General
-
Target
5912b7b31d751ed3a87951fca9cf61a8
-
Size
7.3MB
-
Sample
231219-tly8bsbgbr
-
MD5
5912b7b31d751ed3a87951fca9cf61a8
-
SHA1
d1e7d5cc6e9fd661e0eb7d622a7a2c2e54233df2
-
SHA256
da42f05d9c4be0338b0677a3ae35f38522c88cd6c946beb04c73c5d212354888
-
SHA512
9a9e674f2b18600b54fa7f4c8850a973440ea143ec8f7027871268fc5d7a800dd131cae05aedec90c82b43294cf67c438c4e97ad41a6c90f56db5000877925dd
-
SSDEEP
196608:saWxZl0hZ2HABo+Yi6X45kyZacuJRq6ee0l6xAVS9:sF90hZ2HAgi6QZZaXbAll6z9
Malware Config
Targets
-
-
Target
5912b7b31d751ed3a87951fca9cf61a8
-
Size
7.3MB
-
MD5
5912b7b31d751ed3a87951fca9cf61a8
-
SHA1
d1e7d5cc6e9fd661e0eb7d622a7a2c2e54233df2
-
SHA256
da42f05d9c4be0338b0677a3ae35f38522c88cd6c946beb04c73c5d212354888
-
SHA512
9a9e674f2b18600b54fa7f4c8850a973440ea143ec8f7027871268fc5d7a800dd131cae05aedec90c82b43294cf67c438c4e97ad41a6c90f56db5000877925dd
-
SSDEEP
196608:saWxZl0hZ2HABo+Yi6X45kyZacuJRq6ee0l6xAVS9:sF90hZ2HAgi6QZZaXbAll6z9
Score8/10-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Requests cell location
Uses Android APIs to to get current cell location.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Reads information about phone network operator.
-
-
-
Target
sdk.jar
-
Size
287KB
-
MD5
740f07ad36842221845000c5ee6c664d
-
SHA1
6a538af3af93874b6e190e07a15012e622076cdc
-
SHA256
7dc44f4f3c9a97b1776fe2cb53b6e09890267fa50e15c265af8e72c6171bbfc2
-
SHA512
b75cb5b6715dda8993dec823895e01438df90df23ede344337122c197e4ae644357c15693bf8ae28ee66620ba3064b9e18849966275b289c21b149772e396504
-
SSDEEP
6144:O6jP1lqsnvNS2dOydtE2npVkV68hq/mI36vhgIjN0q0AojgvDFkDe:Ou1lqalS2dRtF+68Y/YhOqCaDFT
Score1/10 -