c5641e9d3f80024a0de8c6c388220a3c10def195402f590876c51ec160d70b03 | Triage

Sharing

General

Target

Lumina.apk
Size

21.4MB
Sample

240525-gaapdafh9z
MD5

0de00264aaebc613b7f20ab9f5f994b7
SHA1

cf453120ee6e3b55f0a0015bbf6762b46867b527
SHA256

c5641e9d3f80024a0de8c6c388220a3c10def195402f590876c51ec160d70b03
SHA512

fa3abfe7215752ed51fe014af520d2bd21d288b9e72ab2c1841cc08e0a0e6432c787c671f247066a084bfde139476a1d697e47e83d64e582ee4f6b5f302d86e3
SSDEEP

393216:EqXAO4ZLnm6Ax2PW2Pz2PdrDSalA8rizBHsU4zq8Fpj/t8FRRZFhyqv:fw15As9eEalEts3q8X/t8FRfyqv

Score

7^/10

android discovery evasion

Malware Config

Targets

- Target
  
  Lumina.apk
- Size
  
  21.4MB
- MD5
  
  0de00264aaebc613b7f20ab9f5f994b7
- SHA1
  
  cf453120ee6e3b55f0a0015bbf6762b46867b527
- SHA256
  
  c5641e9d3f80024a0de8c6c388220a3c10def195402f590876c51ec160d70b03
- SHA512
  
  fa3abfe7215752ed51fe014af520d2bd21d288b9e72ab2c1841cc08e0a0e6432c787c671f247066a084bfde139476a1d697e47e83d64e582ee4f6b5f302d86e3
- SSDEEP
  
  393216:EqXAO4ZLnm6Ax2PW2Pz2PdrDSalA8rizBHsU4zq8Fpj/t8FRRZFhyqv:fw15As9eEalEts3q8X/t8FRfyqv
Score

1^/10
behavioral1
- Target
  
  com.coderstory.toolkit.apk
- Size
  
  49KB
- MD5
  
  4eaa7e9009d374a77bc9c5a6d3a8f657
- SHA1
  
  fd14fef0727a031336cbe4bd4fa1ca3abeb638cb
- SHA256
  
  95b2996a2bef1b1c8ef803f7d3c68a2a269acef812337257f8a24af982fce8c1
- SHA512
  
  fa8de22649b6c9d174450ea02ccb2ad863f5fc52b52b69325953faeecf245ea006deaa3517abed74a38b10ebaaf88ff3b8f79ab1b438d7b3dd690f259c3e14e3
- SSDEEP
  
  768:Q3XFaGJkSieIl1fu4guVgp4h8yEm1hxDYE9WAGtHHVBCCBau:Q3XFa2znIvfu4kp4vFhxDvPIV8q
Score

1^/10
behavioral2 behavioral3 behavioral4
- Target
  
  origin.apk
- Size
  
  17.0MB
- MD5
  
  ce9aef44331d83631b63076c8f4f2ae1
- SHA1
  
  23f367511627fe348711e5d57923d52d1b737b75
- SHA256
  
  aaf1ee5876a1a8153e519c891d19455b930a7780116501dcd9c11edfd7fb8ee2
- SHA512
  
  335a13f015d17f43fb9df50b3e1d60de874dd05b4e70ef26facbf086f2b78396adc8cca10ebdb42c87050024b2d37cdd3f5b2357e4eca95eb05c9b9f4f672287
- SSDEEP
  
  393216:UXAO4ZLnm6Ax2PW2Pz2PdrDSalA8rizBHsU4zq85:Uw15As9eEalEts3q85
Score

7^/10

discovery evasion
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
behavioral5

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

discoveryevasion