hxxps://fa-transport[.]ru/?gclid=EAIaIQobChMIvuKc4N78hAMVwaTYBR3SKwHIEAEYASAAEgLbJPD_BwE | Triage

Sharing

Copy URL Twitter E-mail

General

Target

https://fa-transport.ru/?gclid=EAIaIQobChMIvuKc4N78hAMVwaTYBR3SKwHIEAEYASAAEgLbJPD_BwE
Sample

240409-dxbcmsge6v

Score

7^/10

android collection discovery evasion macos

Malware Config

Targets

- Target
  
  https://fa-transport.ru/?gclid=EAIaIQobChMIvuKc4N78hAMVwaTYBR3SKwHIEAEYASAAEgLbJPD_BwE
Score

7^/10

collection discovery evasion
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Reads the content of photos stored on the user's device.
  collection
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

behavioral2

collectiondiscoveryevasion

behavioral3