4605743d52d2ffb682496b88cd8d436ce03e878a822eac4b5c52d0d428f24c40

Sharing

Copy URL

Twitter E-mail

General

Target

e965bff3dc95f1138f9f4c7d53abc5ef
Size

901KB
Sample

231222-tln3csgcd8
MD5

e965bff3dc95f1138f9f4c7d53abc5ef
SHA1

d71b801101362bc16bc9b8b861d9336889453e88
SHA256

4605743d52d2ffb682496b88cd8d436ce03e878a822eac4b5c52d0d428f24c40
SHA512

dc171b09d10a835f5e185cd3b7ccd9ea270be093f7da070f1c9e5e6066d6e39ca0a18c6d91b318ce6e1111c6cf44dfd2783a82a6cf89ea9a13a9f323a9163a73
SSDEEP

12288:NrfUW3wknWfVlF9nIda/2fOGkjU/IAaue5lebPSj9641bXj2WLbh0RSM/L1cXzTX:ikWfV1nF2fOGp8OD499I/efX

Score

3^/10

linux

Malware Config

Targets

- Target
  
  ICS_rooting/AdbWinApi.dll
- Size
  
  94KB
- MD5
  
  47a6ee3f186b2c2f5057028906bac0c6
- SHA1
  
  fde9c22a2cfcd5e566cec2e987d942b78a4eeae8
- SHA256
  
  14a51482aa003db79a400f4b15c158397fe6d57ee6606b3d633fa431a7bfdf4b
- SHA512
  
  6a2675de0c445c75f7d5664ebe8f0e2f69c3312c50156161e483927e40235140d5e28e340112ac552d6462366143890a8ce32dbf65bd37e27cb1ea290fe14584
- SSDEEP
  
  1536:npCxybY0FS6MqS6WvgD9xj03TabrFvY5J6sCGt:npo0k6ZWVTaif6sCG
Score

3^/10
behavioral1 behavioral2
- Target
  
  ICS_rooting/AdbWinUsbApi.dll
- Size
  
  59KB
- MD5
  
  5f23f2f936bdfac90bb0a4970ad365cf
- SHA1
  
  12e14244b1a5d04a261759547c3d930547f52fa3
- SHA256
  
  041c6859bb4fc78d3a903dd901298cd1ecfb75b6be0646b74954cd722280a407
- SHA512
  
  49a7769d5e6cb2fda9249039d90465f7a4e612805bba48b7036456a3bbd230e4d13da72e4ade5155ddc08fe460735ec8d6df3bb11b72ff28e1149221e2fc3048
- SSDEEP
  
  768:HLNk0yiFYWkgALpW+QvSugX0wUepQNXTQXdF+Q+An70edrqqOkIW:+yY8wugEwOVEXdz70e4gI
Score

3^/10
behavioral3 behavioral4
- Target
  
  ICS_rooting/adb
- Size
  
  155KB
- MD5
  
  64c4afbab6d2f769ddbb229f0247cf8a
- SHA1
  
  3fc512eb940f5161e6e1cdffecf804a1c5bb7182
- SHA256
  
  c128cf9d02e87bb654f3f346a6d72ac315adae3fbf6e49735072ba73d8f019d7
- SHA512
  
  d1e062b1e60377b6536a8f6e9eabe6d48fda4ec7ea45f6f59a4fa49a790cd9947a6b6daef2536013a781aff816ed765e8ac3b8f83d56209fcc6a1d06a414db62
- SSDEEP
  
  3072:ozd4DoxtgDVMWQsnN+00gYLAae/mpUGpXfQOHfLTBf:ozmMgD+CN+sFfupUGpXfQO/LTB
Score

1^/10
behavioral5
- Target
  
  ICS_rooting/adb.exe
- Size
  
  401KB
- MD5
  
  460bb4216f0a1a4bda6495ffe4576f0c
- SHA1
  
  6829a4ad5091db6ec8788aca5fba63c811d17719
- SHA256
  
  58f1c45975fe19ced68428b1792618adfb950dae1e014fd417b23eb48c7824ce
- SHA512
  
  5899277285544a0f35b11ba329f8d243e9b98a9be7ec134074c00aee0e05f3f4b8b75cdc45f496f92e2f09e4b11b91dde39e4842164a0971bf9f84dd9fb73e18
- SSDEEP
  
  12288:6K+3l/YGz9jWrThlfgbFLwkOUNvhLHsGsrU:CVwXThba
Score

1^/10
behavioral6 behavioral7
- Target
  
  ICS_rooting/fastboot
- Size
  
  54KB
- MD5
  
  0d1f042160f47bb5eb3db5d039670f74
- SHA1
  
  a7762267a608380e7cdc83a0408f8c426e0d3666
- SHA256
  
  9b12f039ee2b7fcf0339dc2be42d87c708adadeff28987c3de91f823f615cd08
- SHA512
  
  ca11bf061a725d55406165c292e243bd93692c951f6d5ce9b9caf87be040a7f1a688d96898a71a3a84d7549e071166272056bfbe62bdc1c9820f367046e7f488
- SSDEEP
  
  768:pYD9JX7wC/TvGBxd4LCRDPJpLKEmnLzrLxca5oBk5ccNUdS5KBeIOrnToIf1:pybyB0LCDPJ1KF/zUdGCeIOrnToIf
Score

1^/10
behavioral8
- Target
  
  ICS_rooting/fastboot.exe
- Size
  
  179KB
- MD5
  
  c7e9609b5deb4f198b53955642bf2cb4
- SHA1
  
  0af812b34c3a0c12824bc823be05a6e2f0dc802d
- SHA256
  
  54acdc5a1a14eac2e34705954aeccf713df22396c839c3310ab6cbe6826b36ef
- SHA512
  
  566e851fc69af8e496148814c02cae71b53a699745f2f247cc07876ea20eee75ca6c3c9e6f1d348c19d1c0ed2a83ccd31290ebd994a66088f2eb592f6852b72a
- SSDEEP
  
  3072:DPR/bV6tuPqQ4dnTBfL2KDpbyIONAfllVQzcJM4LV4IDD:jdbZCTdnTBDfbyL8VQzcJ5LV46D
Score

1^/10
behavioral10 behavioral9
- Target
  
  ICS_rooting/runit-linux.sh
- Size
  
  1KB
- MD5
  
  39151a4030eade1471fd5ab0dbf7f659
- SHA1
  
  a2a2a579f3229669123621437d48c98dc8cd8f36
- SHA256
  
  b99debf3e406bcb2140d2e3e6a9c5428b5bfae34679fd688b215faa96e947381
- SHA512
  
  7666394a4171595ccc459dea1dd72d41170759618dd789c49cb3ae5ef08eff1fc0f9339a277c470cf085da643bbbfb4d8e33e9b2ce2bb1f562ba9ebe5dc0b72b
Score

1^/10
behavioral11 behavioral12 behavioral13 behavioral14
- Target
  
  ICS_rooting/runit-win.bat
- Size
  
  1KB
- MD5
  
  a4970bf3bc94c53312919ebad0337b46
- SHA1
  
  3744e0aa7521b225187303b87a4379bfbf045dcf
- SHA256
  
  ee01fa2b28a8b71c81528d7b1e8d978766cf95b5769a05e9638a25f30d8d8345
- SHA512
  
  5523c18ac78cf3873151fe66c89121223ba54ebb32664e49e5f30ef852ab07a8176b007e9bd8d8c1de54dd42acfd0a63e8974afe329921a03bdb6507a73bec51
Score

1^/10
behavioral15 behavioral16
- Target
  
  ICS_rooting/tools/busybox
- Size
  
  759KB
- MD5
  
  bf9481205a3612034bf1a41585fa2d1d
- SHA1
  
  1a9ad232c90164e9f829b04a515757b73f82d286
- SHA256
  
  5f381ff97a08ac2423a5cde318e62720d6d3a95b17874841fb083e80bbe4e94e
- SHA512
  
  57332b4c8d0dafc0d71cc79adff27175e09c292929110c9c3499225f7a498d8cedad2022fde75450f270b78607af180d46e02a53815bb2fb71634eef29cf9882
- SSDEEP
  
  12288:r94zs0GTTlh1DvyD1XGReNarMeGT2M1x27M4qEWpEE9bZ/wY7wIGh2rxkSShUy/3:rNug6rZZPEYbrgryy/NG4dK5k6NDc
Score

1^/10
behavioral17
- Target
  
  ICS_rooting/tools/busybox.sh
- Size
  
  669B
- MD5
  
  afdaef657236806925c0fa5a1bbcf6eb
- SHA1
  
  45145c33f734436d5c31029803ceb79c5e70fcab
- SHA256
  
  22baf7a49c37cc702a0398cd9be57986b89a30f02f5a306f5cd69c185cfc62fd
- SHA512
  
  b7741779841b68ffd9875966fdf84efb3df6741338feca746a6efd15a5f4921614fc8b475b17cf4f7888bb1bc12f0fccd471a374afa64048ca6a786f6365ed26
Score

1^/10
behavioral18 behavioral19 behavioral20 behavioral21
- Target
  
  ICS_rooting/tools/delroot.sh
- Size
  
  577B
- MD5
  
  1b31a6f8878f16644fba65d5090dd049
- SHA1
  
  3b7e24f4696727a995d53124bf01647196d54360
- SHA256
  
  1f2d3ca6c617ee8d22fc62fa12f2c00f469f8bfdfdd5d208f0fdd6d62cead0da
- SHA512
  
  1c006604310a8a2b6eb22d0779fddb0f9e5eff2df2260aaa5a8dbb5fb215d951090d8c1591ca2f85820dcbb80115d5142bbd64e247861ec41a5fb738f561be4e
Score

3^/10
behavioral22 behavioral23
- Target
  
  ICS_rooting/tools/getroot.sh
- Size
  
  721B
- MD5
  
  93078e0eae3f73f5dbe1a39eb1b0b84d
- SHA1
  
  bf8743ff4d92fb53ba7b1c36c8a8162016900650
- SHA256
  
  9b61b1ed32f7fe17525ac99636b66b68d526ce9108e4cff820e69d27f367e08a
- SHA512
  
  e82a5e4ae2f9473d73239e1c5098d6a35a96e5b96486f4723c59676101d77dc12fa0196dddcd48c3456ed30e90235a45610399e257a887a01a8757f92305f99c
Score

3^/10
behavioral24 behavioral25
- Target
  
  ICS_rooting/tools/mempodroid
- Size
  
  36KB
- MD5
  
  f1e3d0fe15c9463c63d59f3a964f843b
- SHA1
  
  f47f6bbe81db2f50fa3a57bd692a06d860004d12
- SHA256
  
  f1a3863e9c691e5598080fdefa068e54cb246a3967fe6db8bbfe6fc5860ac36d
- SHA512
  
  eb245e44d09558bc4f50ab615f1635f11f6023b4dc7ccfe2b39e5742ae2d0e88cbf5d59bb65b03104133b593209e78e981dbbf4f386f43c35dd0c025541250a4
- SSDEEP
  
  768:VDVsRrMGMNT6kLWPrEgdy1VYALfONqD6ayxP:VJoIgkCPrEgdyqFP
Score

1^/10
behavioral26
- Target
  
  ICS_rooting/tools/mount.sh
- Size
  
  632B
- MD5
  
  38932a5364f333bff9bd561058222a0b
- SHA1
  
  d2cc63fb845264abf19da5b179e84e5c3858b5eb
- SHA256
  
  be226a8e9d07c93f57ab6c669cf75a7bda2693aef6493d9f7f4f24703d8811a4
- SHA512
  
  1d9d4d4dac34071aa696f142d06f8ca1709c5ca6cb0571290e9e055b202429c5c9ef80c8f47dce52a97245d4b76f7dba77781949a194d33d0b2e4b4fc41b922e
Score

1^/10
behavioral27 behavioral28 behavioral29 behavioral30
- Target
  
  ICS_rooting/tools/runit.sh
- Size
  
  75B
- MD5
  
  220d1a6f8171f50ef6f70cdcbbe859cb
- SHA1
  
  1e5ec43fd9b3988704505f7851d7a911ce56ebf2
- SHA256
  
  72388eb76608abc1dd3b1cd3a84742fa1050aa3e110674f8d290b68702e72a3d
- SHA512
  
  d64a259fec1170ac1c4cbea4bb7ac6d01899151a09f22072ecc7633f19f4b1a264bcbac0bacc270c3b2facb9ef45d51828c41f2f608e7f5b9ca846c98424d555
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32