Overview

overview

7

Static

static

7

YouTube_base.apk

android-10-x64

42_js_modu...fig.js

android-10-x64

advanced_q...5e6.js

android-10-x64

audio_trac...f9b.js

android-10-x64

caption_tr...28c.js

android-10-x64

captions_s...c8e.js

android-10-x64

cast_error...est.js

android-10-x64

info_card_...50f.js

android-10-x64

listen_fir...d7a.js

android-10-x64

paid_conte...859.js

android-10-x64

playback_s...1bd.js

android-10-x64

playlist_a...c30.js

android-10-x64

quality_sh...e99.js

android-10-x64

quick_qual...2ad.js

android-10-x64

root_89b39...92c.js

android-10-x64

sy0_89b394...92c.js

android-10-x64

sy3_89b394...92c.js

android-10-x64

sy4_89b394...92c.js

android-10-x64

sy5_89b394...92c.js

android-10-x64

sy6_89b394...92c.js

android-10-x64

sy7_89b394...92c.js

android-10-x64

sy8_89b394...92c.js

android-10-x64

sya_89b394...92c.js

android-10-x64

syg_89b394...92c.js

android-10-x64

syj_89b394...92c.js

android-10-x64

syk_89b394...92c.js

android-10-x64

timely_act...d3d.js

android-10-x64

timely_act...58b.js

android-10-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    YouTube_base.apk

  • Size

    23.5MB

  • Sample

    230922-vvrqaabd42

  • MD5

    de63946b5423d38023ed9b681917fe02

  • SHA1

    4f366991304db5124f15a72f5f865a1cb7996a2d

  • SHA256

    9c7c2ff8ccb6effc4327fe21f4e264cddfae9cef2d78e0bd07cd5aa2cdd4ca78

  • SHA512

    35b158e14e268f832ebf68a2138082c173fd2ab510e8f11489fcab03b3b9b9834b695ec1a292887b0ccffb9d4b06447e69208a0585c5608ea18470bbc83e292b

  • SSDEEP

    393216:IPHY9xV6PRS10QmlnFjHwNNdqB/cQ9HihrrN2C1BVSuJMyzkfY:iqLwRm0dFrM0cNhrrAwbSeMUX

Score
7/10
android

Malware Config

Targets

    • Target

      YouTube_base.apk

    • Size

      23.5MB

    • MD5

      de63946b5423d38023ed9b681917fe02

    • SHA1

      4f366991304db5124f15a72f5f865a1cb7996a2d

    • SHA256

      9c7c2ff8ccb6effc4327fe21f4e264cddfae9cef2d78e0bd07cd5aa2cdd4ca78

    • SHA512

      35b158e14e268f832ebf68a2138082c173fd2ab510e8f11489fcab03b3b9b9834b695ec1a292887b0ccffb9d4b06447e69208a0585c5608ea18470bbc83e292b

    • SSDEEP

      393216:IPHY9xV6PRS10QmlnFjHwNNdqB/cQ9HihrrN2C1BVSuJMyzkfY:iqLwRm0dFrM0cNhrrAwbSeMUX

    Score
    1/10
    behavioral1

    • Target

      42_js_module_config.dat

    • Size

      379KB

    • MD5

      0cf6ee2c45178949c9987975724384f6

    • SHA1

      21086e1f74507b38a43cfdb9d84140276c8a9c0b

    • SHA256

      9d3c636be4f2227e071ba717641c006db912cc63a566f31b8952900bcb6ca66b

    • SHA512

      2f9cb880f2f86e00d1f955f0f43daef19a21614efa85fc187ab41216d3ac3c085143dfc4306705579fdf0f7c0b581542184b95d3d5923b77d8e835d9eb2b629b

    • SSDEEP

      6144:oQOnotouT4cc1xMmhP4nGh6Hlb+TKPHs/HifIUlcsyyB0lZymnZ5vwZmea1vK8mj:oQOnotow4cc1xM8PeGh6Hlb+TKfs/HiJ

    Score
    1/10
    behavioral2

    • Target

      advanced_quality_sheet_content_controller_2cc288d07bb525e6

    • Size

      1KB

    • MD5

      fe4d386499c8da401cbc09ec72aee767

    • SHA1

      294a64255e2c26a7c22374f2c17dd42035f63ffd

    • SHA256

      9b9069fadaf718ffbe69d0e22cf4691929b0c79aee766d77dcfbf6be6ba15c54

    • SHA512

      51f77131f4dc06c1b6329c34c679985e70fe6a73db9576ccd84c9406e53e7fabda68cc11d524c50616763631673041f46556670c4c2cd1f816ca7899ebb005c2

    Score
    1/10
    behavioral3

    • Target

      audio_track_sheet_content_controller_b1066937d9f01f9b

    • Size

      1KB

    • MD5

      7e6878d6643c03854820b30a92d09ce7

    • SHA1

      287a7d67f7de65e1985b937616ad26dd7aa7ec47

    • SHA256

      22fb9b60396938046ff900943c361c579687c4906982f416b655bddc5fe6983e

    • SHA512

      9cc10c3e3337bbf0c5bc2e8ab9368dcd28e6aea6f2d81cc836a741fd49a48b6d272c990a28d72aa9bca80bef36601b1f39562bfd1e04b7763f9109d09f9fec44

    Score
    1/10
    behavioral4

    • Target

      caption_tracks_controller_96940d4038b8c28c

    • Size

      1KB

    • MD5

      6d5fe7464257c618a0afe091975b1c31

    • SHA1

      4010bd8256af17977a5ac7c587897850a1eab1fe

    • SHA256

      9acc2652d147e2bcb0e5ae149f4b1b42540fc2c0b75c75f0807511269483e083

    • SHA512

      35d8a78f961e0192eb516767302b95440e7860e098d5cc57f070d65dec4334d12f6b089df2e3f6904a5a47755607c1c1b7de25cf6072045b2fa140fdc7694465

    Score
    1/10
    behavioral5

    • Target

      captions_sheet_content_controller_f98bbd52338a9c8e

    • Size

      2KB

    • MD5

      b5e77bf8f2ddca1005ee41966ae66611

    • SHA1

      ecb7a71a1c76ada6add7ef5a53319a107550368b

    • SHA256

      135f42598307170892bc7e65651473a06678e533ccd13fc2aa528f4bd80c79b5

    • SHA512

      a397dffd39bc75f84b11e5ad6d5114cb5de2dda5c9a866d7ff6aa0ecb568cb013e16472534f9b3a963f8fd117ea8f488908065010875ecefdf5a6f9a0f4092dd

    Score
    1/10
    behavioral6

    • Target

      cast_error_mapper_prod_container_manifest

    • Size

      10KB

    • MD5

      dd87f4ef7760e8c082cf063fab451729

    • SHA1

      91e277ba3e1bfd23be62e46baccc65cdbd9f7d5e

    • SHA256

      db1041ec72320f628cb4b93081825e4cba75a8882ac49cb23d3b91d4b54a2598

    • SHA512

      28dd7c493db63b23a077450abffd7aca3afb5f762289fc39aa6cd9df37813d93d5f60ef01804c63034f9031168bf4b6f72a4ace1d2c7abbacf23dcab99de4416

    • SSDEEP

      192:txChGEdTXtUh/u5N3GItgVt2sBfo/zMVlPuSYlfmpR+u8xnkowg:H7E1Xyhm5sIyB7VlnYQp8umn3

    Score
    1/10
    behavioral7

    • Target

      info_card_teaser_overlay_controller_467f2d949dd1650f

    • Size

      2KB

    • MD5

      9a349d368f332ffbcd9fc0de7c95d707

    • SHA1

      5d45cae8ea2244840daca0920e4d6a7e0373b800

    • SHA256

      211a6669ab8beafae7ef2bb86adf66825049e7395323f437417f9446d6ec2db7

    • SHA512

      10bfb8a85b46efdabcc2235dc39d54cc1e8f0d7c91af74fc8e16495e313dff3c7c9279eea704b05f0695165017ebaca774466b0cdcebe97cd9c70855284b1429

    Score
    1/10
    behavioral8

    • Target

      listen_first_suggested_action_controller_9ec3197fcd16fd7a

    • Size

      2KB

    • MD5

      0f46530788e31cc7257c5730d054c167

    • SHA1

      8ce15f3d0cd2b5e1bdb6d3a68a4da77b0f704183

    • SHA256

      a0d052e569c6ba39e005d73ad6548c2b71a349eb63f3133e2e52931884fb7d48

    • SHA512

      06c03137232dce1ecf05b18c2e6d3d3e9e683c6dddf4ee2652ab398a2a11a72fc0c2788e68753778e836f99057a013e3d08a353fbc20d753940cff94a0f8aff3

    Score
    1/10
    behavioral9

    • Target

      paid_content_overlay_controller_5a4a725d1c5ee859

    • Size

      8KB

    • MD5

      d744df366e06a5331ff9d0286f481fcd

    • SHA1

      b39935f25e6fc7e0050f83c820e000bfdaa851bc

    • SHA256

      412c3f5032972288707ef7d3ddbfc1eb1daac992b125902157735573fd968760

    • SHA512

      835c1826146c4c9bbd64208d75e99e8e25d761a8a94a672dc004f9d3beb9f584bc0d381dadbc5f5054cd52483826d7dd11e80687f4e6e7c51fcd4bdc679f487a

    • SSDEEP

      192:KeswfFPsXUxnaoyxsMjQNqv3Cf81FVq9zATlGXv4jE5:ywfF+6yftvyf81FVq9z+8wjE5

    Score
    1/10
    behavioral10

    • Target

      playback_speed_sheet_content_controller_c83aa9b6427b31bd

    • Size

      1KB

    • MD5

      275724ef1db39f4a23f7f719e67c2d83

    • SHA1

      88d5aa7d76072bb6cc235c0397c3094938c335fb

    • SHA256

      8c30e45e5c3ebd1621722f8b054a2c8cd1eaf04d3f6a2ec02d86977f7c32c325

    • SHA512

      815f1691fa1cbe3600b567710757d5ed595d84d9043965b9a83337fdd59435a23942307c76825078a402e70f79af219cafef80626560369ead8babf61c68db8f

    Score
    1/10
    behavioral11

    • Target

      playlist_add_to_option_controller_accc2b0069552c30

    • Size

      3KB

    • MD5

      8605d83fec96f841724fc0321ffedc32

    • SHA1

      0bb95a0664635df47881cd8c11873154371fd919

    • SHA256

      4e819ee35037cebaf3eedd0b5c178699970f14846e66206a3d2b7962c646ca82

    • SHA512

      b4e96f41c935856140af616255e0f506215a0f0b1f6982ecf1ab0014e338910f03f761b63144f8d7ed0a78c4d327b480598eb77371b3c40e8440e3976613e772

    Score
    1/10
    behavioral12

    • Target

      quality_sheet_header_controller_13db9d9230ea2e99

    • Size

      1KB

    • MD5

      ef3c78bc091b54e6ec70bd31aed79a23

    • SHA1

      b583551c318afe6ec9a95c0b4f9f4c67db16ddf7

    • SHA256

      b6cec6ea87ee2ca184a73dca8ef1ef6d82c7451da63dbffc3bb972d31d9f7fdd

    • SHA512

      4a8d2b8fa54c541012c844c7395e9678f5adb0649750cf258edc435bc9bc1151112b20c8ec4ea2ed8bad0dd314188bd2dcebdb5d39abfc6a91d1307975c15adb

    Score
    1/10
    behavioral13

    • Target

      quick_quality_sheet_content_controller_93ba8f275bea02ad

    • Size

      19KB

    • MD5

      66674ad15168ee5caa9154aae7b46c5b

    • SHA1

      a6c2e8c19047989aeaf6f90715cb595fefac4c6e

    • SHA256

      446aa1e0f54bcc1318878ae8777c6217716dd0ac6ebb75260979d7d9170ac8eb

    • SHA512

      5ed12c8f1610a725279634586d2c370afce62e7240c4d5766878577c47bc95253f3aa71498ce1c8bf221ae5aa2d89b715cb952b7bb1da080b2d69724e20777b0

    • SSDEEP

      192:ex9Rt3mN8/cALGEAL7pivIkL5B0dKfxaBMdhckXSlRT2BBYeQtA0A7j9N168nGt7:ex9RhyL7pEcDbyBPQtwhG4I6k

    Score
    1/10
    behavioral14

    • Target

      root_89b394ad1fbbe92c

    • Size

      10KB

    • MD5

      d2b9f8f8ee022c139d0f5b9e7e737a70

    • SHA1

      2528f7465ad32af145f9b0c594d90e44bad912f0

    • SHA256

      ab3f37748ff05c44e6f9d44ca356e0c6644b44fa4325fbbbe619f9156017117b

    • SHA512

      61704816e432b2291910a17b0b4a7eb8b65a5fa8c924d54fa8b608d8c3122306f2556e6043fbabe79d5e5a29df454564397f3c299b6c9467542c60a9263eaaba

    • SSDEEP

      192:B4+EC6kIy79SoGuGQnGpdRcfAuo5wEgiQdyDLgohaAnGuo5L+ylCRS1jZ692EI/i:B4+EC6kIyZmHQGpfcYuo5pLQ4cohaCq2

    Score
    1/10
    behavioral15

    • Target

      sy0_89b394ad1fbbe92c

    • Size

      12KB

    • MD5

      f6b4d52f03d88228dd5838ece5cb3a17

    • SHA1

      dde2c02099fc62d0d94f82811e6db8365355250f

    • SHA256

      ea7f78bf690794da9f7e848d2fb110754eb408c000bd911947ab38b5727033fe

    • SHA512

      9fbdfc832b9f289c92e5b2fd3865ce9cf104d361d22e9118ad71df857353d290560bd5c024fe6b60e40bddf17f03927db77a8971f4f7f17c5949b5b6a59a9d5b

    • SSDEEP

      192:ahNLKzos4dYukLCCWIIB+lUjeu8yRPkXf6fI/UQdLSXDBN10Hki:GLB2ukLC/EupRRUUoL8DBN10Hki

    Score
    1/10
    behavioral16

    • Target

      sy3_89b394ad1fbbe92c

    • Size

      680B

    • MD5

      0263eaef568b23b151dfde39b39f40ec

    • SHA1

      07f2be5d328fadcb6c36715bdc0c094ceead9974

    • SHA256

      6c5ea7a082349bad0bb334df10050bf09e056d76cd5c3677b27211b9bd2f9962

    • SHA512

      80ae4ae3d4a3bb289564476826436b826a7f3904fb174590899bfb3d87927f817a4175482f18cea4624660938a5de0b5f9c4fab97341053a1ac1995f48629269

    Score
    1/10
    behavioral17

    • Target

      sy4_89b394ad1fbbe92c

    • Size

      2KB

    • MD5

      d67bd6695e4fc4fbad29dd4f1098a5c9

    • SHA1

      8008ee9e9c70e266b54dc034d847f162ed961bf9

    • SHA256

      aadc3ef81d24296591aa5ba2c78485b0f841441bfce4047e350800796082b0b5

    • SHA512

      82f8ac1dab46383bd45986861806658282c3d9b1c8540b74353ab48d4b9c2be9edd2e3b314d6534276a026f3afbf652b9b0157a885e7179a8e91419b419bc931

    Score
    1/10
    behavioral18

    • Target

      sy5_89b394ad1fbbe92c

    • Size

      323B

    • MD5

      e93bd91c21afeaade2a924c2e6b0fe14

    • SHA1

      92ddd948709b50cfa3f9e5ad77aa170662e09789

    • SHA256

      f4998361e6a7034c9c0a2b14a3b309fce11f6bc6bcb34d8b6b5f99007347eb9d

    • SHA512

      f433662a34f0b9639056e20b800ba7dd00422825a4a67b65908f6a7c1d3d9f876f0268165ded490b912cede12a7c3aa2cde636cc533c7743bb9deec9eaa054d8

    Score
    1/10
    behavioral19

    • Target

      sy6_89b394ad1fbbe92c

    • Size

      2KB

    • MD5

      9dec1473bc7d511c80434e41c0d055bc

    • SHA1

      bafd719ead8169dc84ccef2b08b6f978b3533417

    • SHA256

      fe4f535fb6fd402f59f6480081b4b4a3c55253d1f4aaef61028456bf67156f76

    • SHA512

      d4173a5f22ffa00a40aa6fd8a918eaf003547cc80f987b6d10ee1b6540470f1c246c0148099983a8206ec1faa79f1376a121d836c4144373eee2fc98733aa518

    Score
    1/10
    behavioral20

    • Target

      sy7_89b394ad1fbbe92c

    • Size

      3KB

    • MD5

      46a1088e31a63e1180f0bfedcf43d378

    • SHA1

      8503ab6175e03e3f161baa7b11f9fbc3c85424c4

    • SHA256

      e3bd6a881416c3ffd61c76acb4c1a36e2677a37552d658dee0e4d710f69659f1

    • SHA512

      0d723cb1db3783daf2a941c7101ad379f16410319778618cb72b493a73f0e60b377bdd0e049ff6e48e7eed265ceebfc37798204bd516198f7f1432d0f68978ef

    Score
    1/10
    behavioral21

    • Target

      sy8_89b394ad1fbbe92c

    • Size

      84B

    • MD5

      384977c62c2bb1dac33d6acf6534f1a1

    • SHA1

      3d9043625e2d7aba2e40d82ac2bd072cb0fee962

    • SHA256

      10546fdacd55df4698f80c9ccddb854354c441378ff1ae6b6230ff26ffeda663

    • SHA512

      3661479e83a74012f6395891bfb441ee8ae63bd8fc6c5a03ed9856f3aaa3863eb054570bd17e58539ae3441fddf32fab91e259f5bfcdb6a23b0df209258f2f20

    Score
    1/10
    behavioral22

    • Target

      sya_89b394ad1fbbe92c

    • Size

      2KB

    • MD5

      6573a68c4a14eaece9f835c944364fc0

    • SHA1

      f77b8b0dd91513e417abd843d6a39e28b2f79b10

    • SHA256

      7ab71d2033692f8f5ecf4039da490e469b7ae5be8f1e44ac9398380409c2bddd

    • SHA512

      d036dc0b0ef4883798feb768d93fc2bc64accaba8746bf5a50ddee7fb6d4bb11f7f41588264272dee4533f1db272d45b2cc842937c68df7082aae57564e76821

    Score
    1/10
    behavioral23

    • Target

      syg_89b394ad1fbbe92c

    • Size

      625B

    • MD5

      3eaa4de02f191bc4c7acfd6df1271151

    • SHA1

      8e2d30da804439a22cf38bdb4ac8d08d21b18f50

    • SHA256

      b87c43f47d7331eb3f33013a4ef68976549f959b84b18dd046cddcd6af233b14

    • SHA512

      a6a3005907b5d812093510935a5e5a37da52b543b9d99afecfd163b09e1b07fccaee647bc2f9f1515d94468b7e90160e2b545f28ab2461be903853ded0d9150f

    Score
    1/10
    behavioral24

    • Target

      syj_89b394ad1fbbe92c

    • Size

      2KB

    • MD5

      1ad3352ebb4915f1641df27d61f7d357

    • SHA1

      d8c1a9a29008cc01b420329ac4e93d882a160a0e

    • SHA256

      15bf86bf00beab5ab4115c1a19d3f208a8379e699f8749d6642420b4e5c0e719

    • SHA512

      91eccacf423022195b2033f16ae5d9a4ae75151441ddac275553663bc851dc01d1895af5d059067ff707ba95ebcc5fd01832cc2f738832921164d913d4ab58a6

    Score
    1/10
    behavioral25

    • Target

      syk_89b394ad1fbbe92c

    • Size

      924B

    • MD5

      9a8c081f3a81133e8ff7b36261ad0f39

    • SHA1

      507bc7d5b6632d64eb9ad2d916fd5a28e5ee2a4f

    • SHA256

      9e4e1177c9f273a8d66426fb3e5e83650a14fec445178b015c86e7ee3afceafa

    • SHA512

      db654b29bfe1bdc7790ad8da793418f4abd1307a8797d4b66a4f88e815b8f51e9cbdce7b99f1e966d4591b4849a888b9ac9e6139088e885632c6c2029da8fde8

    Score
    1/10
    behavioral26

    • Target

      timely_action_controller_53f4e8eecbe81d3d

    • Size

      2KB

    • MD5

      a40b2cac519da8905be3854a5cb60555

    • SHA1

      1c2a694a6bc7fbf290cf2afdbb80a4772bce4f61

    • SHA256

      6e4bd07c443e4b9969103dc83cd39fea981c24d0ca5d49b69078b04688b902c0

    • SHA512

      95f90b9a923f899e71b0f57c141ec129a6b705a3730f82dc8d942a4530de71407d858389bf9b518df04c4fe4fb9c7f65e2be219bff76466353a18c3ffd096bdb

    Score
    1/10
    behavioral27

    • Target

      timely_actions_overlay_controller_b6817f1a6568258b

    • Size

      2KB

    • MD5

      be96c47f396483ffb109dcbd7519145b

    • SHA1

      63a6525bdc88351d7f15ff323626c02dc48427a5

    • SHA256

      85e39f79987f1a759466c22377c940d518c0e773614d7368fdac9c2a873b3408

    • SHA512

      2714779715a57efafb65a645a9e9b35583a2a67f08144f5dde27a7c60a7f80c944942bc67a92e29a433f7de66622f1c794523507c52e7bd10ee1726b9d1f2b47

    Score
    1/10
    behavioral28

MITRE ATT&CK Matrix

Tasks