b4da10cd63892cc82bf11a2638ce20e315576ffcd13838aa1a1c70c294097f19

General

Target

DianaApp.apk
Size

14.3MB
Sample

240522-nxme1seb44
MD5

e971a3be09bfee056598b04ce602f90f
SHA1

7f691267f6ba5235f8ce735eac7ba742231146f6
SHA256

b4da10cd63892cc82bf11a2638ce20e315576ffcd13838aa1a1c70c294097f19
SHA512

0fbf447d5aa1b05d1c9df7774d0d756b0086d3fefc5e5d1ad56efc348c18a795c8dc04088aca5c72a506b90c5c617b1c288944634b5417288fa5b68c04db7572
SSDEEP

393216:m9YE8G2qTw6XNqK8+V07mk6zfVd9wnuc1ZUlHqnCZIzG0Ynx8:eYE8DqTL87f6jWnuc1UHqCZ0M2

Score

8^/10

Malware Config

Targets

- Target
  
  DianaApp.apk
- Size
  
  14.3MB
- MD5
  
  e971a3be09bfee056598b04ce602f90f
- SHA1
  
  7f691267f6ba5235f8ce735eac7ba742231146f6
- SHA256
  
  b4da10cd63892cc82bf11a2638ce20e315576ffcd13838aa1a1c70c294097f19
- SHA512
  
  0fbf447d5aa1b05d1c9df7774d0d756b0086d3fefc5e5d1ad56efc348c18a795c8dc04088aca5c72a506b90c5c617b1c288944634b5417288fa5b68c04db7572
- SSDEEP
  
  393216:m9YE8G2qTw6XNqK8+V07mk6zfVd9wnuc1ZUlHqnCZIzG0Ynx8:eYE8DqTL87f6jWnuc1UHqCZ0M2
Score

8^/10

banker discovery evasion persistence collection credential_access impact
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Queries the mobile country code (MCC)
  discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Acquires the wake lock
- Checks if the internet connection is available
  discovery
- Reads information about phone network operator.
  discovery
- Checks the presence of a debugger
  evasion
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Targets

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

Checks CPU information

Checks memory information

Obtains sensitive information copied to the device clipboard

Queries the mobile country code (MCC)

Registers a broadcast receiver at runtime (usually for listening for system events)

Acquires the wake lock

Checks if the internet connection is available

Reads information about phone network operator.

Checks the presence of a debugger

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2