ahmyth | e0eacd72afe39de3b327a164f9c69a78c9c0f672d3ad202271772d816db4fad8 | Triage

Sharing

General

Target

e0eacd72afe39de3b327a164f9c69a78c9c0f672d3ad202271772d816db4fad8.apk
Size

377KB
Sample

231011-ywjylsac91
MD5

4f5617ec4668e3406f9bd82dfcf6df6b
SHA1

45eed0d3f6dc143bcfa19f593523ee07683ca66d
SHA256

e0eacd72afe39de3b327a164f9c69a78c9c0f672d3ad202271772d816db4fad8
SHA512

3d830b085d20a049dffccac1691617c7500e3023b45d7961d418f2731dbc530d2de87bda1d7c6fcda6e61ce926f044d6e87e1cdda99bf0a729067e11d68eaa91
SSDEEP

6144:rRxcwkntjYLs32gQ4L0BgtFLVkFh1CTPq2HiXNA4Kg1duR6/s/W4B7:lx2ntjY4mgt0BgtFJ6h1Cb89KEuRIuLZ

Score

10^/10

ahmyth android stealth trojan

Malware Config

Extracted

Family

ahmyth

C2

http://82.146.35.240:80

Targets

- Target
  
  e0eacd72afe39de3b327a164f9c69a78c9c0f672d3ad202271772d816db4fad8.apk
- Size
  
  377KB
- MD5
  
  4f5617ec4668e3406f9bd82dfcf6df6b
- SHA1
  
  45eed0d3f6dc143bcfa19f593523ee07683ca66d
- SHA256
  
  e0eacd72afe39de3b327a164f9c69a78c9c0f672d3ad202271772d816db4fad8
- SHA512
  
  3d830b085d20a049dffccac1691617c7500e3023b45d7961d418f2731dbc530d2de87bda1d7c6fcda6e61ce926f044d6e87e1cdda99bf0a729067e11d68eaa91
- SSDEEP
  
  6144:rRxcwkntjYLs32gQ4L0BgtFLVkFh1CTPq2HiXNA4Kg1duR6/s/W4B7:lx2ntjY4mgt0BgtFJ6h1Cb89KEuRIuLZ
Score

8^/10

stealth trojan
- Removes its main activity from the application launcher
  stealth trojan
- Tries to add a device administrator.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3