a81a57b4789b82ed69dcaab5f30a20b9cdb18a981d9a53b55086e605dc48b169 | Triage

Sharing

General

Target

cb4d25e5c5ad2c9faf47ea934aa75204
Size

29.1MB
Sample

240315-nn1laahd58
MD5

cb4d25e5c5ad2c9faf47ea934aa75204
SHA1

e457532d0982e4ac69202b074aca41187df12dc3
SHA256

a81a57b4789b82ed69dcaab5f30a20b9cdb18a981d9a53b55086e605dc48b169
SHA512

ecf7a38d0eed8d5b56407ce79839f0f9b40e2be2a548ca29829fffeccd0f1ad8d7aaa5a6a5fcbfe3acb09cca72b7776a19ab7c5128c2cb178361b118d9d4617a
SSDEEP

786432:6M8/h36buz6fP+WFUmBfc6WDtt/iK5Y4InD/xB:6bh3666RnBf/WDWaUDv

Score

8^/10

android collection discovery

Malware Config

Targets

- Target
  
  cb4d25e5c5ad2c9faf47ea934aa75204
- Size
  
  29.1MB
- MD5
  
  cb4d25e5c5ad2c9faf47ea934aa75204
- SHA1
  
  e457532d0982e4ac69202b074aca41187df12dc3
- SHA256
  
  a81a57b4789b82ed69dcaab5f30a20b9cdb18a981d9a53b55086e605dc48b169
- SHA512
  
  ecf7a38d0eed8d5b56407ce79839f0f9b40e2be2a548ca29829fffeccd0f1ad8d7aaa5a6a5fcbfe3acb09cca72b7776a19ab7c5128c2cb178361b118d9d4617a
- SSDEEP
  
  786432:6M8/h36buz6fP+WFUmBfc6WDtt/iK5Y4InD/xB:6bh3666RnBf/WDWaUDv
Score

8^/10

collection discovery
- Requests cell location
  Uses Android APIs to to get current cell location.
  collection discovery
- Reads information about phone network operator.
  discovery
behavioral1
- Target
  
  BaiduNaviSDK_3.2.0.png
- Size
  
  1.4MB
- MD5
  
  4069b3b81e1d891790eef8b76fe90da5
- SHA1
  
  94dd6750b919a69aa4692deed2bd40f8bef3418d
- SHA256
  
  1d1576c300befb56000fcc082bc035e78dc09d1e58b72c5bb4a10ad5a47601aa
- SHA512
  
  bc2415aca54d54ecca819a03b79cf5c47a21400e6e7a82b4b04e58c9e34d22637ac7104f346a2b8f33e24d7bbe634608345efb9d072a7357f9bcf9aa1ad42504
- SSDEEP
  
  24576:iCqRqrHPC8nyHyknFMqesGQyL75iB0dVIxwEW6tI8l+AABU8JFo2sYI:JqRqrHPxonMJ5L75UOmwItI8lhcLhsz
Score

1^/10
behavioral2 behavioral3 behavioral4
- Target
  
  BaiduNaviSDK_Resource_3.2.0.png
- Size
  
  5.4MB
- MD5
  
  3155daab597ef94649630597617806b6
- SHA1
  
  38abb21541cf9eef2ad24d4230da0481a7626993
- SHA256
  
  9b81928710708fa286edb9885a61173e8ad6c982043a068a2d9f0c5ed63ba011
- SHA512
  
  54bdebe7efd0c3ef41256280dd5f5ddef35723f454b53c8e75f1f5c511e29ce64e2c26f909ef06109b26827bdaa115d0bbbcb29b06de40bfbbf36af8f44117d0
- SSDEEP
  
  98304:qYUnfdFfumQpQRuxqbvJ5NLsJOf8Cdk7/T0raV671ktGtExUdgecjmbmMXzS2CDA:qY8Pfu1qRkqbv1sEPiQaV+1ktGtExUdz
Score

1^/10
behavioral5 behavioral6 behavioral7
- Target
  
  UPPayPluginEx.apk
- Size
  
  499KB
- MD5
  
  09b3164fc830f37f7f5abc0bc4fb86eb
- SHA1
  
  621a2939d3e8af51c099ff19e0b4df55c3aec4f4
- SHA256
  
  ad3fa69dbb3e585235b3ec14dbcf38111552e96b12bd807b25122044f462df13
- SHA512
  
  77285d9df07abd8b1c5abe1496a4872a9657023f9b134aa91342f089d4f72cf9b56057928f71aabe81bc6ad371d47a82452617d1861c48e086331ad804ed17bd
- SSDEEP
  
  6144:+J7Nqw5ZPz24MMtjLczSGDQs5aDgm1PAGZPqILH8XrT4K0V5hQQ5nCtHWC3fha1V:BwGctXjqQnBAo3ST49sOOHWC3fg1xF4e
Score

1^/10
behavioral8 behavioral9

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Location Tracking

System Network Configuration Discovery

Lateral Movement

Collection

Location Tracking

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

collectiondiscovery

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9