spynote | 8bf9353e6561dc28e2f1d79ddb7d1e15657982866845b573e45893968efe6282 | Triage

Sharing

General

Target

ready.apk
Size

3.7MB
Sample

231014-djl7zsch7x
MD5

02f4faadc5d238cfc2ce83554eab91b5
SHA1

a38215217269f4b02adb8bfbfe9208693d00565d
SHA256

8bf9353e6561dc28e2f1d79ddb7d1e15657982866845b573e45893968efe6282
SHA512

ad6cee1570f20861b196adf957869e6d03770c9cac66f5f90d7e17e08d87d04a1b44ac8b80782538f187e2de961e65e70ee1b7a47203c148d242dc46c70b00f6
SSDEEP

98304:LtftUKUDTbKhsoqamz/zB0Tb0tMTsuxtp:rUB2NqVzmE8r

Score

10^/10

spynote android evasion

Malware Config

Extracted

Family

spynote

C2

fee-harmful.gl.at.ply.gg:41934:7000

Targets

- Target
  
  ready.apk
- Size
  
  3.7MB
- MD5
  
  02f4faadc5d238cfc2ce83554eab91b5
- SHA1
  
  a38215217269f4b02adb8bfbfe9208693d00565d
- SHA256
  
  8bf9353e6561dc28e2f1d79ddb7d1e15657982866845b573e45893968efe6282
- SHA512
  
  ad6cee1570f20861b196adf957869e6d03770c9cac66f5f90d7e17e08d87d04a1b44ac8b80782538f187e2de961e65e70ee1b7a47203c148d242dc46c70b00f6
- SSDEEP
  
  98304:LtftUKUDTbKhsoqamz/zB0Tb0tMTsuxtp:rUB2NqVzmE8r
Score

8^/10

evasion
- Makes use of the framework's Accessibility service.
- Acquires the wake lock.
- Removes a system notification.
  evasion
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3