smsfactory | ad08554810550ce742d368ed96eb3518cd1cb7f4716a4804e23751da96b5ddaf | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

ad08554810...af.apk

ad08554810...af.apk

android-10-x64

6

ad08554810...af.apk

android-11-x64

Sharing

General

Target

ad08554810550ce742d368ed96eb3518cd1cb7f4716a4804e23751da96b5ddaf
Size

5.0MB
Sample

231220-nvg3hsefbk
MD5

21dfcc7b403f37c01e0aad40d28ae0e1
SHA1

faaa286a3e5f1412a31c09f00936630ce2492774
SHA256

ad08554810550ce742d368ed96eb3518cd1cb7f4716a4804e23751da96b5ddaf
SHA512

0dbbb9653e9f4c5f2c95b7331ba5c973acfae35dec9904ecb3019f21d07bfc5e2ea54c75e0f73a3110d29d906e0cc2bc51ba7d71032ce50e6c4535c69a9a4b04
SSDEEP

98304:G5K+nqxBnwnuq9w9KEwp5+cOe7ggq2GQ82vH21cS1HcQuQSiQBJMqGSqfODZa1iM:8awnuHwp5TTqoO1cmHcR3MrcF4L0e

Score

10^/10

smsfactory android infostealer trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

ad08554810550ce742d368ed96eb3518cd1cb7f4716a4804e23751da96b5ddaf.apk

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

ad08554810550ce742d368ed96eb3518cd1cb7f4716a4804e23751da96b5ddaf.apk

Resource

android-x64-20231215-en

android-10-x64

3 signatures

150 seconds

Behavioral task

behavioral3

Sample

ad08554810550ce742d368ed96eb3518cd1cb7f4716a4804e23751da96b5ddaf.apk

Resource

android-x64-arm64-20231215-en

smsfactory infostealer trojan

android-11-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

smsfactory

C2

http://smartlink.mobilelinks.xyz

Targets

- Target
  
  ad08554810550ce742d368ed96eb3518cd1cb7f4716a4804e23751da96b5ddaf
- Size
  
  5.0MB
- MD5
  
  21dfcc7b403f37c01e0aad40d28ae0e1
- SHA1
  
  faaa286a3e5f1412a31c09f00936630ce2492774
- SHA256
  
  ad08554810550ce742d368ed96eb3518cd1cb7f4716a4804e23751da96b5ddaf
- SHA512
  
  0dbbb9653e9f4c5f2c95b7331ba5c973acfae35dec9904ecb3019f21d07bfc5e2ea54c75e0f73a3110d29d906e0cc2bc51ba7d71032ce50e6c4535c69a9a4b04
- SSDEEP
  
  98304:G5K+nqxBnwnuq9w9KEwp5+cOe7ggq2GQ82vH21cS1HcQuQSiQBJMqGSqfODZa1iM:8awnuHwp5TTqoO1cmHcR3MrcF4L0e
Score

10^/10

smsfactory infostealer trojan
- SMSFactory
  SMSFactory is an Android SMS trojan malware first seen in Jun 2022.
  trojan infostealer smsfactory
- Acquires the wake lock
- Reads information about phone network operator.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3

smsfactoryinfostealertrojan

© 2018-2025

Terms | Privacy