ffd58b50ece9b6aaac4fcacb5e57ef3af4bffd10a3bb917ab10f974ba5152f23

Analysis

max time kernel
154s
max time network
165s
platform
android_x64
resource
android-x64-arm64-20240221-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system
submitted
10/03/2024, 22:06

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ffd58b50ece9b6aaac4fcacb5e57ef3af4bffd10a3bb917ab10f974ba5152f23.apk
Size

544KB
MD5

7c00cb41bbd9850ac19ffc62582b3fa0
SHA1

d71fd9cc0fdeaa8acee1eefd9c316a61bd222369
SHA256

ffd58b50ece9b6aaac4fcacb5e57ef3af4bffd10a3bb917ab10f974ba5152f23
SHA512

bfe2b3daafb9f4a1bb1afa03aad7e3002972709b45fb5d635d82aa6240ca8393edbfb0bd6fea9bfebb62031fab19c0cebd22c72c72be47e16f1b360c6bb8193c
SSDEEP

12288:MKMF4hVSle9lDVHaStgsefo+5SoDxFNRMeeBs+86nFsne:0F4hVSle9lsscoNoBRMty+8qT

Score

7^/10

privilege_escalation

Malware Config

Signatures

Tries to add a device administrator. 1 TTPs 1 IoCs

privilege_escalation

Device Administrator Permissions

T1626.001

description	ioc	Process
Intent action	android.app.action.ADD_DEVICE_ADMIN	org.starsizew

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	org.starsizew

org.starsizew
1⤵
- Tries to add a device administrator.
- Uses Crypto APIs (Might try to encrypt user data)
PID:4583

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

T1626

Device Administrator Permissions

T1626.001

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Windows 7 deprecation

Loading Replay Monitor...