General
-
Target
072110215583ae6521fbb7c5891308df67ce1beac7c9768bfbe550b920474529.bin
-
Size
205KB
-
Sample
240416-1y283sfd3x
-
MD5
7f1219fde6ee76717ef037d9a4525242
-
SHA1
bf4f7cf7f740b4d90925f37ade1a3244f5aea77b
-
SHA256
072110215583ae6521fbb7c5891308df67ce1beac7c9768bfbe550b920474529
-
SHA512
7496b8f7064929d8beaeb1c8ff9be44f92172496013d6c51300264f6f380e66f3c94491b73e1cc70899eda02ea8f339c13828058cf6b99134959033ea6e1964a
-
SSDEEP
3072:qSCExwnHRMqFkM6NkgVuWXfcse2zsLiaCLCfTgpi/kmL6cOAbYdq8tZAFiuVz6:rCuqB6NnmskiaCL9i/kW6b1tKFLVz6
Static task
static1
Behavioral task
behavioral1
Sample
072110215583ae6521fbb7c5891308df67ce1beac7c9768bfbe550b920474529.apk
Resource
android-x86-arm-20240221-en
Behavioral task
behavioral2
Sample
072110215583ae6521fbb7c5891308df67ce1beac7c9768bfbe550b920474529.apk
Resource
android-x64-20240221-en
Behavioral task
behavioral3
Sample
072110215583ae6521fbb7c5891308df67ce1beac7c9768bfbe550b920474529.apk
Resource
android-x64-arm64-20240221-en
Malware Config
Extracted
xloader_apk
http://91.204.227.39:28844
Targets
-
-
Target
072110215583ae6521fbb7c5891308df67ce1beac7c9768bfbe550b920474529.bin
-
Size
205KB
-
MD5
7f1219fde6ee76717ef037d9a4525242
-
SHA1
bf4f7cf7f740b4d90925f37ade1a3244f5aea77b
-
SHA256
072110215583ae6521fbb7c5891308df67ce1beac7c9768bfbe550b920474529
-
SHA512
7496b8f7064929d8beaeb1c8ff9be44f92172496013d6c51300264f6f380e66f3c94491b73e1cc70899eda02ea8f339c13828058cf6b99134959033ea6e1964a
-
SSDEEP
3072:qSCExwnHRMqFkM6NkgVuWXfcse2zsLiaCLCfTgpi/kmL6cOAbYdq8tZAFiuVz6:rCuqB6NnmskiaCL9i/kW6b1tKFLVz6
-
XLoader payload
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Queries account information for other applications stored on the device.
Application may abuse the framework's APIs to collect account information stored on the device.
-
Queries information about the current Wi-Fi connection.
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the phone number (MSISDN for GSM devices)
-
Reads the content of the MMS message.
-
Acquires the wake lock
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-