02bdf2f45ab0c1e3e786c6aaec1fe4382499a8c544c0c3c88b91d3cfb3c93ead | Triage

Sharing

General

Target

ru.zdevs.zarchiver_0.7.2-720_minAPI5(armeabi)(nodpi)_apkmirror.com.apk
Size

3.0MB
Sample

240522-x4jr5sdf33
MD5

a897c042775a0b6b58e29435ade381b3
SHA1

7f35b1630de42fdc4cc143e8c18dabcdc7926cb2
SHA256

02bdf2f45ab0c1e3e786c6aaec1fe4382499a8c544c0c3c88b91d3cfb3c93ead
SHA512

e76b4889aa56063e8517af3079f916dced1f885e74463f587b960c213bbe662c59f6696a447648f982f05cb8300548f85576b797b431832a0fba546cf6244bf0
SSDEEP

98304:3gqOweO4GKV27tSVvI/Y8Ix08CHGIWf6oRKS8:QqOw2t9ivKd6GzA

Score

7^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  ru.zdevs.zarchiver_0.7.2-720_minAPI5(armeabi)(nodpi)_apkmirror.com.apk
- Size
  
  3.0MB
- MD5
  
  a897c042775a0b6b58e29435ade381b3
- SHA1
  
  7f35b1630de42fdc4cc143e8c18dabcdc7926cb2
- SHA256
  
  02bdf2f45ab0c1e3e786c6aaec1fe4382499a8c544c0c3c88b91d3cfb3c93ead
- SHA512
  
  e76b4889aa56063e8517af3079f916dced1f885e74463f587b960c213bbe662c59f6696a447648f982f05cb8300548f85576b797b431832a0fba546cf6244bf0
- SSDEEP
  
  98304:3gqOweO4GKV27tSVvI/Y8Ix08CHGIWf6oRKS8:QqOw2t9ivKd6GzA
Score

7^/10

discovery evasion persistence
- Checks memory information
  Checks memory information which indicate if the system is an emulator.
  evasion discovery
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion

behavioral3

discoveryevasionpersistence