Resubmissions

03-02-2024 23:50

240203-3vjzfacff5 10

03-02-2024 22:00

240203-1wnynsbad4 10

General

  • Target

    861035d786e4ba1ec206fcb22abf18e682b3c8481475e38fee54757fe8481c3b.bin

  • Size

    2.0MB

  • Sample

    240203-1wnynsbad4

  • MD5

    7913e9cd5a581f61748f528242595843

  • SHA1

    6b46d917515c50d5d658bc7f73dd408a7c77eec7

  • SHA256

    861035d786e4ba1ec206fcb22abf18e682b3c8481475e38fee54757fe8481c3b

  • SHA512

    379617b6e340052a4148e27ea4ac606e105e44179b7d367e922463b853e8c86217de53c208295e3ea4c7f5eca4eee200094de9edab1d8cc5d1703bf4e16d7af2

  • SSDEEP

    49152:8dLFSkaUlfhR7hQsgeHqGQfRIycGDIvdrGe:8dLFVhTqGQfiRGDab

Malware Config

Targets

    • Target

      861035d786e4ba1ec206fcb22abf18e682b3c8481475e38fee54757fe8481c3b.bin

    • Size

      2.0MB

    • MD5

      7913e9cd5a581f61748f528242595843

    • SHA1

      6b46d917515c50d5d658bc7f73dd408a7c77eec7

    • SHA256

      861035d786e4ba1ec206fcb22abf18e682b3c8481475e38fee54757fe8481c3b

    • SHA512

      379617b6e340052a4148e27ea4ac606e105e44179b7d367e922463b853e8c86217de53c208295e3ea4c7f5eca4eee200094de9edab1d8cc5d1703bf4e16d7af2

    • SSDEEP

      49152:8dLFSkaUlfhR7hQsgeHqGQfRIycGDIvdrGe:8dLFVhTqGQfiRGDab

    • Ermac

      An Android banking trojan first seen in July 2021.

    • Ermac2 payload

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

MITRE ATT&CK Matrix

Tasks