Overview

overview

8

Static

static

6

37a5b90e0b...26.apk

android-9-x86

8

cast-receiver.apk

android-9-x86

1

dyload-booter.apk

android-9-x86

1

dyload-booter.apk

 

dyload-booter.apk

 

Sharing

Copy URL
Twitter E-mail

General

  • Target

    37a5b90e0ba8e549a94b50f3e5ca3026

  • Size

    27.5MB

  • Sample

    231231-qjrtpacac7

  • MD5

    37a5b90e0ba8e549a94b50f3e5ca3026

  • SHA1

    21d4239eb248078a31fc4a48989ecac6ee2c1c87

  • SHA256

    2e3f93947e886241ddfc5b98e58a792a677a65480feced3271bf6fe23b5e942a

  • SHA512

    e6463e14f0ba0a42168c3823391ec6348649f172911c312e974cff860b52c6bb7fdd732641c5c4ef1cddf2de1a5312d54f6e340ca4beb21d803997c4d58986a2

  • SSDEEP

    786432:tcjuiKwyJOmgm+GPKBeTegGn2MrSRe3mrgd:mdfUKIener4

Score
8/10
androidbanker

Malware Config

Targets

    • Target

      37a5b90e0ba8e549a94b50f3e5ca3026

    • Size

      27.5MB

    • MD5

      37a5b90e0ba8e549a94b50f3e5ca3026

    • SHA1

      21d4239eb248078a31fc4a48989ecac6ee2c1c87

    • SHA256

      2e3f93947e886241ddfc5b98e58a792a677a65480feced3271bf6fe23b5e942a

    • SHA512

      e6463e14f0ba0a42168c3823391ec6348649f172911c312e974cff860b52c6bb7fdd732641c5c4ef1cddf2de1a5312d54f6e340ca4beb21d803997c4d58986a2

    • SSDEEP

      786432:tcjuiKwyJOmgm+GPKBeTegGn2MrSRe3mrgd:mdfUKIener4

    Score
    8/10
    banker

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

      banker

    • Requests cell location

      Uses Android APIs to to get current cell location.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    behavioral1

    • Target

      cast-receiver.apk

    • Size

      8.6MB

    • MD5

      a72257733911a4c7e54d113c5df5bf20

    • SHA1

      684cb27ed5d1cdf30809ed7370a8f3a57b95eb7f

    • SHA256

      f1d89ad3ed9ea15a675ee27748cd7eb9f91486750145c72e062f9594fc90fd9d

    • SHA512

      3ac8e8dd0b2cf561ff3b2078bbb3bcec69f659aae15dd56b8d0719e80dd352ddab06bc8ff348e2f460e40f00c44a7df8cb386c3c4660185802540cb9931ce3df

    • SSDEEP

      196608:yrxT04BzU/0CHMC3hVcS6UGWunuEu+ujGdPbbhnZM91ySa:mxIgzy6qjcrb3ayt

    Score
    1/10
    behavioral2

    • Target

      dyload-booter.apk

    • Size

      252KB

    • MD5

      4890d71222f28f32e16a79d9ed80fe91

    • SHA1

      bd735a2c67167ede1b70cb9380fd332c8f37c489

    • SHA256

      7ed7a23613d2d70a77eacaa70c565310f0d03e11772f1fa2de4e39e7f042816f

    • SHA512

      cdfe837703c2707fde88734af790c6b7cde1ca5df20ce286ffbfb8936555ed40ac0d7f038212266a5e62d7cf576abec821beb187b575748ffb896a77c8b2e8d5

    • SSDEEP

      6144:R6QadQdMKbmT3VtrlyRgqkvyWABraltZzxjHHozlx0Rgl/Mtc:RtUOmT3VtRyZItpZNjKz0Rgl/Mm

    Score
    1/10
    behavioral3behavioral4behavioral5

MITRE ATT&CK Matrix

Tasks