Overview

overview

6

Static

static

6

KingRoot P...ls.dll

windows7-x64

3

KingRoot P...ls.dll

windows10-2004-x64

3

KingRoot P...pi.dll

windows7-x64

3

KingRoot P...pi.dll

windows10-2004-x64

3

KingRoot P...pi.dll

windows7-x64

1

KingRoot P...pi.dll

windows10-2004-x64

3

KingRoot P...db.exe

windows7-x64

1

KingRoot P...db.exe

windows10-2004-x64

1

block

debian-9-armhf

KingRoot P...usybox

debian-9-armhf

1

KingRoot P...il.apk

 

KingRoot P...il.apk

android-10-x64

KingRoot P...il.apk

android-11-x64

KingRoot P...-abuse

debian-9-armhf

KingRoot P...ot.exe

windows7-x64

1

KingRoot P...ot.exe

windows10-2004-x64

1

flood

debian-9-armhf

KingRoot P...ot.bat

windows7-x64

1

KingRoot P...ot.bat

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b1851495db72c2575d3d9a8d2905247b

  • Size

    10.4MB

  • Sample

    231222-q73wvsddfj

  • MD5

    b1851495db72c2575d3d9a8d2905247b

  • SHA1

    ae38732017307799368863f9f8d5e817aaca05c7

  • SHA256

    4a535a8d28c96abbffe577b8fbe42eb2ff578e86ad52e82d3a32614ff70e3579

  • SHA512

    e9a944ba0a3e0d6d30d399eca83750a18bc6b19508eefe5be286797786cc4c5d933fbeee3201a530aac762999c1711e10a3eada1b0f70d8321c5f53228d263b8

  • SSDEEP

    196608:B1y/J6oQ7q5ZHxilncaWoZ49LZk286LHXpdmIN0KMZ17IXwVKln592p//xBKRhhI:B1y/Jm7q5ZRunYk2zHXpYg0nEgun592D

Score
6/10
android

Malware Config

Targets

    • Target

      KingRoot PC 1.5Beta/AdbTools.dll

    • Size

      91KB

    • MD5

      e891fe703e421cf0fab45daa66b6addc

    • SHA1

      fcd00a0868ac4a87f8fcc3a969f4a6943e5c63b5

    • SHA256

      49fe4dbfdafcb66c1692682ebc98fef9be76fc96f521b3c44b79a92a6faf14b2

    • SHA512

      f3d6ee39aad2d39d1d8de2fd985581688f51bff34584510b9ba181c645c1a2aff7ad07e3b08e61f04e2bae7fbfa63ca476999330778c2ea52f09bc1e3bea49fd

    • SSDEEP

      1536:DatWuNePW9HgGs3m67E+J3nOyOjPar1iTnLB4D3Ku:U39HiZnOapiB4D3Ku

    Score
    3/10
    behavioral1behavioral2

    • Target

      KingRoot PC 1.5Beta/AdbWinApi.dll

    • Size

      94KB

    • MD5

      47a6ee3f186b2c2f5057028906bac0c6

    • SHA1

      fde9c22a2cfcd5e566cec2e987d942b78a4eeae8

    • SHA256

      14a51482aa003db79a400f4b15c158397fe6d57ee6606b3d633fa431a7bfdf4b

    • SHA512

      6a2675de0c445c75f7d5664ebe8f0e2f69c3312c50156161e483927e40235140d5e28e340112ac552d6462366143890a8ce32dbf65bd37e27cb1ea290fe14584

    • SSDEEP

      1536:npCxybY0FS6MqS6WvgD9xj03TabrFvY5J6sCGt:npo0k6ZWVTaif6sCG

    Score
    3/10
    behavioral3behavioral4

    • Target

      KingRoot PC 1.5Beta/AdbWinUsbApi.dll

    • Size

      59KB

    • MD5

      5f23f2f936bdfac90bb0a4970ad365cf

    • SHA1

      12e14244b1a5d04a261759547c3d930547f52fa3

    • SHA256

      041c6859bb4fc78d3a903dd901298cd1ecfb75b6be0646b74954cd722280a407

    • SHA512

      49a7769d5e6cb2fda9249039d90465f7a4e612805bba48b7036456a3bbd230e4d13da72e4ade5155ddc08fe460735ec8d6df3bb11b72ff28e1149221e2fc3048

    • SSDEEP

      768:HLNk0yiFYWkgALpW+QvSugX0wUepQNXTQXdF+Q+An70edrqqOkIW:+yY8wugEwOVEXdz70e4gI

    Score
    3/10
    behavioral5behavioral6

    • Target

      KingRoot PC 1.5Beta/adb.exe

    • Size

      490KB

    • MD5

      29ef026442465d5d2f95d683b09ee954

    • SHA1

      4fdc18467718b4de00d462aaa022a2e2dbc476dc

    • SHA256

      88b61637d582d7238242f2dd58c06100eb6253ef3e0d6385a5987bb0faf0093e

    • SHA512

      82db4275eb9c727109f94417ad7094b1a72e1473d66b5c096becbc037a1ef27583a08a43a42c382bf136a6c605ce22671f5a88b1702c449b2790b594a9aff8b4

    • SSDEEP

      12288:TQ/LOSlKaQO2fapUGps/ThglcZwjlUMIz+3hWLob5Lsq/JwnsA:KdJGThgGZQWc2qy

    Score
    1/10
    behavioral7behavioral8

    • Target

      block

    • Size

      4KB

    • MD5

      46a72d094d1547e888947fccad7d8164

    • SHA1

      ec56f0788f5481f4930c9dbbecc3d8cba9250775

    • SHA256

      04929f940440ba3b03535afc6a098fd57fa42f3a7f7d2c8cb6337209b953cee2

    • SHA512

      7978c70126b7bbcfb09aeb60c85ed581944ad8d4d5af40800c39dde60984a8e1c646b72798210b04fb49d605069abf54a08c5b2ac3235d88344091730d981c80

    • SSDEEP

      48:oGVtlmPfsgoneeNQFnaUvUbNryiNG72cwlpi8B/m3J/cM3gjEqb61zUIz/PB1iKR:oGVGR8Q9UbNrEMjO5/cM3+Lbyld1iu

    Score
    1/10
    behavioral9

    • Target

      KingRoot PC 1.5Beta/busybox

    • Size

      1.8MB

    • MD5

      5ea6873c7887cf31aac0bcafb10d7680

    • SHA1

      2c379b0f373f55fd44e1c8c4802a8d1b049fe2e8

    • SHA256

      7c88dcbc170c966c8fa763c8996ad3e6f92316794f2e260454c3cec517482922

    • SHA512

      25ee92284812284abcb6fb1bb0a71c3b942bdc2f863fe727b3aa4fa211bb2ddb3c95a929a44d3b5c101e91e8317e2c40867cd87483af787aa0117773f6589c15

    • SSDEEP

      24576:8kJJEb/l5CH6s0S5+qls8FVDgSOA1RSLakp2mNsh0xAJLhtwN5oOOKSYt7e7uUBG:1WWk2NqaK2y75divByRhkb

    Score
    1/10
    behavioral10

    • Target

      KingRoot PC 1.5Beta/evil.apk

    • Size

      551KB

    • MD5

      f38634c37af098caddc224903d58ba6f

    • SHA1

      e0dcbdb9ac880acd66652650a2a35633a9ff43f4

    • SHA256

      fd765db39a15909291348f02d046fe6499abb049061ef9103b03fd70ad5ece50

    • SHA512

      09d5d9f811e33c0e870c522c312c17759456a86bf1466698cc5c0eb3c660308282667fb5ffeab08db44121953cb3b61bb7c427ad6cb26e89ca7f7b6a78cf2445

    • SSDEEP

      12288:Ign4rIU6Q/S+3f7ddm7uFMYIBLsdGtreILDw4UwawRUC6y/Y3KqrsDO6A:rn4rIU6Q/nzPmOMYKwdaqILDwGZ36yzw

    Score
    1/10
    behavioral11behavioral12behavioral13

    • Target

      KingRoot PC 1.5Beta/exynos-abuse

    • Size

      5KB

    • MD5

      8ba3889bf5d4420e945e0ad463bb78ff

    • SHA1

      8e9582af040be8f9e6bbd3802459b57885f71a37

    • SHA256

      90500eb7e9d31816f5295dcff54c417cd029919e6c09ca4764ca664218aac435

    • SHA512

      6aea2a3b6fb35fe16423bafc04f9f154bba102977aa82012a3d9db874ef5024fd4b74eac48483ae42e775e6ecb4ad9e36cfc7e990e477b4c9de512a6a0d453cb

    • SSDEEP

      48:/Fw8WqtLjJ5o9uXk/HMnHYGKiigl0jfHuy0gQjqZHrNO9EUaj6zMS/j1+bU:Mo0crXipR0gxpKg6gS/j1+bU

    Score
    1/10
    behavioral14

    • Target

      KingRoot PC 1.5Beta/fastboot.exe

    • Size

      968KB

    • MD5

      6bbf05d97585c3c515bdb172eb9e7d12

    • SHA1

      956c7805ae936441c235ae20fb6b896dc3823cf1

    • SHA256

      2142ba46552f3bd5b5e82809b03176204739873a2caf9ce96ebfd5969327c12a

    • SHA512

      c8582367c0dde5c5f1f7ccde8c589c75dbbb65988dc8af512ad68583af11959c3eda9c360a81abcd47da55dffd1ab6e874727c8dcacf9f6fa477fca209ef6add

    • SSDEEP

      12288:saLTmAZ/POJEwIEAEt4iC1sngobywagl31jysLa894:sYTZVnEt4iCkgafysLa8q

    Score
    1/10
    behavioral15behavioral16

    • Target

      flood

    • Size

      5KB

    • MD5

      6c415a45061ee66a15dc2e2eec242875

    • SHA1

      ffd9f511c13d17af97e7eea551d90a8d08bf014c

    • SHA256

      2a333864c57b03610f0243ba8795e50bd17736feb0515e5eaeefe1d660370c7e

    • SHA512

      9461448d82560ef49ac85fba8ec8a1ea42abbde7ca18481a515176449a85def590c412239203d86a8c2dc16766fbf7f388843dc7b9e6dd36c9489c406822ce74

    • SSDEEP

      96:hGsXW50GOsFqys+kK90261wGNnOJ/qEUiHfrZYgx:nXvi9anOzrZYy

    Score
    1/10
    behavioral17

    • Target

      KingRoot PC 1.5Beta/install-root.bat

    • Size

      255B

    • MD5

      b4c8c9780429b6e66875849b7f9bfaca

    • SHA1

      23bb0fc1ea3de918789c95d98efa563571633b35

    • SHA256

      8a9846b37e85e0cae2a450e020d4019f6d92110f6f6712afd1238127eb96e400

    • SHA512

      7020379fac2435caeda41a5f27865cb36f38681a564dfb284c99a48f3e0bc697b8fe41f60bbe3eca1e134d05d39e443ccafef4e5d6559c8e0a267805ddd5c849

    Score
    1/10
    behavioral18behavioral19

MITRE ATT&CK Matrix

Tasks