ahmyth | e7f867923fd164c221616c59edf06d5c9f419bf76c508af26be541ab16745868 | Triage

Sharing

General

Target

e0eacd72afe39de3b327a164f9c69a78c9c0f672d3ad202271772d816db4fad8.zip
Size

342KB
Sample

231012-fl23bsge2z
MD5

0ea764afa833084b76e270f8e092204b
SHA1

92e0bf9db0311561376026cb3bfeb858d2d253d9
SHA256

e7f867923fd164c221616c59edf06d5c9f419bf76c508af26be541ab16745868
SHA512

a0e982acc578b397652e8a37e7e67b7adb64683fc6fa24aed9c1cafc0e689522b8fbaf9a5bf0442ce4cf41c3f25c119d688160ab0002b38d39c82eaadabfe373
SSDEEP

6144:Ex+uf/sJRaGItqp6zo9f3k7ONT76UB2jJdqGqimQq+2OcQGEgp3g7:6nsJ0GbpLUyNuU6jMJOcTEgs

Score

10^/10

ahmyth android stealth trojan

Malware Config

Extracted

Family

ahmyth

C2

http://82.146.35.240:80

Targets

- Target
  
  e0eacd72afe39de3b327a164f9c69a78c9c0f672d3ad202271772d816db4fad8.apk
- Size
  
  377KB
- MD5
  
  4f5617ec4668e3406f9bd82dfcf6df6b
- SHA1
  
  45eed0d3f6dc143bcfa19f593523ee07683ca66d
- SHA256
  
  e0eacd72afe39de3b327a164f9c69a78c9c0f672d3ad202271772d816db4fad8
- SHA512
  
  3d830b085d20a049dffccac1691617c7500e3023b45d7961d418f2731dbc530d2de87bda1d7c6fcda6e61ce926f044d6e87e1cdda99bf0a729067e11d68eaa91
- SSDEEP
  
  6144:rRxcwkntjYLs32gQ4L0BgtFLVkFh1CTPq2HiXNA4Kg1duR6/s/W4B7:lx2ntjY4mgt0BgtFJ6h1Cb89KEuRIuLZ
Score

8^/10

stealth trojan
- Removes its main activity from the application launcher
  stealth trojan
- Tries to add a device administrator.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3