hxxps://myausgovreviewme-portal[.]icu/ato[.]aus/

Analysis

max time kernel
324852s
max time network
157s
platform
android_x64
resource
android-x64-arm64-20231023-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231023-enlocale:en-usos:android-11-x64system
submitted
28-11-2023 00:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://myausgovreviewme-portal.icu/ato.aus/

Score

6^/10

evasion

Malware Config

Signatures

Legitimate hosting services abused for malware hosting/C2 1 TTPs

Web Service
T1102

Removes a system notification. 1 IoCs

evasion

description	ioc	Process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	com.android.chrome

com.android.chrome
1⤵
- Removes a system notification.
PID:4255

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

files/dom-0.html

Filesize
2KB

MD5
36bda1bb62c34bf4c413eccc433dd1cc

SHA1
05a7a8917c5eacf1db6c84dfce92b09fc5e44a79

SHA256
78093f9ff640509af480c01c591c91641d002992e5210613670f5a855995fcbc

SHA512
f5b6f5945b9caccc1240f0fe59215a3f888e5b3b501e12a1a4cce4ff0010694c0630c1b43a0cb77e16ed29a77f497bebc261d90bc9f25eede60ad82bfb94578f

Download Submit