General
-
Target
4662dc833e5c91cd7b7c5f6a59f0ef742148653469374d5521e003f3511e278a
-
Size
3.2MB
-
Sample
240519-csezlade3s
-
MD5
d738b65dc7cc9a097ef2f3ad279cb26f
-
SHA1
ed7151ee446e84d36b06a8c91e38875256a43132
-
SHA256
4662dc833e5c91cd7b7c5f6a59f0ef742148653469374d5521e003f3511e278a
-
SHA512
156175261bc088a1ba2d7ab4397a8a1fc8507ea72b21dcf100001bfa4baa1d09402d78ecc97e323f150305e4802287785f0c6ec9040f9d81d8c860fdc84a63f8
-
SSDEEP
98304:5O2dPlnnCPpTYyi4ghq1rK2MKPHxjPuTXJwp:5/HnCBTYBhq19MK1uTOp
Static task
static1
Behavioral task
behavioral1
Sample
4662dc833e5c91cd7b7c5f6a59f0ef742148653469374d5521e003f3511e278a.apk
Resource
android-x86-arm-20240514-en
Malware Config
Extracted
tispy
https://auth.familysafty.com/TiSPY/printIPN.jsp?screen=IntroScreen&model=Pixel+2&osversion=28&deviceid=358240051014041&version=3.2.183_19May24&rtype=T
Targets
-
-
Target
4662dc833e5c91cd7b7c5f6a59f0ef742148653469374d5521e003f3511e278a
-
Size
3.2MB
-
MD5
d738b65dc7cc9a097ef2f3ad279cb26f
-
SHA1
ed7151ee446e84d36b06a8c91e38875256a43132
-
SHA256
4662dc833e5c91cd7b7c5f6a59f0ef742148653469374d5521e003f3511e278a
-
SHA512
156175261bc088a1ba2d7ab4397a8a1fc8507ea72b21dcf100001bfa4baa1d09402d78ecc97e323f150305e4802287785f0c6ec9040f9d81d8c860fdc84a63f8
-
SSDEEP
98304:5O2dPlnnCPpTYyi4ghq1rK2MKPHxjPuTXJwp:5/HnCBTYBhq19MK1uTOp
-
TiSpy payload
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Queries the mobile country code (MCC)
-
Queries the phone number (MSISDN for GSM devices)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Acquires the wake lock
-
Checks if the internet connection is available
-