General
-
Target
Niño Rata_1.7_Apkpure.apk
-
Size
17.5MB
-
Sample
240427-2d2bqaaa24
-
MD5
6db3e97dc96913b1f0a4606a742b45f7
-
SHA1
03a145434a9d6577cefe1b57d35a27ed6606a74f
-
SHA256
0bde58a6a22bbc5d8d9130db28db712d16d69d3d1d522a123990d6c269cacff4
-
SHA512
f4d2b71e12e04d7aedc3ffa697e497373a7d0699b761e5513524c0a298d3e52257bf4e44d3aae32af18bd5abc269bea398bbd7bfa8414fd0e87153878c487574
-
SSDEEP
393216:qiJ5Byw1yTpXhlxmixStEKKUEsU7+JeGrsCTxIXGsZ:qiJ5LopXh3FWdcOecgGu
Malware Config
Targets
-
-
Target
Niño Rata_1.7_Apkpure.apk
-
Size
17.5MB
-
MD5
6db3e97dc96913b1f0a4606a742b45f7
-
SHA1
03a145434a9d6577cefe1b57d35a27ed6606a74f
-
SHA256
0bde58a6a22bbc5d8d9130db28db712d16d69d3d1d522a123990d6c269cacff4
-
SHA512
f4d2b71e12e04d7aedc3ffa697e497373a7d0699b761e5513524c0a298d3e52257bf4e44d3aae32af18bd5abc269bea398bbd7bfa8414fd0e87153878c487574
-
SSDEEP
393216:qiJ5Byw1yTpXhlxmixStEKKUEsU7+JeGrsCTxIXGsZ:qiJ5LopXh3FWdcOecgGu
Score7/10-
Checks CPU information
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries the mobile country code (MCC)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Checks the presence of a debugger
-
Listens for changes in the sensor environment (might be used to detect emulation)
-
MITRE ATT&CK Mobile v15
Defense Evasion
Download New Code at Runtime
1Hide Artifacts
1User Evasion
1Virtualization/Sandbox Evasion
2System Checks
2