f6857a9c37a87e8ab489b12263cc1cd34b5113fa1ff11a98b6fa7e4c56a947b0 | Triage

Sharing

General

Target

MyBuddyTCC15.apk
Size

7.9MB
Sample

240524-pyrlssda2z
MD5

548ba1066188c060a3aec8f9160a9b00
SHA1

638afb8bc67057ad181c36026921d2aa82a5d330
SHA256

f6857a9c37a87e8ab489b12263cc1cd34b5113fa1ff11a98b6fa7e4c56a947b0
SHA512

c3de0d454461cfb73f0fa290013142ede67fd9c3a8bc25e5f91220f6cba3310f9bb6dde8531b10f9cd53e1bada8d7cb7bfe3cb545bffe998465e132f39e4b568
SSDEEP

196608:AUtVH3IiKmk5KR9Xzb3Tmn/d3yxRAH+aSQY7ou:fVXI7JO9nT213y7AH+aSQYl

Score

7^/10

android discovery persistence

Malware Config

Targets

- Target
  
  MyBuddyTCC15.apk
- Size
  
  7.9MB
- MD5
  
  548ba1066188c060a3aec8f9160a9b00
- SHA1
  
  638afb8bc67057ad181c36026921d2aa82a5d330
- SHA256
  
  f6857a9c37a87e8ab489b12263cc1cd34b5113fa1ff11a98b6fa7e4c56a947b0
- SHA512
  
  c3de0d454461cfb73f0fa290013142ede67fd9c3a8bc25e5f91220f6cba3310f9bb6dde8531b10f9cd53e1bada8d7cb7bfe3cb545bffe998465e132f39e4b568
- SSDEEP
  
  196608:AUtVH3IiKmk5KR9Xzb3Tmn/d3yxRAH+aSQY7ou:fVXI7JO9nT213y7AH+aSQYl
Score

7^/10

discovery persistence
- Registers a broadcast receiver at runtime (usually for listening for system events)
  persistence
- Acquires the wake lock
- Checks if the internet connection is available
  discovery
- Queries the unique device ID (IMEI, MEID, IMSI)
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

behavioral3