Resubmissions

16-04-2024 01:08

240416-bhmq1sdd34 7

16-04-2024 01:05

240416-bfzykadc47 7

16-04-2024 00:36

240416-ax997aee2z 7

General

  • Target

    MAPS.ME Offline maps GPS Nav_v15.7.71702-googleRelease_Apkpure.apk

  • Size

    269.8MB

  • Sample

    240416-bhmq1sdd34

  • MD5

    a12eabffeb1f9fe081d3b0b740a0cfbd

  • SHA1

    bf5c09abc93664e03c44a512148a925700c23249

  • SHA256

    bc33cd2b454b8924b6280e85f3aa0c92aa7fc522bbab081d0e63d1339773b106

  • SHA512

    7e6bb12a1f0cb331a4488d0158c3484cccbcc3c46e12441586a9cb03210f5a1b083ec175f777e28453e9302ca5e5ce09e973227c82746afe3c5548464d57fcc0

  • SSDEEP

    3145728:dxFAg6GEFiXiH3mJbNTrrydn/O8w4J6rapwPQEar7UyEdN95lZd:lAJG9XiCTrrydn/O8w4Jgap4O7ZEdNbd

Malware Config

Targets

    • Target

      MAPS.ME Offline maps GPS Nav_v15.7.71702-googleRelease_Apkpure.apk

    • Size

      269.8MB

    • MD5

      a12eabffeb1f9fe081d3b0b740a0cfbd

    • SHA1

      bf5c09abc93664e03c44a512148a925700c23249

    • SHA256

      bc33cd2b454b8924b6280e85f3aa0c92aa7fc522bbab081d0e63d1339773b106

    • SHA512

      7e6bb12a1f0cb331a4488d0158c3484cccbcc3c46e12441586a9cb03210f5a1b083ec175f777e28453e9302ca5e5ce09e973227c82746afe3c5548464d57fcc0

    • SSDEEP

      3145728:dxFAg6GEFiXiH3mJbNTrrydn/O8w4J6rapwPQEar7UyEdN95lZd:lAJG9XiCTrrydn/O8w4Jgap4O7ZEdNbd

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Queries information about running processes on the device.

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Acquires the wake lock

    • Checks the presence of a debugger

    • Listens for changes in the sensor environment (might be used to detect emulation)

MITRE ATT&CK Mobile v15

Tasks