessibility service.
- Removes its main activity from the application launcher
  stealth trojan
- Acquires the wake lock.
- Removes a system notification.
  evasion
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

evasionstealthtrojan

© 2018-2024

Terms | Privacy