General
-
Target
83380ae57698d2b13e0773969c68e2ea32d02ff1955be0f865cfaace62cf1917
-
Size
6.9MB
-
Sample
231220-eta35sefb8
-
MD5
09c03c318ab6a1b5f201f81480de022f
-
SHA1
01b01d29b8b62e8152438740f8956c8a0ab730a4
-
SHA256
83380ae57698d2b13e0773969c68e2ea32d02ff1955be0f865cfaace62cf1917
-
SHA512
52ae7f63a3b91fc681f77aad31e2cde23c916394c77c354c0913ec32415847887dad8e16069a6d1036aa3c678e23922cef2d76ef6feb10b70458af6534827ce9
-
SSDEEP
196608:GM6ePkMV3JKPaCalpxnz2A55eHKMeW2aNyeyrMhGyNL:GM5Pp5KSCaNnz9aK8G2L
Static task
static1
Behavioral task
behavioral1
Sample
83380ae57698d2b13e0773969c68e2ea32d02ff1955be0f865cfaace62cf1917.apk
Resource
android-x86-arm-20231215-en
Behavioral task
behavioral2
Sample
83380ae57698d2b13e0773969c68e2ea32d02ff1955be0f865cfaace62cf1917.apk
Resource
android-x64-20231215-en
Behavioral task
behavioral3
Sample
83380ae57698d2b13e0773969c68e2ea32d02ff1955be0f865cfaace62cf1917.apk
Resource
android-x64-arm64-20231215-en
Malware Config
Targets
-
-
Target
83380ae57698d2b13e0773969c68e2ea32d02ff1955be0f865cfaace62cf1917
-
Size
6.9MB
-
MD5
09c03c318ab6a1b5f201f81480de022f
-
SHA1
01b01d29b8b62e8152438740f8956c8a0ab730a4
-
SHA256
83380ae57698d2b13e0773969c68e2ea32d02ff1955be0f865cfaace62cf1917
-
SHA512
52ae7f63a3b91fc681f77aad31e2cde23c916394c77c354c0913ec32415847887dad8e16069a6d1036aa3c678e23922cef2d76ef6feb10b70458af6534827ce9
-
SSDEEP
196608:GM6ePkMV3JKPaCalpxnz2A55eHKMeW2aNyeyrMhGyNL:GM5Pp5KSCaNnz9aK8G2L
Score10/10-
Hydra payload
-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Reads information about phone network operator.
-