hxxp://spdmteam[.]com

Analysis

max time kernel
1803s
max time network
1808s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 02:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

http://spdmteam.com

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks CPU information 2 TTPs 2 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.android.chromecom.android.chrome

description ioc process

File opened for read /proc/cpuinfo com.android.chrome
File opened for read /proc/cpuinfo com.android.chrome
Checks memory information 2 TTPs 2 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.android.chromecom.android.chrome

description ioc process

File opened for read /proc/meminfo com.android.chrome
File opened for read /proc/meminfo com.android.chrome

description	ioc	process
File opened for read	/proc/cpuinfo	com.android.chrome
File opened for read	/proc/cpuinfo	com.android.chrome

description	ioc	process
File opened for read	/proc/meminfo	com.android.chrome
File opened for read	/proc/meminfo	com.android.chrome

com.android.chrome
1⤵
- Checks CPU information
- Checks memory information
PID:4203

com.android.chrome
1⤵
- Checks CPU information
- Checks memory information
PID:4810

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

files/dom-0.html

Filesize
16KB

MD5
6de1d218ec67a4e90852806475892c6e

SHA1
aa11bc83e9f46dfd3c8243b6c9e259f0b2fe8c12

SHA256
6d7608aac2e47b7015506d9d04cdc72709350e6cb3c65bbdd6182d4a27763c2c

SHA512
21c106533606a86a083cc52087d418fecd099a5f563e8e1b88f36db00b7d899b2a56fa9874f13eda5988174a5e39c4607387b91c07094ffcb3c4e10c780ceb0b

Download Submit
/storage/emulated/0/Download/Just a moment....mhtml

Filesize
14KB

MD5
9bc1d8e90bade9de058ecdbd81c869c0

SHA1
d4afb7eb719f5eb03f4ee1b5a252c3ffff91425b

SHA256
a0da9dff75f65ce6225f77179cad5a746afd65bf8f68c546c0727fe33dc6dd29

SHA512
710e97ad4383e46f2ce8f3e304959d2044b29ffbbd15a3f17c8e21e523fbae748af4dc450d1f75383274e7b7f68129c18009c4030d0dc8cb7479986e706531f3

Download Submit