Overview

overview

10

Static

static

10

f32bad1a9a...36.apk

android-9-x86

8

f32bad1a9a...36.apk

android-10-x64

8

f32bad1a9a...36.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f32bad1a9a2cab38a11716a95f1b264d9af5d9212d83d5605bdfdfccab034336.bin

  • Size

    760KB

  • Sample

    240413-1xcl2aad64

  • MD5

    f7601807c0d2074fe4f60fe7becc45a1

  • SHA1

    a38599241330c767e5fea3f6a3677bfb3fc7ebe2

  • SHA256

    f32bad1a9a2cab38a11716a95f1b264d9af5d9212d83d5605bdfdfccab034336

  • SHA512

    c3eaa635d3526f5971a1dfd432213e2aa870c238011eed0592ff683fe5d343a7093076cb7eea9a5d8c3656d1e8f667702b9d952feff44cc9c1451be984e33017

  • SSDEEP

    12288:RcX4zuJwa1a8LrefWmeUK5V5WmpYshXZPbGwidNpgx:Rs4zta1a2efgUK5V5WmD9idNpa

Score
10/10
spynoteandroidbankerdiscoveryevasionpersistenceprivilege_escalation

Malware Config

Extracted

Family

spynote

C2

windowshell.ddns.net:53

Targets

    • Target

      f32bad1a9a2cab38a11716a95f1b264d9af5d9212d83d5605bdfdfccab034336.bin

    • Size

      760KB

    • MD5

      f7601807c0d2074fe4f60fe7becc45a1

    • SHA1

      a38599241330c767e5fea3f6a3677bfb3fc7ebe2

    • SHA256

      f32bad1a9a2cab38a11716a95f1b264d9af5d9212d83d5605bdfdfccab034336

    • SHA512

      c3eaa635d3526f5971a1dfd432213e2aa870c238011eed0592ff683fe5d343a7093076cb7eea9a5d8c3656d1e8f667702b9d952feff44cc9c1451be984e33017

    • SSDEEP

      12288:RcX4zuJwa1a8LrefWmeUK5V5WmpYshXZPbGwidNpgx:Rs4zta1a2efgUK5V5WmD9idNpa

    Score
    8/10
    bankerdiscoveryevasionpersistenceprivilege_escalation

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

      bankerdiscovery

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Requests enabling of the accessibility settings.

    • Tries to add a device administrator.

      privilege_escalation
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks