spynote | ef199abcd3f48fb2b35491e41e6ef5a135fc438a0609b9cfd7cfab20a4a1a15e | Triage

Submit
Reports

Overview

overview

Static

static

ready.apk

android-10-x64

8

Sharing

General

Target

ready.apk
Size

22.2MB
Sample

230911-yy3hqsbc57
MD5

9b3632adeafe6d015046050e6a6bdb0b
SHA1

da563df3ef52d522314e0c9446504a5d1898774f
SHA256

ef199abcd3f48fb2b35491e41e6ef5a135fc438a0609b9cfd7cfab20a4a1a15e
SHA512

1ed9f76ef42c3015db9b8e49b97b36520138a98d4ba4f69cb6714cc5d4ddafc2a73751ca7330aaa0d5f820d862158e625dea096cd448d4c7cf9c03351401d2bf
SSDEEP

393216:yBhoZ2FNoGqSBx+3bN3sQvg8cxrRmBdcVgt3:82gzoGlBYLN8QvgZrRmBdUm

Score

10^/10

spynote android evasion

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

ready.apk

Resource

android-x64-20230831-en

android-10-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

spynote

C2

fee-harmful.gl.at.ply.gg:7000

Extracted

Family

spynote

C2

fee-harmful.gl.at.ply.gg:7000

Targets

- Target
  
  ready.apk
- Size
  
  22.2MB
- MD5
  
  9b3632adeafe6d015046050e6a6bdb0b
- SHA1
  
  da563df3ef52d522314e0c9446504a5d1898774f
- SHA256
  
  ef199abcd3f48fb2b35491e41e6ef5a135fc438a0609b9cfd7cfab20a4a1a15e
- SHA512
  
  1ed9f76ef42c3015db9b8e49b97b36520138a98d4ba4f69cb6714cc5d4ddafc2a73751ca7330aaa0d5f820d862158e625dea096cd448d4c7cf9c03351401d2bf
- SSDEEP
  
  393216:yBhoZ2FNoGqSBx+3bN3sQvg8cxrRmBdcVgt3:82gzoGlBYLN8QvgZrRmBdUm
Score

8^/10

evasion
- Makes use of the framework's Accessibility service.
- Acquires the wake lock.
- Removes a system notification.
  evasion
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy