General

  • Target

    TY_TrainH3.apk

  • Size

    11.4MB

  • Sample

    240521-ge5qbaed24

  • MD5

    b6e4499a2cf754ab02239fb5f2995902

  • SHA1

    d751a544d65a8b776d74cd2d686a6c96c5285083

  • SHA256

    0d938d32be29c4eb8d55ff4ab1e718f988db1bc01d2c184c06a8fdf6c3c9a1f5

  • SHA512

    fd94958d21d465ec8dea3c14ff0a0612fd253fd969884210c9f5bc6d9233131dbb7318e04d8fdf4ded32fe56dae684c4d9fe5e2efc249ad258fa6afb52a7f5a2

  • SSDEEP

    196608:0DoghC/ZdkW2qKY53jKhWYaReGEqAy4uLgeiheaxJOp4DvXyNJffNQqt8yC/4S:Ixelpj/YaReGRR4u8eXaxTDPyNJffNQX

Malware Config

Targets

    • Target

      TY_TrainH3.apk

    • Size

      11.4MB

    • MD5

      b6e4499a2cf754ab02239fb5f2995902

    • SHA1

      d751a544d65a8b776d74cd2d686a6c96c5285083

    • SHA256

      0d938d32be29c4eb8d55ff4ab1e718f988db1bc01d2c184c06a8fdf6c3c9a1f5

    • SHA512

      fd94958d21d465ec8dea3c14ff0a0612fd253fd969884210c9f5bc6d9233131dbb7318e04d8fdf4ded32fe56dae684c4d9fe5e2efc249ad258fa6afb52a7f5a2

    • SSDEEP

      196608:0DoghC/ZdkW2qKY53jKhWYaReGEqAy4uLgeiheaxJOp4DvXyNJffNQqt8yC/4S:Ixelpj/YaReGRR4u8eXaxTDPyNJffNQX

    • Registers a broadcast receiver at runtime (usually for listening for system events)

    • Tries to add a device administrator.

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

MITRE ATT&CK Matrix

Tasks