70e20eab673c9763dede8b25bb6cf6917f09b66fc68a772e80327efe6f3cd116 | Triage

Sharing

General

Target

RabbitLauncher_0883_RAW01.apk
Size

80.8MB
Sample

240526-eqhc2sfb48
MD5

beb8dc41dabf890208980f7c326edf68
SHA1

107bf6a7535d7285dc5630c854618a81f0ea6468
SHA256

70e20eab673c9763dede8b25bb6cf6917f09b66fc68a772e80327efe6f3cd116
SHA512

976f426351c9209ddfade0dcb8aa26193e47b8d3c0ec6afda038b93b64ff0df0985231a88d8187d495e707b0227df7af2507dc014ec1204e0c903b90fcf44d5d
SSDEEP

786432:zDMrSaHR1r3aYEKJtljW1gl9hDIxikjkOCNXj0l9QpZ2zjjHFanbNuEOlQjfnb/P:CvDVlnrJOCNXY9EZ2zXlu5jfbwO

Score

8^/10

android discovery evasion

Malware Config

Targets

- Target
  
  RabbitLauncher_0883_RAW01.apk
- Size
  
  80.8MB
- MD5
  
  beb8dc41dabf890208980f7c326edf68
- SHA1
  
  107bf6a7535d7285dc5630c854618a81f0ea6468
- SHA256
  
  70e20eab673c9763dede8b25bb6cf6917f09b66fc68a772e80327efe6f3cd116
- SHA512
  
  976f426351c9209ddfade0dcb8aa26193e47b8d3c0ec6afda038b93b64ff0df0985231a88d8187d495e707b0227df7af2507dc014ec1204e0c903b90fcf44d5d
- SSDEEP
  
  786432:zDMrSaHR1r3aYEKJtljW1gl9hDIxikjkOCNXj0l9QpZ2zjjHFanbNuEOlQjfnb/P:CvDVlnrJOCNXY9EZ2zXlu5jfbwO
Score

8^/10

discovery evasion
- Checks if the Android device is rooted.
  evasion
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Checks if the internet connection is available
  discovery
- Listens for changes in the sensor environment (might be used to detect emulation)
  evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Hide Artifacts

User Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion