Overview

overview

7

Static

static

1

apk+.json

windows7-x64

3

apk+.json

windows10-2004-x64

3

base.apk

android-9-x86

7

base.apk

android-10-x64

7

base.apk

android-11-x64

7

split_config.es.apk

android-9-x86

split_config.es.apk

android-10-x64

split_config.es.apk

android-11-x64

split_conf...pi.apk

android-9-x86

split_conf...pi.apk

android-10-x64

split_conf...pi.apk

android-11-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Territorial.io 38.apk+

  • Size

    3.6MB

  • Sample

    240522-gewgmsdg95

  • MD5

    cd1e2f0bf5fb44b3d53efcbe6dcc1326

  • SHA1

    0f07300730cc2c0d0f0ffbc98c3aa47f0d0f7964

  • SHA256

    e6524a4e9e6f0bfe9681b9616b35b4554f23b3ac029c5467fdd800751dfed6dd

  • SHA512

    b0e9fd138cbad7309b53c4376abb798fd03df583be6b71741e10329e3d14358aba1de98140e0662fbad4c23aa8877c8ec6c657743794a6886125aa2f50596bc0

  • SSDEEP

    98304:hcnvFosYFrEsTGOno+PTqTm8LfY/oMxSRohhM3RSVv9oTwr1H+Q:hcn1kHoOTEmgK+OlPf

Score
7/10
androidcollectioncredential_accessdiscoveryevasionimpactpersistence

Malware Config

Targets

    • Target

      apk+.json

    • Size

      120B

    • MD5

      36b787064fcc4dafe1f77935108c182f

    • SHA1

      f9286a5bb77d7beed1bd2a56712d6548df558b88

    • SHA256

      3db6981a4026e9027af6c9409b100a8233abd1e3474116e6d32f6e6d2caf4e70

    • SHA512

      ee881db705c98cefb8b927ffbf85f4a75be0f7da45cbe487cf61e87d3402ba45508ce970e268b419ea39c3b4d4c7958d14ad0ceca24562f586d35d2abcd83927

    Score
    3/10
    behavioral1behavioral2

    • Target

      base.apk

    • Size

      3.5MB

    • MD5

      193a62dcd89032dff96dcd0c6a756e69

    • SHA1

      104b70fb2f8441ab335cf9cb4fe0e607e2cbb575

    • SHA256

      b1716b11437276c5ed72367862010bd399b382e790d0ec3e77fa51a6c421eb5d

    • SHA512

      751db3f074513ef1ac468ee54130203ba5a61cda79f7f24b73a2e4e665155aab3684d8a82e46b9df550806e3722324872662b5df5684468eb5ce3d75fc850f10

    • SSDEEP

      98304:1OB/VsYoPDoq9sEpoMPtqTuqL7g/sIDatEXhgHNOVB5oTwrLfAV:1OBjkNoItEui8Ce3N8

    Score
    7/10
    discoveryevasionpersistencecollectioncredential_accessimpact

    • Checks CPU information

      Checks CPU information which indicate if the system is an emulator.

      evasiondiscovery

    • Checks memory information

      Checks memory information which indicate if the system is an emulator.

      evasiondiscovery

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

      collectioncredential_accessimpact

    • Queries the mobile country code (MCC)

      discovery

    • Registers a broadcast receiver at runtime (usually for listening for system events)

      persistence
    behavioral3behavioral4behavioral5

    • Target

      split_config.es.apk

    • Size

      40KB

    • MD5

      452412dc59f7df513772f96c16c7eda5

    • SHA1

      3d0e3ed636c660e77e7699a8b88f70d67ae7f1b7

    • SHA256

      bff1ba9b3ebe3524f22ff6be8a367c3eb61dd9101da01006785d68f961e202dc

    • SHA512

      223e68053e0eb4553f8f67a78e57b28b8170b08451b24749fb03a56cebb6bff043da7d802c44faa51c884fc7c9e8decb1c15ed7f7d7707318e566b8b75756f83

    • SSDEEP

      768:Zwzb6mAlmwqKFshW4w1eMiTx7PfE2I9w8JCG:Zwb6FlmvKFshW4n3w26w8JL

    Score
    1/10
    behavioral6behavioral7behavioral8

    • Target

      split_config.xxhdpi.apk

    • Size

      73KB

    • MD5

      5d8fd5cb7d68afae670c1c24e0e18d9e

    • SHA1

      1da97ef89a99e1f46bba88e16374a07de852b163

    • SHA256

      6bc9eff23f30b0fe3bd69697955ed78c942257c28aa70648711e9bf5a4d2f6e2

    • SHA512

      f1bd5c43072ec45ef4d36a01d31bdc0e12df888abe5f6ef93211f8a565ca1e2ca7c99ea014d61ad9206d285fc9873b4d3840d14f2c4ca1d38690b99604e35b65

    • SSDEEP

      1536:gbXho/2EFeJp+LcOU0bLMWOoDCQaLWh/LJi:aO2EFKoLRLBLny

    Score
    1/10
    behavioral10behavioral11behavioral9

MITRE ATT&CK Enterprise v15

MITRE ATT&CK Mobile v15

Tasks