Overview

overview

10

Static

static

10

c0d42ce79a...a0.apk

android-9-x86

8

c0d42ce79a...a0.apk

android-10-x64

8

c0d42ce79a...a0.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c0d42ce79a54343aabac5e737d42c621ecf06ffd94ac117d4bf9eecc4acc5aa0.bin

  • Size

    3.9MB

  • Sample

    240523-1x6j4sae63

  • MD5

    98341d0629597b84ef1391856fb6ba8c

  • SHA1

    62ced21668e6f5ea68b945608f98627f209cad39

  • SHA256

    c0d42ce79a54343aabac5e737d42c621ecf06ffd94ac117d4bf9eecc4acc5aa0

  • SHA512

    67c345de64dd06521d36d76787ea131ca60c9fd283ce5aad68f4bd4a73799f92b00635adfecf7b32c92cb13defc99ed2e84befb27635e51b9e72e19f85ad375b

  • SSDEEP

    98304:pFMDOCLXKVHgTgoERjo4VGAFx/5jBXk/55meRVshFO+ibx:EaGKKLgvFLjZkhRVsWbx

Score
10/10
godfatherandroidevasionimpactpersistence

Malware Config

Extracted

Family

godfather

C2

https://t.me/napikozaremossod

Targets

    • Target

      c0d42ce79a54343aabac5e737d42c621ecf06ffd94ac117d4bf9eecc4acc5aa0.bin

    • Size

      3.9MB

    • MD5

      98341d0629597b84ef1391856fb6ba8c

    • SHA1

      62ced21668e6f5ea68b945608f98627f209cad39

    • SHA256

      c0d42ce79a54343aabac5e737d42c621ecf06ffd94ac117d4bf9eecc4acc5aa0

    • SHA512

      67c345de64dd06521d36d76787ea131ca60c9fd283ce5aad68f4bd4a73799f92b00635adfecf7b32c92cb13defc99ed2e84befb27635e51b9e72e19f85ad375b

    • SSDEEP

      98304:pFMDOCLXKVHgTgoERjo4VGAFx/5jBXk/55meRVshFO+ibx:EaGKKLgvFLjZkhRVsWbx

    Score
    8/10
    evasionimpactpersistence

    • Prevents application removal

      Application may abuse the framework's APIs to prevent removal.

      evasion

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Acquires the wake lock

    behavioral1behavioral2behavioral3

MITRE ATT&CK Mobile v15

Tasks