Overview

overview

10

Static

static

10

Ahmyth-ali...ed.apk

android-10-x64

7

Ahmyth-ali...ed.apk

android-11-x64

7

Ahmyth-ali...ed.apk

android-13-x64

7

Ahmyth-ali...ed.apk

android-9-x86

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Ahmyth-aligned-debugSigned.apk

  • Size

    293KB

  • Sample

    240331-s76zmaeg87

  • MD5

    97a4df8c6894f3888d1b91c3a6eaa2e5

  • SHA1

    73e1666f15cd7b5061d24a8771d33870d50ecdf4

  • SHA256

    6fbeb9fdce5e26e3d2d7d35103608c3e84fb7411157895c2279040aff9fb6ee7

  • SHA512

    ffa46e684c69e43340c22e904e4218bd01b5f0899147fda541650d05d7f6d7c1c36a81e4de1337b9964d245b9ec6f1bca7be9067121c892b58084677f90ff695

  • SSDEEP

    6144:N8iuy0OqjMfC6J1qbDqDNv6wEJ3XLBD7PVbPfX5s:N2OqjqSyDN3wVDL5X5s

Score
10/10
ahmythandroidevasionpersistenceprivilege_escalation

Malware Config

Extracted

Family

ahmyth

C2

http://Vallithebest-32755.portmap.host:32755

Targets

    • Target

      Ahmyth-aligned-debugSigned.apk

    • Size

      293KB

    • MD5

      97a4df8c6894f3888d1b91c3a6eaa2e5

    • SHA1

      73e1666f15cd7b5061d24a8771d33870d50ecdf4

    • SHA256

      6fbeb9fdce5e26e3d2d7d35103608c3e84fb7411157895c2279040aff9fb6ee7

    • SHA512

      ffa46e684c69e43340c22e904e4218bd01b5f0899147fda541650d05d7f6d7c1c36a81e4de1337b9964d245b9ec6f1bca7be9067121c892b58084677f90ff695

    • SSDEEP

      6144:N8iuy0OqjMfC6J1qbDqDNv6wEJ3XLBD7PVbPfX5s:N2OqjqSyDN3wVDL5X5s

    Score
    7/10
    evasionpersistenceprivilege_escalation

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Tries to add a device administrator.

      privilege_escalation
    behavioral1behavioral2behavioral3behavioral4

MITRE ATT&CK Mobile v15

Tasks