6bf12ecd28b9060a637010a60f76dbcbfe3f14ee8b8462e5314aad265ce81bf8 | Triage

Sharing

General

Target

MyBuddyTCC18-a.apk
Size

9.9MB
Sample

240524-pex98sad6z
MD5

1991fa70fa0dc77b0bf5885b7fd00859
SHA1

30a57e255b5ebc77ce20d3e40150e35c684726e0
SHA256

6bf12ecd28b9060a637010a60f76dbcbfe3f14ee8b8462e5314aad265ce81bf8
SHA512

df97e8cf04c36f1807619bb6a2ff5a7876e0f3c18e14270a7b41933a3ba875d87de1707466212a19f0cd7ed6541292df02815e6bbab2519f169b0802c84567fe
SSDEEP

196608:RZUtVH3IiK8TBoHwDNJlp5LzhrPs20NhB0u7HUFT0ma+IDh0SyERAH+atJzbazo:6VXI7aOQDNJxlrk20vB0s7Dh3ysAH+ax

Score

7^/10

android discovery persistence

Malware Config

Targets

- Target
  
  MyBuddyTCC18-a.apk
- Size
  
  9.9MB
- MD5
  
  1991fa70fa0dc77b0bf5885b7fd00859
- SHA1
  
  30a57e255b5ebc77ce20d3e40150e35c684726e0
- SHA256
  
  6bf12ecd28b9060a637010a60f76dbcbfe3f14ee8b8462e5314aad265ce81bf8
- SHA512
  
  df97e8cf04c36f1807619bb6a2ff5a7876e0f3c18e14270a7b41933a3ba875d87de1707466212a19f0cd7ed6541292df02815e6bbab2519f169b0802c84567fe
- SSDEEP
  
  196608:RZUtVH3IiK8TBoHwDNJlp5LzhrPs20NhB0u7HUFT0ma+IDh0SyERAH+atJzbazo:6VXI7aOQDNJxlrk20vB0s7Dh3ysAH+ax
Score

7^/10

discovery persistence
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Acquires the wake lock
- Checks if the internet connection is available
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

behavioral3