Overview

overview

10

Static

static

10

ready.apk

android-9-x86

8

ready.apk

android-10-x64

8

ready.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ready.apk

  • Size

    3.7MB

  • Sample

    231014-dh27taeg64

  • MD5

    f7dfc91fab08d087d59058bb30e1e2c0

  • SHA1

    e5f47372fdc13e1d34756e0d748ffb5918a20683

  • SHA256

    82bf4276528ea6a91113e7d1ca4424f1a82cc6d77cd3522c71f61c2c5f9865a5

  • SHA512

    6761490b2f7d1352992e1edfd7d207b3da2bc3b422c0f02a9a7536526869a58544358ced5a84ecef9a92afdecd9bb8fc286cc759bec12edb79a13bb2d7379e44

  • SSDEEP

    98304:6/NJOG7pe0nTFBHN4mmzPzBCTi0tQ4uFge:6//HFe0nTFBt4RzEhk

Score
10/10
spynoteandroidevasionstealthtrojan

Malware Config

Extracted

Family

spynote

C2

fee-harmful.gl.at.ply.gg:41934

Targets

    • Target

      ready.apk

    • Size

      3.7MB

    • MD5

      f7dfc91fab08d087d59058bb30e1e2c0

    • SHA1

      e5f47372fdc13e1d34756e0d748ffb5918a20683

    • SHA256

      82bf4276528ea6a91113e7d1ca4424f1a82cc6d77cd3522c71f61c2c5f9865a5

    • SHA512

      6761490b2f7d1352992e1edfd7d207b3da2bc3b422c0f02a9a7536526869a58544358ced5a84ecef9a92afdecd9bb8fc286cc759bec12edb79a13bb2d7379e44

    • SSDEEP

      98304:6/NJOG7pe0nTFBHN4mmzPzBCTi0tQ4uFge:6//HFe0nTFBt4RzEhk

    Score
    8/10
    evasionstealthtrojan

    • Makes use of the framework's Accessibility service.

    • Removes its main activity from the application launcher

      stealthtrojan

    • Acquires the wake lock.

    • Removes a system notification.

      evasion
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks