3fea065a89506058365138e1b1dd571f5e07e8b884eab6f9e0fbc22904c63f25 | Triage

Resubmissions

31/12/2023, 16:42

231231-t72wcaagaj 7

Sharing

Copy URL Twitter E-mail

General

Target

app-release (1).apk
Size

10.0MB
Sample

231231-t72wcaagaj
MD5

0151796d81fdf0b2552222507483c75c
SHA1

c2a4cd8f5d662d8e96354ee725583c67ee36fa64
SHA256

3fea065a89506058365138e1b1dd571f5e07e8b884eab6f9e0fbc22904c63f25
SHA512

329ab81a120942ca14477711c36c32f8adff1e7b78e792821cf6a37493f8b134cb7fc3b1d4e6681da831745ce35f62960edc83be19d6ef29aeb5cac33bfc21e6
SSDEEP

196608:yuQr+jI56mPHoQ/9vSMH7tPEclkixoI6dzrFZQ9kF0Wng:v3IsmPHom9BPEclkixozdvF16

Score

7^/10

android evasion

Malware Config

Targets

- Target
  
  app-release (1).apk
- Size
  
  10.0MB
- MD5
  
  0151796d81fdf0b2552222507483c75c
- SHA1
  
  c2a4cd8f5d662d8e96354ee725583c67ee36fa64
- SHA256
  
  3fea065a89506058365138e1b1dd571f5e07e8b884eab6f9e0fbc22904c63f25
- SHA512
  
  329ab81a120942ca14477711c36c32f8adff1e7b78e792821cf6a37493f8b134cb7fc3b1d4e6681da831745ce35f62960edc83be19d6ef29aeb5cac33bfc21e6
- SSDEEP
  
  196608:yuQr+jI56mPHoQ/9vSMH7tPEclkixoI6dzrFZQ9kF0Wng:v3IsmPHom9BPEclkixozdvF16
Score

7^/10

evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Acquires the wake lock
- Legitimate hosting services abused for malware hosting/C2
- Reads information about phone network operator.
- Checks the presence of a debugger
  evasion
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3