irata | f8055897862d1acb5f223e2590480d3611d27211f42a14095e3b61a262adf468 | Triage

Sharing

General

Target

eblagh.apk
Size

2.4MB
Sample

240326-a6zvtabb23
MD5

8384ef6b5dab233bc8e6b6bc66e2fef2
SHA1

397d93ed0bbc48dd45b0f4380f45d742fb0fa1c4
SHA256

f8055897862d1acb5f223e2590480d3611d27211f42a14095e3b61a262adf468
SHA512

e7305471f7e48dd07c0deb58a7d80eb09e74b6fee2f8d978a6c1044643b161d00c5aa6eccd9129731a32da588492a36e7b5a747bd10c3cfa9e439895d6ce2fb0
SSDEEP

49152:4oT4YaxL0WP0MRORIZuFJKCCPOFkLpvcKHmlGD+SKNl:pkYYQS00ORIUFaPOFRKGlA+SEl

Score

10^/10

irata android discovery evasion

Malware Config

Targets

- Target
  
  eblagh.apk
- Size
  
  2.4MB
- MD5
  
  8384ef6b5dab233bc8e6b6bc66e2fef2
- SHA1
  
  397d93ed0bbc48dd45b0f4380f45d742fb0fa1c4
- SHA256
  
  f8055897862d1acb5f223e2590480d3611d27211f42a14095e3b61a262adf468
- SHA512
  
  e7305471f7e48dd07c0deb58a7d80eb09e74b6fee2f8d978a6c1044643b161d00c5aa6eccd9129731a32da588492a36e7b5a747bd10c3cfa9e439895d6ce2fb0
- SSDEEP
  
  49152:4oT4YaxL0WP0MRORIZuFJKCCPOFkLpvcKHmlGD+SKNl:pkYYQS00ORIUFaPOFRKGlA+SEl
Score

6^/10

discovery evasion
- Acquires the wake lock
- Reads information about phone network operator.
  discovery
- Checks the presence of a debugger
  evasion
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion

behavioral3