52a46e8d079ea9ed900f3784ded4406c3819e6e479ad7d5cac10073bb0fece31

Sharing

Copy URL Twitter E-mail

General

Target

mobikin-eraser-for-android.exe
Size

20.3MB
Sample

240421-g1xltsdb58
MD5

929ce9627f3bca0d64b3c344f656937d
SHA1

a5fe3beda50572414a959b26feb6c357f200e4a4
SHA256

52a46e8d079ea9ed900f3784ded4406c3819e6e479ad7d5cac10073bb0fece31
SHA512

346ffd57443dce9d04832c71ab9622294fb6b113f8c00cb0002604f4ca689b71409f172ff043a3c518899cee4ad04bada82d4db39b368cdfebbf3cbf9adb18ba
SSDEEP

393216:hQ8k3uzwLk8GrbW2jRt8q+umxfD57xvu0BaSEejQam1b+fnNSQDsKBVcck3M:hQ8k3uzwOnW2bsZvv5saZnNSRKIcR

Score

6^/10

discovery

Malware Config

Targets

- Target
  
  mobikin-eraser-for-android.exe
- Size
  
  20.3MB
- MD5
  
  929ce9627f3bca0d64b3c344f656937d
- SHA1
  
  a5fe3beda50572414a959b26feb6c357f200e4a4
- SHA256
  
  52a46e8d079ea9ed900f3784ded4406c3819e6e479ad7d5cac10073bb0fece31
- SHA512
  
  346ffd57443dce9d04832c71ab9622294fb6b113f8c00cb0002604f4ca689b71409f172ff043a3c518899cee4ad04bada82d4db39b368cdfebbf3cbf9adb18ba
- SSDEEP
  
  393216:hQ8k3uzwLk8GrbW2jRt8q+umxfD57xvu0BaSEejQam1b+fnNSQDsKBVcck3M:hQ8k3uzwOnW2bsZvv5saZnNSRKIcR
Score

4^/10

discovery
behavioral1 behavioral2
- Target
  
  Driver/google_usb_driver.zip
- Size
  
  8.3MB
- MD5
  
  0fbece0afcccef1d8e0ff3245248df28
- SHA1
  
  02690dc0e4acc163d7f55845002adce99be531e7
- SHA256
  
  3d65070eddf939f1e89db3661532631bfe83a0f06d536a319b1f72854a49a828
- SHA512
  
  9512ab1ac67a92379cade904aa71e20c904615d2ae47b7ba48d1322d98720e73b47c3bd8a588cb953e507bea8e515215adbd9ca77194fb6716121d8c4c7a1098
- SSDEEP
  
  196608:Xf+viDyJByzwYpXeWcKo6dJojdGamCsnb9wf+twMkZMQSosYqE6:Wvu0BaSEejQam1b+fnNSQDsK6
Score

1^/10
behavioral3 behavioral4
- Target
  
  I18n/de_DE/strings.mo
- Size
  
  28KB
- MD5
  
  535827ad70bc3ddddeaf206a715521ca
- SHA1
  
  4fe9c0334130b7c2939467f99665df71d8320c12
- SHA256
  
  467a1be10c0b5d8ce474ea45a9791e6cf05bfa242b6ed315687ef3efcf1bc103
- SHA512
  
  040c89e162ab0c29681f3b09095b01fc7811b76d713a847a288b44d3e5278770679bcb50a3cab4260cc5b39a61de6edcecf3eb0d7737467ee19d07abf3361260
- SSDEEP
  
  768:bJtjHz0Foxuh6e3308cJfXhKoIt5RSNdLUoknK1KrBSQv:Pz3uh6e337yfX1IFSNPkK+
Score

3^/10
behavioral5 behavioral6
- Target
  
  I18n/en_US/strings.mo
- Size
  
  25KB
- MD5
  
  e890dd263280505ee33da339dddb8e1a
- SHA1
  
  b6bfe75203f2a74e56d1b7f6092a2a33883579d2
- SHA256
  
  c396714dda1f232ae54d722df77ba98736133b557d33369ab039109bebdfad47
- SHA512
  
  50d43d44d1d252ca5ebc29f2b6ae55f0f297f6f28ac1d67ed96ba498293f00517b1a814ec28e7277ab5d8c8b4ffc3132cd83dd34464993bb0d09985f4f1e96a6
- SSDEEP
  
  768:bJtj0Y3G0Foxuh6e3308csFoxuhae3308cVHE:V3G3uh6e337Kuhae337SHE
Score

3^/10
behavioral7 behavioral8
- Target
  
  I18n/es_ES/strings.mo
- Size
  
  28KB
- MD5
  
  a1048771c200f413e93fb5187b3749ff
- SHA1
  
  4cba74849c936288c7785e63ef6dd318d367a293
- SHA256
  
  703da75f6ff6be13a3342581700a48a72df772ea095ab16dd99e1f5bc6d645f6
- SHA512
  
  468ef8a0b087cd6e0be18050f8d8b6b361b9dcb8ac2aea9bc5c59e876e851d89ee0464664d3776fb6f702eeb02093d0381a4ed8fa7d52d24f191511c785b1b82
- SSDEEP
  
  768:bJtjOt0Foxuh6e3308cxHwHVbtlcTzVLa:+3uh6e337ZVbuzVG
Score

3^/10
behavioral10 behavioral9
- Target
  
  I18n/fr_FR/strings.mo
- Size
  
  29KB
- MD5
  
  6f4d59dffd53956d704a0c28a79e05a0
- SHA1
  
  e288511d7f3ff330a8520fad956ac2f9a94e9175
- SHA256
  
  6ffd13968e2dd785732278ae3676118d2ac21a30a5879fc4ab254dd52d71c230
- SHA512
  
  45c9bd106bafe8f9c5788a67933abd620c0379a4e7f532754c0f6143e909e415bedab821e7fe994f4d861e26f9a6d6303524afba73750b913e0b12627ffe78ce
- SSDEEP
  
  768:bJtjeqV50Foxuh6e3308cj6NIVXPfVOHLriAoo1ICqxRR2lkje:mqV53uh6e337LJCR2lf
Score

3^/10
behavioral11 behavioral12
- Target
  
  I18n/it_IT/strings.mo
- Size
  
  28KB
- MD5
  
  d03ddbf847f0b5999abfaa285834d162
- SHA1
  
  6e27798b60a679b035de5379db49e4b1fba09e08
- SHA256
  
  eb4605b5ab51a615cadcd7aa89c1fd3787595b3cccc490f0892db90597b6180c
- SHA512
  
  458e078e8865c2204505739eaaf64f8685bb4733b5577602b781e0997e7ddf4b1c066baacd02edef91687efd80866d7eaba8750cb5225e0afd43a6eb9c6d33fc
- SSDEEP
  
  384:3rJ45i7jzpmB+4bRIfhJcywlA3xuh6H+3w+0R+ciujc3QVNOz8wQNNavBkm/XfDx:bJtjQYh0Foxuh6e3308cyvfkdzRU
Score

3^/10
behavioral13 behavioral14
- Target
  
  I18n/ja_JP/strings.mo
- Size
  
  31KB
- MD5
  
  2d91af00e4a20a893974fad7e22b7e0c
- SHA1
  
  4d25e44446ac106494118f7906e3b354eeaa8c77
- SHA256
  
  021055e8374beb632ec3e150119a360b0a979fed53d9e4b799efcf744ba3b692
- SHA512
  
  91195dbc72b7337407734c1ecc02e521db754beb16ceb2d143144a3e30bdebadb686fbbcc1fe3b44451bd05faa012a8c88100cb671f0ae8ae34a4cf72456347e
- SSDEEP
  
  768:bJtjeu7rK6a0Foxuh6e3308cvwHfWR4muM3agx7Yf:kV3uh6e337houM3lWf
Score

3^/10
behavioral15 behavioral16
- Target
  
  I18n/pt_PT/strings.mo
- Size
  
  27KB
- MD5
  
  305ddec6a79c570df6149e6c5c358c6e
- SHA1
  
  e0669b8eeffa767d0b7ea367d39abae5c2f6eb95
- SHA256
  
  507189ebf2323871f6c782ace6221580bb06935cd52df5e8c8f02e3e6db64932
- SHA512
  
  f4b614460b6aad4ad6f41a60eb94de9ce36f447267f9d38c16de6e34e61c0ce2a516a9d9791d528457fd18bd68c6d1c8aa91ce14d5dc14bec6253a50938c3f53
- SSDEEP
  
  384:3rJ45i7jzOZWtVRIfhJcywlA3xuh6H+3w+0R+ciujc3Qu3kyschGMsiKbUWauBMC:bJtjq0Foxuh6e3308ci7vZG4aTmy
Score

3^/10
behavioral17 behavioral18
- Target
  
  I18n/zh_CN/strings.mo
- Size
  
  25KB
- MD5
  
  2fba4b79937ba3c9e94e3955059798a0
- SHA1
  
  91e513ff8c9ecd6d1bfdab7659a549015b64a0c4
- SHA256
  
  2bc340a210f642737833bf22c67db1c55d86949758354111db055e0a7ca8ab18
- SHA512
  
  5e905ae5f1384d7f1d48b5789ededc5f9d219388b5b50a0d47cf34afee489fd817990de08f81fc67ddee3fe72b00170d2b92c3affd525420e7d4a77b6b97c89b
- SSDEEP
  
  768:bJtjDOl0j0Foxuh6e3308cwEIyrYdde2zVD1th4fjGkC:rae3uh6e337xKji
Score

3^/10
behavioral19 behavioral20
- Target
  
  I18n/zh_TW/strings.mo
- Size
  
  25KB
- MD5
  
  232b10b9e127fa9a152c09cdd95ef1a5
- SHA1
  
  62626d6c26e69a73f66f2da33b0fdc7ee64ffe44
- SHA256
  
  0c5be160490b93ddf1de4e141e2d84e8ee373ae8e3e15e3b5d1b53ca966777f3
- SHA512
  
  04152373af8183e1d026df61c56c20de9ce628525d59d22fe7d59e3b37c82949a2e2c062cb64e84850c8c7511a86932350a5cbd6616278f50df82e065bdfe75c
- SSDEEP
  
  768:bJtjda00Foxuh6e3308cpxBi70myr0PRIUnxT:Va03uh6e337ydi1nxT
Score

3^/10
behavioral21 behavioral22
- Target
  
  License/license_br.txt
- Size
  
  31KB
- MD5
  
  24c1079164d0ecc290f00fac9786747a
- SHA1
  
  04d9f4b3507494660c29ae291114b7f1fee520b8
- SHA256
  
  dc17692fe720f728da88a99ae5262b71e2dc8ff18b70243ca4ca85ab95f5da42
- SHA512
  
  d2cf22037dadd39baa0bb79984a033f4bbe6ba090522320cbb4854cbc58606140e6dbec0c3a468b6ff8896febf659d37b9b194ef05a07fb83c8db480c0125c5d
- SSDEEP
  
  384:7KdJuzVglaEko15/9FfCwqvxm15/fO7+CfYWe6WWCrtqs:GdJuo3/9FfCwis/feoXRb
Score

1^/10
behavioral23 behavioral24
- Target
  
  License/license_cn.txt
- Size
  
  9KB
- MD5
  
  23b9ea5f33aa46a736f091f989435796
- SHA1
  
  f962177fc63d1af6d55af5e8ca69748108f412d7
- SHA256
  
  24415088ad6eeacc96c3b2b122342a7a5865136a3a0bede6d8dab671ac1931ef
- SHA512
  
  82f6e88d0da708489466f3260f8214bdb78d32c952fee0fa4024f5aa61285ab4047844cce57f44ca6955d5b219b2daee0e182773fee167b19653e258b7c82e55
- SSDEEP
  
  192:84MyRvteFLN+jAI9PDeUA10/zS9IIGk3peZuu229ctii+:zVyE80reUAgzqII9eUf24ii+
Score

1^/10
behavioral25 behavioral26
- Target
  
  License/license_de.txt
- Size
  
  34KB
- MD5
  
  2370bbf32a6bd640ff89b7156ca2f33f
- SHA1
  
  37cee67a327ff56c0c5f3416d98c3337ff6cfa8b
- SHA256
  
  30cfe5603f34f65f3276a8f0bce72328fb1d6f373c18d806acd207725003ba5b
- SHA512
  
  348ec51a1871f5a718a615015c83ae092209bbd336af1e6c90966fa3d4a7987a0a2b58595e9457b4f86e245e43c7b9abc3e00d9fda864b4ae9a36a8e83af02cd
- SSDEEP
  
  384:eVMvkm51smsuPkfbMcSjgEkimCuNx6tRrm6n8G7Y4QMvkim8aDbGPR7:eVtssu+McNi7j8G7YMvXtanGPd
Score

1^/10
behavioral27 behavioral28
- Target
  
  License/license_es.txt
- Size
  
  32KB
- MD5
  
  d47d36879cae7cede25f7187d6af3181
- SHA1
  
  92b35d08c5383d1973dfba7490c4cd324a3418bd
- SHA256
  
  fdabca9b38d242309a370a3f93f85d1c0abaec3ee7ff9de2b5c8bfb62382193c
- SHA512
  
  2906ca301471bc5bd54499c224abb86e2bc76b67a2b8381691ff6cfa5232b295f7b5e0b56d94317672c262efe4d04f403d4eece00c0650f29699abe81faa7ef9
- SSDEEP
  
  768:8YEzt1ePmIiJNV2QRrzV1LfEbvazyC3K1D0gOknC:J3iR7hJ
Score

1^/10
behavioral29 behavioral30
- Target
  
  License/license_fr.txt
- Size
  
  34KB
- MD5
  
  272bd12307ecf6a0d41ef291a4720472
- SHA1
  
  2aa9c38d4dfc0df49a61254bf4bcf02cca3ada44
- SHA256
  
  720ef89078b6815838bfc0ffc09d993b981a6ad15811388288c2672e5ff12ddf
- SHA512
  
  8d155f1e04a4f83526ae177ac02c238b69a273f3dca798140917f3906deeaf1d4d2fadc807f2ebf7cb7fa884503d532699cd4098f9780d76cf998f57a6b103b4
- SSDEEP
  
  768:OTLcz/ojKW6Rqdj3gnTvcSh0jUzEc11IehDWYuOks:S+FeT/sS09
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32