c61340d1776571ff2c110030e9029a0566dceda206e4b74df9f6107fa9a72e64 | Triage

Sharing

General

Target

Induslnd-Card.apk
Size

20.1MB
Sample

240604-mzrxvaed39
MD5

97f5b44da317e597c5655ee4b8601cb2
SHA1

cfb9eda400f638f3a32a55423a074e7bafaf0090
SHA256

c61340d1776571ff2c110030e9029a0566dceda206e4b74df9f6107fa9a72e64
SHA512

defc92572774feb0b2630d930276e4b2f5bcd4d142d34f377c68f46f24314e9c687e9dd1e4f647b78b35fd879735bf9efdc908ea4c40a72602fa52f621b39e36
SSDEEP

196608:JJivvab/+fcBLHaEZdHPBB1igACgIBrOZ6XySlJ/6qQ5CzP:J4n0IWjZF31igZgw6Z6XymFQ5CzP

Score

7^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  Induslnd-Card.apk
- Size
  
  20.1MB
- MD5
  
  97f5b44da317e597c5655ee4b8601cb2
- SHA1
  
  cfb9eda400f638f3a32a55423a074e7bafaf0090
- SHA256
  
  c61340d1776571ff2c110030e9029a0566dceda206e4b74df9f6107fa9a72e64
- SHA512
  
  defc92572774feb0b2630d930276e4b2f5bcd4d142d34f377c68f46f24314e9c687e9dd1e4f647b78b35fd879735bf9efdc908ea4c40a72602fa52f621b39e36
- SSDEEP
  
  196608:JJivvab/+fcBLHaEZdHPBB1igACgIBrOZ6XySlJ/6qQ5CzP:J4n0IWjZF31igZgw6Z6XymFQ5CzP
Score

7^/10

discovery evasion persistence
- Checks CPU information
  Checks CPU information which indicate if the system is an emulator.
  evasion discovery
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  evasion persistence
- Acquires the wake lock
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Foreground Persistence

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence