General
-
Target
8cf8e9710be9a7e2655badc9a43135f76dc9dddd8a9eeba0b92611e381203611
-
Size
3.0MB
-
Sample
240524-cpjhlshg79
-
MD5
82ef343412ba55c99cca1eb038946c21
-
SHA1
4c055e05dc6a1648316e464ba9316c2309118cd4
-
SHA256
8cf8e9710be9a7e2655badc9a43135f76dc9dddd8a9eeba0b92611e381203611
-
SHA512
7081a040c219249c5b0dedbf108d25e615821bba4bfd3f5918916def093bb6c852b347e87c8cfa6a9f1b2a978bdbf8283cb4c88a18562f707c225b59ab74bb6e
-
SSDEEP
98304:+4pm83M0jDsVhPpsDh1C/iRmPWkrqcBI4I2jLa:Jdc0jQVhGDaiRmOkmvQu
Malware Config
Targets
-
-
Target
8cf8e9710be9a7e2655badc9a43135f76dc9dddd8a9eeba0b92611e381203611
-
Size
3.0MB
-
MD5
82ef343412ba55c99cca1eb038946c21
-
SHA1
4c055e05dc6a1648316e464ba9316c2309118cd4
-
SHA256
8cf8e9710be9a7e2655badc9a43135f76dc9dddd8a9eeba0b92611e381203611
-
SHA512
7081a040c219249c5b0dedbf108d25e615821bba4bfd3f5918916def093bb6c852b347e87c8cfa6a9f1b2a978bdbf8283cb4c88a18562f707c225b59ab74bb6e
-
SSDEEP
98304:+4pm83M0jDsVhPpsDh1C/iRmPWkrqcBI4I2jLa:Jdc0jQVhGDaiRmOkmvQu
Score10/10-
TiSpy
TiSpy is an Android stalkerware.
-
Requests cell location
Uses Android APIs to to get current cell location.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Queries the mobile country code (MCC)
-
Queries the phone number (MSISDN for GSM devices)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Acquires the wake lock
-
Checks if the internet connection is available
-
Reads information about phone network operator.
-