539f098606ff4c9ca3daac26e24bba5aa7db8b45e1d31f2b446af30af97b6c16 | Triage

Sharing

General

Target

皮肤商城.apk
Size

1.8MB
Sample

240605-h9svnshe61
MD5

61daa19b8769d2435bc84c694e17113d
SHA1

78bc1ed637f2377c60b1ddf8aed6fd8ffc6c8b80
SHA256

539f098606ff4c9ca3daac26e24bba5aa7db8b45e1d31f2b446af30af97b6c16
SHA512

c0d446f8c71326ab443dcacef1789a72af0cbda975119504de3b8d75034d5ed85dd81592c1940937178d2e8658c586a003e7fd8aa38570da7c5c345fb3e3681d
SSDEEP

49152:kmw4jV8q5QIH8ySPxsBfgRLKi0W6zUmGA:vjV0vPxsOJgQa

Score

7^/10

android collection credential_access discovery persistence

Malware Config

Targets

- Target
  
  皮肤商城.apk
- Size
  
  1.8MB
- MD5
  
  61daa19b8769d2435bc84c694e17113d
- SHA1
  
  78bc1ed637f2377c60b1ddf8aed6fd8ffc6c8b80
- SHA256
  
  539f098606ff4c9ca3daac26e24bba5aa7db8b45e1d31f2b446af30af97b6c16
- SHA512
  
  c0d446f8c71326ab443dcacef1789a72af0cbda975119504de3b8d75034d5ed85dd81592c1940937178d2e8658c586a003e7fd8aa38570da7c5c345fb3e3681d
- SSDEEP
  
  49152:kmw4jV8q5QIH8ySPxsBfgRLKi0W6zUmGA:vjV0vPxsOJgQa
Score

7^/10

collection credential_access discovery persistence
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Queries the mobile country code (MCC)
  discovery
- Requests accessing notifications (often used to intercept notifications before users become aware).
  collection credential_access
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Access Notifications

Discovery

Process Discovery

System Information Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Access Notifications

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

collectioncredential_accessdiscoverypersistence