Overview

overview

10

Static

static

10

ac0901c064...e8.apk

 

ac0901c064...e8.apk

android-10-x64

8

ac0901c064...e8.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ac0901c064a1a2af46cd8a63e68b57cb425189f7ab9d701012cbfb38f9dbc0e8

  • Size

    25.7MB

  • Sample

    231220-np4z4ahdb2

  • MD5

    51784151519f7714f3e0c5111319f35d

  • SHA1

    5c971466a44fed4ea9d0189c775102d6c6654b8e

  • SHA256

    ac0901c064a1a2af46cd8a63e68b57cb425189f7ab9d701012cbfb38f9dbc0e8

  • SHA512

    9995c7ef3cf2a3ab1bd4881848a5fee41c2b9db35acd9aef9b2e015c78453d83fa154b12d4c16e2f49ba4712869fc52814719daeda6f60fee6f7b8e03719f8bc

  • SSDEEP

    393216:u+xO+EyDlkDkXRVLwLnBAS5kZL4XOaqjP13NNV89K5AI1SZG069RzDq:uR5yBkkR9ytqjN3PuaP1yuq

Score
10/10
spynoteandroidbanker

Malware Config

Extracted

Family

spynote

C2

194.5.206.181:5214

Targets

    • Target

      ac0901c064a1a2af46cd8a63e68b57cb425189f7ab9d701012cbfb38f9dbc0e8

    • Size

      25.7MB

    • MD5

      51784151519f7714f3e0c5111319f35d

    • SHA1

      5c971466a44fed4ea9d0189c775102d6c6654b8e

    • SHA256

      ac0901c064a1a2af46cd8a63e68b57cb425189f7ab9d701012cbfb38f9dbc0e8

    • SHA512

      9995c7ef3cf2a3ab1bd4881848a5fee41c2b9db35acd9aef9b2e015c78453d83fa154b12d4c16e2f49ba4712869fc52814719daeda6f60fee6f7b8e03719f8bc

    • SSDEEP

      393216:u+xO+EyDlkDkXRVLwLnBAS5kZL4XOaqjP13NNV89K5AI1SZG069RzDq:uR5yBkkR9ytqjN3PuaP1yuq

    Score
    8/10
    banker

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

      banker

    • Requests dangerous framework permissions

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks