cf3f8f76d8b5d88073448c5ac2f6bf7288679c5ba1cdb5ec6d5f90f50299d190

Sharing

Copy URL

Twitter E-mail

General

Target

zlegends3betatestre-up.apk
Size

29.7MB
Sample

230923-rgte6sgb21
MD5

72695602f3beaa2f96a30942b5ef121a
SHA1

3256f91b8feaa50329eb9d99396999580ce9434d
SHA256

cf3f8f76d8b5d88073448c5ac2f6bf7288679c5ba1cdb5ec6d5f90f50299d190
SHA512

cbbccd9ccda3bcbe3db5f56ebe8f7ffefeff0ae256f714fd88838206f760a214856769fc78f3558e8dd838c7de6d46be8c952572aa451933c6587ca16d5d0e19
SSDEEP

786432:48CvrsAfRD4iKy2PX3OvVA3Nl+Ke+46A+amWt4YzT4Q:48aIGD7Kr/3xYj6wme4YJ

Score

7^/10

android evasion

Malware Config

Targets

- Target
  
  zlegends3betatestre-up.apk
- Size
  
  29.7MB
- MD5
  
  72695602f3beaa2f96a30942b5ef121a
- SHA1
  
  3256f91b8feaa50329eb9d99396999580ce9434d
- SHA256
  
  cf3f8f76d8b5d88073448c5ac2f6bf7288679c5ba1cdb5ec6d5f90f50299d190
- SHA512
  
  cbbccd9ccda3bcbe3db5f56ebe8f7ffefeff0ae256f714fd88838206f760a214856769fc78f3558e8dd838c7de6d46be8c952572aa451933c6587ca16d5d0e19
- SSDEEP
  
  786432:48CvrsAfRD4iKy2PX3OvVA3Nl+Ke+46A+amWt4YzT4Q:48aIGD7Kr/3xYj6wme4YJ
Score

5^/10

evasion
- Removes a system notification.
  evasion
behavioral1 behavioral2 behavioral3
- Target
  
  app.js
- Size
  
  3KB
- MD5
  
  0026d35eff447c5c7aaf2c88a8b7dcd2
- SHA1
  
  e0d74c400d947ec9b24bc4a6cbf3abf4758b87f5
- SHA256
  
  8f7a9b08c2638589e7ad2259b0dee725adf425c629234f1288b1fe946b51c125
- SHA512
  
  ab859b1c9735bd6f4f46501619a5d3b80b96086b299b3e8dab0f1edbe0d80d6254fc31bf43c2fbec545afdc39e9df0b739f6589b5e71424c5d282e61500e6de9
Score

1^/10
behavioral4 behavioral5
- Target
  
  billsball_born.ogg
- Size
  
  21KB
- MD5
  
  a0b31283f7f2dab84070be08ec41d348
- SHA1
  
  2449b402366f0d4ca31cc073382c21cd75f3bc3c
- SHA256
  
  401423049597443e0bc4a19bdf5e88ab58d22c09c5b46cfc3eeaa48115244401
- SHA512
  
  af08340460c9c89e68a87e40db3ed4700cdf20001843f4aae81e9aca4ff48de0562f36c3c9165ef0e5cda89fe7afc1f3b7e102c30705d06e77da261e279c7b83
- SSDEEP
  
  384:KiJKXg1/E6creBcrczJauRppVUqyk1gIt/SbMPBjPRLJT8+4JWAMtShnB:Z/E62U9JhBVJLtfFPRd8+KRMtiB
Score

1^/10
behavioral6 behavioral7
- Target
  
  c2runtime.js
- Size
  
  795KB
- MD5
  
  36a21845914a7e0e72a7bf966ba1f32c
- SHA1
  
  e97284a323668da467c9a62311c0f922a3e5bf70
- SHA256
  
  4ca03b172f1a9cb6f5651e15c35e0073d69fa834924303b1389b0a2b8874544b
- SHA512
  
  1bfaa5deb2295a2515d953c386796f1335e02d97333f2f9eba22a0a8f4f1321fbc1f3b4209e46f1e7c2ab5b59df999e0c8c9bbf5a93e1100af32da877c441afc
- SSDEEP
  
  24576:L6XtncWrITGBp2L5O33+wQLGg+c4InLfWpF:L6XtncWrITGBp2L5O33+wQLGg+c4Injw
Score

1^/10
behavioral8 behavioral9
- Target
  
  cordova.js
- Size
  
  61KB
- MD5
  
  f803a3aabc3d049d1c5d8cc142b7ed90
- SHA1
  
  8bc0e999ae299eee7977a5b40ec4dca3bbb451be
- SHA256
  
  9e28b613828094948691cdeacbac6bdae125aadafad53e9721f26fe426191f85
- SHA512
  
  d2e3a9f1001e76a226ec9546997d73c88cadd1b32d196e68cec2875094e4e60e144d224240a205924113a9636436e4b6f9421438ea0f8a7183a7108910815537
- SSDEEP
  
  1536:tKrRGSgkSv81BokKkOMQK7L4ysATupi41I6X:tSgjkSuokKkOMQK7LM
Score

1^/10
behavioral10 behavioral11
- Target
  
  cordova_plugins.js
- Size
  
  176B
- MD5
  
  6e295353973b799d01d5b9fac0f5218e
- SHA1
  
  0b9d6b49d4130852748ccb88a232ec1cc6a62ebe
- SHA256
  
  646c1399adf4ffa54ce0bfc7d1793ba9ac84dbf5820d1afce59bfdc63d71874c
- SHA512
  
  8555d50b7195e9e9aee15fcc5041c1ad53bc974ff609338ed81151ce0802be4b114e748cecb6d57e6b3b077f70d272d1a6a7438c1b4d86eb6bf0ac0ac0aca6e9
Score

1^/10
behavioral12 behavioral13
- Target
  
  data.js
- Size
  
  5.0MB
- MD5
  
  e52fb120b3c84de15e1e917514d7acc6
- SHA1
  
  1decc4865d51c9d8c7cbf2381164e5f9c9c6a9a3
- SHA256
  
  f27b396f9967c6200a6f0f3c3dac875416fac65d3b3dbfde92e300955b4d1f97
- SHA512
  
  7ce4c9f14400b6250532fb9dfb4e0eace2a0956c6e38611858f21433c0c2a7b3f4b0158e3f97940bc4c0e0e7b8431cf9de9012514f7d9daafe396c04c704a3b3
- SSDEEP
  
  49152:6Tqcy2PYBzXRSisNqgJE9NELt/IMd8yOfbBWwt7tMLX6YjzBXE7irf0fOlrsBefe:6Tqcy2PYBzXRSisNy
Score

1^/10
behavioral14 behavioral15
- Target
  
  exec.js
- Size
  
  10KB
- MD5
  
  3733637df222e1fb58c705074748ae6f
- SHA1
  
  9c9f6ae039f35defba52ef64b4f7f33f6b8a541f
- SHA256
  
  14903bd51eb4dbeba82c05e6c8e0f9eeb2b24edd5a5a2d800111838c12030d4c
- SHA512
  
  c9349cc4cdbb87df7a4f2fc9b14f2ab2fdccac21efe70e214eb8deffd1376c411ea339a0e482f12771276aa1d9c70acfc34bd3dfd80d4af009f03b6e48262eb8
- SSDEEP
  
  192:z7NdHpqQ7TnJlK/bz7j4zfltsrUQDlF+VOiwafPbY50AkYliQZQ:XNPqQ76gr8YS6DKQ
Score

1^/10
behavioral16 behavioral17
- Target
  
  index.html
- Size
  
  3KB
- MD5
  
  b43c048fb4b3b06228ef844783673ac2
- SHA1
  
  0900aa8fe609c928c859467fea9abf0fc7155e1b
- SHA256
  
  3e687c6b6c4e5d86516775b7803dc004c83baafabe456c10c15f49d87a4f1a2f
- SHA512
  
  14cc4cc2767b659f08edd89ea3bf10a4466162d46429c66cb5983e5d51b335c992aef18b1c0c8a2ceec2c6f386fd73fb6ff6435daf4196815a4ff1e93e846bad
Score

1^/10
behavioral18 behavioral19
- Target
  
  jquery-3.4.1.min.js
- Size
  
  86KB
- MD5
  
  220afd743d9e9643852e31a135a9f3ae
- SHA1
  
  88523924351bac0b5d560fe0c5781e2556e7693d
- SHA256
  
  0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
- SHA512
  
  6e722fce1e8553be592b1a741972c7f5b7b0cdafce230e9d2d587d20283482881c96660682e4095a5f14df45a96ec193a9b222030c53b1b7bbe8312b2eae440d
- SSDEEP
  
  1536:yTExXUZinxD7oPEZxkMV4SYKFMbRHZ6H5HOHCWrcElzuu7BRCKKBEqBsojZlOPma:ygZm0H5HO5+gCKWZyPmHQ47GKe
Score

1^/10
behavioral20 behavioral21
- Target
  
  nativeapiprovider.js
- Size
  
  1KB
- MD5
  
  e57fd7d1074822cd0fa72aa9a42e5297
- SHA1
  
  87d0075c461dded59c3f8c7a16e67fd944336630
- SHA256
  
  5755538135ceab65896ddbd773a7e7044f32a660de61d43346d4aa4e4389da55
- SHA512
  
  e46c0723ea418266dcdfb82ad13030ce3d345c4ddd86c867edf9ae229ea590fedbeedbcdf3536255fbcd70b83abe1587df305cb74bf9fe7f2128dd0e4ebce865
Score

1^/10
behavioral22 behavioral23
- Target
  
  platform.js
- Size
  
  4KB
- MD5
  
  9c36fb90a0a9326fef4ef032d52d2c21
- SHA1
  
  7de1123aaaa7fe470537a27ee17cc7052de5a473
- SHA256
  
  3a1404a82bc95c66d86a0459a0fe65643be019b5d00bef7c2bf53e55018e0451
- SHA512
  
  f40464caafe41c2a01bde4116f3f8d02eb365b3feaf5bd4c71b99082da62da2446bfad6516116e3e6ed245f451d9cf7353000c4d0d2b5b365d838ce2b8806799
- SSDEEP
  
  96:hQ0N7B/dHfiWSyQA/MgtOp2lstJ4+VOH6U2kLJCPZWIF:z7NdHVbZp/6VoIF
Score

1^/10
behavioral24 behavioral25
- Target
  
  promptbasednativeapi.js
- Size
  
  1KB
- MD5
  
  966e66968f22e991ff44bcf9e22e6a06
- SHA1
  
  340d92e2b57a2d6db2d529699bfcb71051865dc9
- SHA256
  
  eaacd9b5acc002d5e96919cfeb27032c007aa83e452263929101aee71f66b895
- SHA512
  
  4fb8fa15e8d8c5706bb89a3cf4200795b626625761528dd7d3f6d80fc46bba75609bdda4f91187439628f33ebcc648e7ea8f53af27e4b7f1bc137acfc42db206
Score

1^/10
behavioral26 behavioral27

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Removes a system notification.

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27