Overview

overview

10

Static

static

10

app-release-1.apk

android-9-x86

10

app-release-1.apk

android-10-x64

10

app-release-1.apk

android-11-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    app-release-1.apk

  • Size

    1.1MB

  • Sample

    240220-rxyd3ahf41

  • MD5

    1cd342f1997e96a6a4dec368829e5c4a

  • SHA1

    2cd526ac9e309e58a0c912c96811328574f5d530

  • SHA256

    a20b0e36403da3938aa676fa16f6df5b22e88780885ad27334a2dd6235defde3

  • SHA512

    ecd8a1915751a43d7b4b5b5518a7f3757c7dfb4370108cc11f7bbdf1fc9ae4e3d807f99600fcfaab5f760c22338ebc8a41dec445a40b22ee719e33010682c982

  • SSDEEP

    12288:YwtL9wW7yqrNoM1gMJcNizhRelhMffcNKSRRQ6ZCUbu+Cn1Zop31ySFEBYgA4qDg:YwQMmM1oi2ONSR34UU/ojy7Yg/2yGWR

Score
10/10
ermachookandroidinfostealerrattrojan

Malware Config

Extracted

Family

hook

AES_key

Targets

    • Target

      app-release-1.apk

    • Size

      1.1MB

    • MD5

      1cd342f1997e96a6a4dec368829e5c4a

    • SHA1

      2cd526ac9e309e58a0c912c96811328574f5d530

    • SHA256

      a20b0e36403da3938aa676fa16f6df5b22e88780885ad27334a2dd6235defde3

    • SHA512

      ecd8a1915751a43d7b4b5b5518a7f3757c7dfb4370108cc11f7bbdf1fc9ae4e3d807f99600fcfaab5f760c22338ebc8a41dec445a40b22ee719e33010682c982

    • SSDEEP

      12288:YwtL9wW7yqrNoM1gMJcNizhRelhMffcNKSRRQ6ZCUbu+Cn1Zop31ySFEBYgA4qDg:YwQMmM1oi2ONSR34UU/ojy7Yg/2yGWR

    Score
    10/10
    hookinfostealerrattrojan

    • Hook

      Hook is an Android malware that is based on Ermac with RAT capabilities.

      rattrojaninfostealerhook

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

    • Requests enabling of the accessibility settings.

    • Acquires the wake lock

    • Reads information about phone network operator.

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks