c40ba8d48c840a7177aad02a4e94268baa3e8a280a8edd0757191276699b18eb

Sharing

Copy URL Twitter E-mail

General

Target

iceraven-2.11.1-browser-arm64-v8a-forkRelease.apk
Size

88.6MB
Sample

231102-gp615agc9y
MD5

cea3373be549347bee22a64941d5b8a4
SHA1

e5e98bfe3ad90795169c46681d7deda5c95a4fb8
SHA256

c40ba8d48c840a7177aad02a4e94268baa3e8a280a8edd0757191276699b18eb
SHA512

9c5db8c280f61105be5e73cfa633c63d6afcf13069a7ba23d920ed74403ff89d7cbf7151db6928e60d31598c52d828ae9cf5d1d9f8ed8c5cbb08f7fef723934e
SSDEEP

1572864:7/15fqV3JfU2+lDxC5jYdIXGTURWbmdx5p+/koqJ13l9V4dZR:R54CxqjYeGTeWbkxT+/ko6/u

Score

7^/10

android

Malware Config

Targets

- Target
  
  iceraven-2.11.1-browser-arm64-v8a-forkRelease.apk
- Size
  
  88.6MB
- MD5
  
  cea3373be549347bee22a64941d5b8a4
- SHA1
  
  e5e98bfe3ad90795169c46681d7deda5c95a4fb8
- SHA256
  
  c40ba8d48c840a7177aad02a4e94268baa3e8a280a8edd0757191276699b18eb
- SHA512
  
  9c5db8c280f61105be5e73cfa633c63d6afcf13069a7ba23d920ed74403ff89d7cbf7151db6928e60d31598c52d828ae9cf5d1d9f8ed8c5cbb08f7fef723934e
- SSDEEP
  
  1572864:7/15fqV3JfU2+lDxC5jYdIXGTURWbmdx5p+/koqJ13l9V4dZR:R54CxqjYeGTeWbkxT+/ko6/u
Score

7^/10
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1
- Target
  
  appConstants.js
- Size
  
  841B
- MD5
  
  7c4aef38214c78198a3f8daeffc8c30b
- SHA1
  
  61a1c9330cc2fc77f12cc7dfe01a7e35e88de3b8
- SHA256
  
  bae27b72cdafd05c816e2d9431fe7244bad30a69aeaeb74120b09a11432d2a34
- SHA512
  
  67df29e14e79d2e62d117e8102f44f49bda37106a67d6e82f5c9ca07319c387fb19860c233db9957e38fb1d2cf54229341d0dc9322c9a953adcfc9bf7bb0cc15
Score

1^/10
behavioral2
- Target
  
  apstag.js
- Size
  
  1KB
- MD5
  
  f2afd250cbb0b759ff2aaf54d71411b6
- SHA1
  
  47beee3faa815b8f2314de5bcc50f3554ff233b6
- SHA256
  
  a40372250602dda1c7837f52bd2cd4d5a3ef023f9959362764f64d1a2f793bc1
- SHA512
  
  eb23536205151d8d64433008d31ba4d3dc311cf97cf37d83736ee4b076b19b41595d53ec87033906c75e2d087591802d78be7f92cf7109d2c993185a6925345d
Score

1^/10
behavioral3
- Target
  
  background.js
- Size
  
  6KB
- MD5
  
  e4b494e4730f28203e2c4e53f74bcc16
- SHA1
  
  c6eaa435e32f209b1639bad234858bce5a9e5a4d
- SHA256
  
  c562f3c718d8b91cca71bc06443eb1c38a698746926732e158e55a88fb0505a8
- SHA512
  
  d1a89c90165183eec83d1b3c7b59f045abde6aed5e7cceceff0c07e09279a53f1cf11c724419a087b713fa667ad6900c539c18c8771fe8c5b27fcbc82f027bc4
- SSDEEP
  
  192:Azv5D5W5eHpo3DdPG5fQ556MIX3SdB6o0cEm5f79QW0MMrHdnZXTrD:ov5IQHJuK/ydB6zNmBiMMrHpNr
Score

1^/10
behavioral4
- Target
  
  blogger.js
- Size
  
  1KB
- MD5
  
  5fd461e2fa402f16cf5a67479a573194
- SHA1
  
  6ad7c54693db4d1571297fce2f62bcea150cfb03
- SHA256
  
  397a81500ce1ca539a69e8c35cb4492bb7e31d9b36462487546847dcf6f83683
- SHA512
  
  8b52c33125793ea31a814456e370c0ed48f8a8042160569fb976c23866402cad0b740162c5753b83a68784c7206e6911e83fd32ead2061d0f3235d77499a0d67
Score

1^/10
behavioral5
- Target
  
  bloggerAccount.js
- Size
  
  2KB
- MD5
  
  44ab0c63b2b0ee43f24870b743d8dac9
- SHA1
  
  7430bd3e786240f333bb6ed523b8577d79137f40
- SHA256
  
  577a1b14540a547f1797ff4d55b0c84599ef4c63264a1e6e50e479cc692aabaa
- SHA512
  
  c37762ed648c77c01dd3d3cb1f12099ad4e9b7ba60539d34b38a9f116ec1dcfc429350f728a5e07cf9c57b6f77943b2bd41f002783e98d35b1ef728d81aa1000
Score

1^/10
behavioral6
- Target
  
  bmauth.js
- Size
  
  530B
- MD5
  
  ede18146b1d052a3e069c61143f82624
- SHA1
  
  43cd4799a797fdc85a807c4c50255af7eafc177a
- SHA256
  
  2d3a3d2be96ce36e2014231356b90d2d5415b19dd580ea63ec787516ebb76777
- SHA512
  
  20845d059437ec7c14ada83874a7706f747d448cad28ca61d4b1fd975f0887af76290f28f9ecc4e9b635cb9bf776d6fccdc389b2a3c117f419e85e74ad1eab1f
Score

1^/10
behavioral7
- Target
  
  branch.js
- Size
  
  1KB
- MD5
  
  dec40d3862884040cffe1c4401866b6c
- SHA1
  
  3a0432e66080f00acc69132a706483bf8d7f3574
- SHA256
  
  aa4ac1ca3a7a18419f7fc2233eea1f173117d384145217c89156b4a1e6916c3f
- SHA512
  
  1d989fd524909acb5049279748b1fc909801144cbd5a24a4ef1b6662e59e608598ce4bb4623211616355edf3bffd5f7e80d63d2c04590958294e39402fa6ee4a
Score

1^/10
behavioral8
- Target
  
  optimizely.js
- Size
  
  3KB
- MD5
  
  b1480c1339924b89c2d446f574980f1f
- SHA1
  
  dc14600d3986b0fe907d4f9a7131b104d0b50c4d
- SHA256
  
  0609bad67850c27c401330a47e2c86e05469df851a72723a7caab62eb38b9ee7
- SHA512
  
  1250098f8e029aa6632c8e886dbed81064aad64d05ba83cfc77d7eb3b23f1250b20e8d7d9146dd6a0e9bc29a03a4675f2e116184de14699db1cf0ceda9d5d55f
Score

1^/10
behavioral9
- Target
  
  private-browsing-web-api-fixes.js
- Size
  
  625B
- MD5
  
  c59e74c327d8e252486ba0db86b22c9b
- SHA1
  
  f63eb6419e416bf2af482aa4c500627d776a3df7
- SHA256
  
  b76c54d5e37eff924af40ffa12893c08d8bfbc37a72bce01793ada2348c13afa
- SHA512
  
  9896a15e29800d7e6c24caaaba4cf4c58aeb850367f20b135679272243f4271590adcf773c4d0e0168aa5fae1ea3c0479a571fd5859fca1de2394bdd626b8bd4
Score

1^/10
behavioral10
- Target
  
  rambler-authenticator.js
- Size
  
  2KB
- MD5
  
  65278b6a47eeb607bea6d12dd6f00d99
- SHA1
  
  30b107bfcc83785889d7d604faabce4f53920a26
- SHA256
  
  6d5f53106e6da376108e6296a1f23fdb1175bddbad8ebde0e6198b695db296a6
- SHA512
  
  9c9786923e7c4a88c4f1ea586031b6006229dffae5fa7165bad69d9184f347668156a12d101e29b516c0e949a1afa017fc30d95a875a60011629b003f451bdfb
Score

1^/10
behavioral11
- Target
  
  readability-0.4.2.js
- Size
  
  80KB
- MD5
  
  d7318041b2ba79e7287d0f9a4ec5c11b
- SHA1
  
  ae910965909f42ada004fa5217279de205a198a0
- SHA256
  
  01ae6704096f1da9017a067d8a37c5dc5a9373830f3ada26e0a3e3c7cbc48570
- SHA512
  
  016df605286a9eaae7c35e649c0a48063fc8c5175182d2c3500e519ae7b60a7263d88fe9c822c242e87e3f2dc9fdcc6c1f92277f45cb6bdefc1ce33a7afc6053
- SSDEEP
  
  1536:6KPscciGq/pUjtbRfm5Ioge9WOeJy4ezvd1f7FETVFyA4v24h19irWYMCaQGfAav:6s/kqB6bRfOIoAJynHxA4vx19irWxv99
Score

1^/10
behavioral12
- Target
  
  readability-readerable-0.4.2.js
- Size
  
  4KB
- MD5
  
  556264b0647831491f30695f6a5f71e9
- SHA1
  
  283a72ec67ff3fc3a5d12c9791f21a61a5f9a216
- SHA256
  
  84b50aa740e94575fff267c05da2316b4c9c712a54cb1acbeff8521df41d16c0
- SHA512
  
  b6c7b3720a124ebe8fd7763e0a5a8c21e2c8df0ce730675010a4ef0d920f8ecd95ccb0680551a87812603d416a4c4702f3b092264c11252dacdbc604eacecc5a
- SSDEEP
  
  96:i4y/XHFC0EqlIJ6g/ULAfCFziOAi52QiOufJclvh89/xDgJbjhx9Ql5eqbEh9/mv:ivXH3M/CaCFNufsO81mXFiwQE5
Score

1^/10
behavioral13
- Target
  
  readerview-background.js
- Size
  
  1KB
- MD5
  
  bc0b934029244b5653a2718f17d8c94b
- SHA1
  
  20863bbef30c77f55beb0867bfebc99337db5d5d
- SHA256
  
  1b7dc9e590e4c064bf5c61e8500db9a97ff92895a3bdc854652066d5a2704aab
- SHA512
  
  8ffef47cc02558b7a4ff49c7fc4e4d491a9b01d4b151c01e48e9e111c84d912b1e8690d193cc160f99ea662fae613e03775a12a1326caf1c17f918b88dfc0eae
Score

1^/10
behavioral14
- Target
  
  readerview-content.js
- Size
  
  2KB
- MD5
  
  c996bcdd49793360b2baed49c41051cc
- SHA1
  
  55bd2822c5081fa0bb5290e674c652fcac1f7ba4
- SHA256
  
  45be7a2d3373e7d332381ce4ee1e8109551fe5b0030b5bdd9bb9c2c12dfb0a6f
- SHA512
  
  f1dad117d3c699c84755a2544744f3ab364b91ab43a948a13bf5b3db1c3ce04700a2af4d8a593403b403c36d2c0f4b7e9acc87b4507176433ddfb5f9cbbfa09d
Score

1^/10
behavioral15
- Target
  
  readerview.html
- Size
  
  687B
- MD5
  
  31140407b09b88bda0e73fa713a851eb
- SHA1
  
  ff68016f9a8d6487ecd87c247da406b1a8329310
- SHA256
  
  c38224eb59ef299d4d032106998ba8d37a56e15216244edda2c27905caecf8d1
- SHA512
  
  1922e5f2362123cca287efcb24d4b632733c9c45f846279c9e9df9b21532efc79d3822d57b18bb1cc9875e3ceb0f5937e0322a1a09672d8e55b4245756038213
Score

1^/10
behavioral16
- Target
  
  readerview.js
- Size
  
  11KB
- MD5
  
  ff453a866685a5bbd8e1ba303a7d6ef9
- SHA1
  
  c6d9ceed2c5f7c5ce5a9c8f6449f0d1831ba06c3
- SHA256
  
  759dcda95332489333d9f4fc3845a6fdfdeb4d35d1c0c9fe9beb79db967ea1d4
- SHA512
  
  7dc8e295b00fea561d4ea6c47724d064c877821fcc530bbff88a49930e27790ad06ab94078236de8bfd61ce570b911602612632866168d208899900da4f83a48
- SSDEEP
  
  192:AI/BalWbFOEHTa6eWLzVr+9DuNiz+nSkBT7i114jb8ZMFD5Zarnua4QJpCCRoyt3:3/cGljmDC6LVC8C2nuy9P232oAFR
Score

1^/10
behavioral17
- Target
  
  requestStorageAccess_helper.js
- Size
  
  1KB
- MD5
  
  d2f6ae8a4bb4af02409be3fe792b06db
- SHA1
  
  634f83835e1e41f6a421f080c9bfce29f97c5fcc
- SHA256
  
  a857be1d2e50b2075e0ed5f50ef07e86857c2b0f3c1903b36e98f8d80327166a
- SHA512
  
  e901a5fdecd1f67fcd62439e5d8a339a6659ab0e2513c19ccde2c1e56b0e2a74ff96eeae57b072d380410bf85c62f3410055e4ec12aebf0e39d2c7d4ecbfbfb1
Score

1^/10
behavioral18
- Target
  
  rich-relevance.js
- Size
  
  6KB
- MD5
  
  46ad41d25cd50f0221920329eca8d577
- SHA1
  
  b2a71d100a5cb4c9b0cb49029370f50c593f1f8a
- SHA256
  
  ef4549b34cf98b8f32d9f67522c0cc784eeca25930b840b08c10f9f7d458cebd
- SHA512
  
  664426e712371c436fab78d923e2b67d440b8f36650b48f44e607da73cde2637dafa445cec311f88cda4f6b4d6a0c91eb027a821395e47d25baa8616c384a7e6
- SSDEEP
  
  192:AYj/TxYHLVTbZF8NyJpjP0P7bZLWhjIgnoDr/rI/4ipjTMJrT/EJ:GTbZjFP0P7bZKhjnoriR
Score

1^/10
behavioral19
- Target
  
  run.js
- Size
  
  1KB
- MD5
  
  1ce8705cfef551d71a03b3b43f288488
- SHA1
  
  6f7a58efa3b052f73d3c0100f70c738c8037ede4
- SHA256
  
  e7402f82200b9c101b8596c867ed30ef648114ff9b8108f50440dc3e95f6c3f9
- SHA512
  
  05e9efb817ecd37e87798603e35d78bdc4e3fcfa27fc34719dfc9360b8014119c5caa484e626aebd93e60d41f53cfdeae14d25904d23b3cbd6b1299e8f5ac98c
Score

1^/10
behavioral20
- Target
  
  searchTelemetry.js
- Size
  
  1KB
- MD5
  
  654b69a5d2594ea2de610864c88a265f
- SHA1
  
  4d2c7bf8a8299c6cf5c815c46bb6565d6259c18d
- SHA256
  
  a0554f5fbe17aee0547604b4a4ec1717eb0299f42b5731de868f8f550d36ef22
- SHA512
  
  517a6108c0ce6157199be84b45700ba58f7eb672a701fdfebcd041995aefbb28c01f40f673c0c4b979b5ba17a362bb6d78c99cc72048fe805d9b0a585a9f3703
Score

1^/10
behavioral21
- Target
  
  shim_messaging_helper.js
- Size
  
  1KB
- MD5
  
  865f01cbb34eb505834e826380d7dc2e
- SHA1
  
  c239ccc37191f1be78dfaa6bb3f1da5d314fdf9e
- SHA256
  
  30ed6392b8de4590bd974a4a797ee0b12b382f2141738115bfd2d692cfa6ec17
- SHA512
  
  9e37cd2e9fb9e4e926e2d1e1232c4c4ba3531d89b1d165293708849e0f88df6a40711d87c2b267ced9b6c4a27ac13079b5cb907334e2e297b588318df629b9ee
Score

1^/10
behavioral22
- Target
  
  shims.js
- Size
  
  31KB
- MD5
  
  4b845dfec5295edbd71832db6c3d6e11
- SHA1
  
  2c87603b3dc5371e55fcba44e6b3403436b106cd
- SHA256
  
  056e0fb1b74e0fc06dabc95962356a7764a1952485ea1f3b46e43f50792e4240
- SHA512
  
  f3d5937df19e7536229b1a2b771f6d824f724d4d2a97f07257075a65dffe3293d5260f777dbec687b378840cc507ac16e39ad3847b1b2e1aa88e3cd2b0e1d032
- SSDEEP
  
  384:oGBDLSNIjmjn5TkyZh7v6Jyk/2LrRIYD94F43D/lhhAe0r5SeEqEE:DEL/93qHbEW
Score

1^/10
behavioral23
- Target
  
  spotify-embed.js
- Size
  
  4KB
- MD5
  
  aa50e7422b26e35878afcae500c47507
- SHA1
  
  8d60bda0b30217eeee2984ff550879693b8bead8
- SHA256
  
  f3bbf09e8c3824c96c49f70351c6ce5f52d839a9d7c680041ec1df882dab60ca
- SHA512
  
  3ecfe878dd8b4326ed4283c03234c5a9810ed9fc379096a6a408241c3c54a7261829c47c83913ecbb58c612de9710f5d92a79b8125a119922ded459a84d3455a
- SSDEEP
  
  96:AELJt5+ufgZ+595nVX5ky/klmLrYdUdeV0v3ugd5FVT5LK5QI:AEFtvfe+7j5klmMZVQdpk5N
Score

1^/10
behavioral24
- Target
  
  tabExtras.js
- Size
  
  2KB
- MD5
  
  2a938658134e40b33f2df9edbe9b62d6
- SHA1
  
  d2965081e1e7d56db499aa219a48532ee57da53f
- SHA256
  
  534e1bfe51b6c8b1d6e6f3ae218bc7f5f2368d56f25370dfa00a93d57d1fe0e4
- SHA512
  
  cff7645e37fce02be8005edefd75cdca844eaf292ab52ed942a3bd3fa2754065ca448116a541e40e65277fff721c0ea030754d68799fc6c660a2500b70bd179a
Score

1^/10
behavioral25
- Target
  
  tabExtrasActor.jsm
- Size
  
  3KB
- MD5
  
  cf431607b9e1a47700149cdf229419b9
- SHA1
  
  510d30d8f51480091d19463b257d9d303d00b313
- SHA256
  
  a3ed88952fb188b3cba41acac28bb67208353a898cb1792a26ea4138c9d08b9d
- SHA512
  
  d913fb305412279621c90cf48033acedc06a802ac49f0c006fcc7ea698f0f11931401ad026077285e8d5d3802c5c053a400ed9097b47afc703cbe0deaf5af7d0
Score

1^/10
behavioral26
- Target
  
  trackingProtection.js
- Size
  
  6KB
- MD5
  
  3a20eb0a9144e61c74e90f2f69caa0fa
- SHA1
  
  c8ed3572df2037439824845343eebccc2661d381
- SHA256
  
  f450fe14cea9240dfa64feb697f546fbaae82ac2e55e59e6474d2a565cea8396
- SHA512
  
  5530b178e617baf283e7f71e475f00abcb3fe14a9cb932720afbd1ee831166cf1737dff0891a7b6b194f2dba22150413ca7dbf20ac3fc170a1ea4d55be95dd1d
- SSDEEP
  
  192:AKp6IZn61Q6IGXaDCqHq+aaogCVKoCdsMNQZAEEbC95Z:paCddU
Score

1^/10
behavioral27
- Target
  
  tsn-ca.js
- Size
  
  1KB
- MD5
  
  23e164c2caea98673c9d9b79aeb7d0af
- SHA1
  
  67f9cf16d55e97f8bfac2c9d0ded58fb72599d6d
- SHA256
  
  6578c7a6a57a8d0448766136ea76b16dc32b1657efea65a8a16a66247788bb81
- SHA512
  
  32cdccafcf670020c0efc3ac039693c41f4cefdd56518cd76d0745dfccdb4f08ed2cb0d83d68d7d148b80fca3db2202ca9c45deda0126fc817a338d2f556b0a3
Score

1^/10
behavioral28
- Target
  
  ua_helpers.js
- Size
  
  3KB
- MD5
  
  062a694ce28c010058461e65d41a545b
- SHA1
  
  a8fe63edfb166db6a7bff2478ba97c0bc6b182a1
- SHA256
  
  662fa40d493959e72ae08074359b47c65c4f2b05cdfae1840e2286272fc08fbc
- SHA512
  
  e58e1d994c5f224536f7383a5ca1c9fb61f53a5c1af3beb210d3a414467cae1fc5199a1eb86b01259dfc9967163647d26c186ff217335d2f71b3b29af2424315
Score

1^/10
behavioral29
- Target
  
  ua_overrides.js
- Size
  
  6KB
- MD5
  
  4fe2a62fb66354db42d6eb9a5516eef3
- SHA1
  
  2740bf3d0021ab8ae892f4daf37379fe8fb19e28
- SHA256
  
  ee2322ebc6470c73e80af071ab7788dfabe69bfc85b59400dd4af69f82a240a4
- SHA512
  
  ca170a7e8789c1d11947d0ad2431d20831eb569e93045f185ab4c5633cb27df88800bfff8482818ede6bd18394d1adaf1f51a11520b8831d1bf692a712bc24d4
- SSDEEP
  
  96:AzhPt51zA5wD8Xjw4Yj9yVlqyaGHentgy7bOmE8LPw8iDXXWmsA9B5D:AzhO5wD8Twc/qyaOenqyfEjzzmml5D
Score

1^/10
behavioral30
- Target
  
  vidible.js
- Size
  
  11KB
- MD5
  
  d7d9c12f96e56468dae9f6fbe018d2a0
- SHA1
  
  e7b82c00386c6832a5cacb1a76afdc7c6a017b3b
- SHA256
  
  08ab7d0cba837216df425b9cd5fd525fb517bfc57074d0a3de9fcd8d8c09dbc9
- SHA512
  
  a610f37fef143c04632644f5e0cc084d2c9f10dd49968ff29c3cace92a548c56f7956268158c61a2b1d58b928a014e8ea06277b688bef812f11efbe48f668a57
- SSDEEP
  
  192:ASPCys6KZtK7IShZHrOSNJ9GeQn/tn6xancb9/9AXSId5w+J12E7lm3NokK7spzm:NPhRwtncFPPc8WyAGkNVhyy8Vk8XOgkL
Score

1^/10
behavioral31
- Target
  
  webtrends.js
- Size
  
  991B
- MD5
  
  d540262c8720a522a669325456c70f76
- SHA1
  
  e5cc5b16a450232e5cf4714451a8781bdecfff12
- SHA256
  
  21d6a84325d9d6f7d8800abe0ef2faa80f6db3b0239c4678f276cb8844979ed3
- SHA512
  
  64047e6b13ad55d5a147f3c4f3f2ce1d55bf747aec4045b311367915e37ef4457b2029886ffde047d5db6957852229ad4e9fc73a8454fa8ce922db700a980a9e
Score

1^/10
behavioral32

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

Loads dropped Dex/Jar

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32