General
-
Target
848823d6ad03a6ec96034178a30f79ca8149aea7d65488f59a3d59869bcbc799
-
Size
27.8MB
-
Sample
231223-ysk2haffdm
-
MD5
cfe6cfc93bf9f6512d82a99981c6e17c
-
SHA1
0d3cf29e639dc8731030fd5f27ac9a5df0753859
-
SHA256
848823d6ad03a6ec96034178a30f79ca8149aea7d65488f59a3d59869bcbc799
-
SHA512
bb8a2adf01bf572471b2e70afc26793d4a2934470b259ab81096713930adc5ac4e5af1ba90d063b742b6938d716e5fdc19230f32d3ad32c3179537ecdd777b62
-
SSDEEP
786432:qd/hgDYyL8iLMvXOgZkOrIPw3rvbrBxC77Fp:qd/hqgiIfJkInrB2p
Malware Config
Targets
-
-
Target
848823d6ad03a6ec96034178a30f79ca8149aea7d65488f59a3d59869bcbc799
-
Size
27.8MB
-
MD5
cfe6cfc93bf9f6512d82a99981c6e17c
-
SHA1
0d3cf29e639dc8731030fd5f27ac9a5df0753859
-
SHA256
848823d6ad03a6ec96034178a30f79ca8149aea7d65488f59a3d59869bcbc799
-
SHA512
bb8a2adf01bf572471b2e70afc26793d4a2934470b259ab81096713930adc5ac4e5af1ba90d063b742b6938d716e5fdc19230f32d3ad32c3179537ecdd777b62
-
SSDEEP
786432:qd/hgDYyL8iLMvXOgZkOrIPw3rvbrBxC77Fp:qd/hqgiIfJkInrB2p
Score8/10-
Requests cell location
Uses Android APIs to to get current cell location.
-
Checks known Qemu files.
Checks for known Qemu files that exist on Android virtual device images.
-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-
-
-
Target
gdtadv2.jar
-
Size
1.2MB
-
MD5
2d2dc470380474233744d9caebadd45c
-
SHA1
706f9396ea77c9376889fa44c6dac1dc43945ade
-
SHA256
f1b5383603c37ff1f91f5f2bb39b85a510b16a073b56624a72456276cd027afc
-
SHA512
a538ee7f3f20a98258d5ab91bf3d54939dc11e4fd3d0423757503d6070f36f11a2a253655e9e1fcdb38f63b7109c9626dc7a2fa32d72d1aadf30b93c98d09e3c
-
SSDEEP
24576:OlEwzyhih4gka8GZW5N7jrIT9zlNWv1N/nd2ZjPZpw/:OukRk/2QHqlNKD/ndmjPbw/
Score1/10 -