spynote | 25429c0b0330a1a7523654de83f2444309e91141df4efe4a82c061e7b0dafe12 | Triage

Sharing

General

Target

25429c0b0330a1a7523654de83f2444309e91141df4efe4a82c061e7b0dafe12.bin
Size

750KB
Sample

240301-1y5n7sec36
MD5

7a9567d27e41ffab2b5a4f0f8ff3c5de
SHA1

61f001a9ceb1a8bc1e19ce5e94d2f2711830952b
SHA256

25429c0b0330a1a7523654de83f2444309e91141df4efe4a82c061e7b0dafe12
SHA512

14f83a0a7a936b6a22021f9836c3596dcc34ffcf0279830358a81793b3de44c06023d77276a248323ca72a15512488a206b485980629c1e528029d01709a7fe3
SSDEEP

12288:Q8eJ6sgRALz8wKWkfI5WmpYshXZPbGwidNpgV:Q7J6s7Lz87WkfI5WmD9idNpq

Score

10^/10

spynote android banker discovery privilege_escalation

Malware Config

Extracted

Family

spynote

C2

192.168.1.3:7799

Targets

- Target
  
  25429c0b0330a1a7523654de83f2444309e91141df4efe4a82c061e7b0dafe12.bin
- Size
  
  750KB
- MD5
  
  7a9567d27e41ffab2b5a4f0f8ff3c5de
- SHA1
  
  61f001a9ceb1a8bc1e19ce5e94d2f2711830952b
- SHA256
  
  25429c0b0330a1a7523654de83f2444309e91141df4efe4a82c061e7b0dafe12
- SHA512
  
  14f83a0a7a936b6a22021f9836c3596dcc34ffcf0279830358a81793b3de44c06023d77276a248323ca72a15512488a206b485980629c1e528029d01709a7fe3
- SSDEEP
  
  12288:Q8eJ6sgRALz8wKWkfI5WmpYshXZPbGwidNpgV:Q7J6s7Lz87WkfI5WmD9idNpq
Score

8^/10

banker discovery privilege_escalation
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Requests enabling of the accessibility settings.
- Tries to add a device administrator.
  privilege_escalation
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Device Administrator Permissions

Defense Evasion

Credential Access

Discovery

Software Discovery

Security Software Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bankerdiscoveryprivilege_escalation

behavioral2

bankerdiscovery

behavioral3

bankerdiscoveryprivilege_escalation