General

  • Target

    Evocon_1.0_apkcombo.com.xapk

  • Size

    1.4MB

  • Sample

    240605-p3ccnsfh2y

  • MD5

    ba2263c418acbd809435e6075bea01c0

  • SHA1

    0d4b8f3f70b343bd2792b0af281c352b054ba7e8

  • SHA256

    a257169a873a2962a06c83f33c71ae9faae135158826f08ff2e23c481717d731

  • SHA512

    703186464376a4bfa33ee0af720fd111ab5f2036b11152b548d4129849996c391962af6ede1a5f537ddc24e6b3a987e9db390f6cbb8c1ffc20df4ef43ea32296

  • SSDEEP

    12288:hyzpA9/R55TYspNzd33tGcfloIYWy/RyIQTS/+oMzpw01K6UG/i4vaoLO1TmpDYA:czyNBpNhHtvGIBSF6SWlFxKkaB2

Malware Config

Targets

    • Target

      Evocon_1.0_apkcombo.com.xapk

    • Size

      1.4MB

    • MD5

      ba2263c418acbd809435e6075bea01c0

    • SHA1

      0d4b8f3f70b343bd2792b0af281c352b054ba7e8

    • SHA256

      a257169a873a2962a06c83f33c71ae9faae135158826f08ff2e23c481717d731

    • SHA512

      703186464376a4bfa33ee0af720fd111ab5f2036b11152b548d4129849996c391962af6ede1a5f537ddc24e6b3a987e9db390f6cbb8c1ffc20df4ef43ea32296

    • SSDEEP

      12288:hyzpA9/R55TYspNzd33tGcfloIYWy/RyIQTS/+oMzpw01K6UG/i4vaoLO1TmpDYA:czyNBpNhHtvGIBSF6SWlFxKkaB2

    Score
    1/10
    • Target

      APKComboInstaller.url

    • Size

      59B

    • MD5

      b57de9520684486ca7b3de5d55487995

    • SHA1

      9ceb08a63c985fb52072d2001155be791b69cdf5

    • SHA256

      cbd9b3cd696fa59c37d79d08bea05a24258a3df7e1ac913872cf131e2e14c994

    • SHA512

      ba40299d995a3bb14560bd31b6689c6db97fd568ff5153ab2aca55df691cce9d1e42ccb22ab36e29ab82077243fae6e31e5448c57ddf553eaab9632db35cd5f4

    Score
    6/10
    • Target

      com.evocon.appe.apk

    • Size

      1.1MB

    • MD5

      b828f2ca0b0f8f9bed6564b1e83a74cb

    • SHA1

      84e3b53fe4895656a00e8fed4246418f80e8be45

    • SHA256

      7836934ec4b81b9d4abe77b09d6fdcac005b299146bcb50ccc4007c0be3303f6

    • SHA512

      b014d4455ea33ec11cbf41d63b8bd51717452ecc00e408265df0aca42668d9515ea1e6e3d750fe41c5d9cd30ed398fc16f3e9d09108b3f17da01e05b9f014b6f

    • SSDEEP

      12288:FyzpA9/R55TYspNzd33tGcfloIYWy/RyIQTS/+oMzpw01K6UG/i4vaoLO1:AzyNBpNhHtvGIBSF6SWlFxKkaN

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries the mobile country code (MCC)

    • Target

      config.ar.apk

    • Size

      12KB

    • MD5

      518664c1c51df9d5adea198851b9610f

    • SHA1

      a9a9d9e205edf9a4a24623778ff5dd151b8f9c6b

    • SHA256

      ada455a25f5f402763f5deac38b0fc7dffd36b7bb26c63bf67dc83863e3746d7

    • SHA512

      bf1f02c015ab0a38b4308208934704e28a02c3e9d86ba4340088a324c786065b55c597cf24579254104d80f9cc7d74ece6de3d7b17c7f8a784223a4b5de47106

    • SSDEEP

      96:nD6u2co0MF6rPu69qg2qw0QGhOJ6Dez2+NaVObjkbua4+9H0N9mqLu8UhmL/pH0Q:+ucpMjF92D07OJpC+wWC4k98Uw6kF

    Score
    1/10
    • Target

      config.de.apk

    • Size

      12KB

    • MD5

      bd02f01c71ab14ef78eab64b4167a724

    • SHA1

      36ba1163a1a27143f8ef19af0323fa014e67bfcb

    • SHA256

      b8bd4984e8cb7398ac1c1285f1d65a472d205dfd1635cd9ec2571a3bd9676fb4

    • SHA512

      46ac93100ea2e50729c1dbe8610863841d44a079a4a7597c5fe6d0a662decb9fc24f6c801a59c461d1dedacb40cdfe5e7d40db5307744951f97cec3d24bcb2e9

    • SSDEEP

      96:vetgD1F6ruvnLEPdUjNvFRH4kCjQzlxSf+KzRFrcttTpNabUH0N9mqLu8UhmLC7X:4CfLSUj3R3KrzRFoHzEBk98UwWEk3d

    Score
    1/10
    • Target

      config.en.apk

    • Size

      24KB

    • MD5

      fc4dd1b097d5b58881b0fc7e946aa75b

    • SHA1

      a60881a07b9cb88b077a64b69401697eca615509

    • SHA256

      87028556244ebc19c2022540921b0803b01740b1c94b3059d41fdc19081c5ba8

    • SHA512

      00bd2d41d9a108afdd0cda239b64b1bdced69b38bf8e1ee7c8681f6eb5988ff1ed390173a3f90da1013b2e74ab84a3f5cb886e48ef8b40ddb6996f259756d355

    • SSDEEP

      192:mBNrEFnYO8X737b07u7r9uYhk98UwkLk0kA:4NwZXY737b07u7r9bkWUhL7kA

    Score
    1/10
    • Target

      config.es.apk

    • Size

      12KB

    • MD5

      bd60dcb968a097c10c5f1a2e240dfe41

    • SHA1

      1cc4a47696a175bf7bd068c04354dc0447709047

    • SHA256

      94f8e382a0f65517dc98f62bb8b19a98d125949ffa9105ec7a16c2c088b96d0c

    • SHA512

      32894159336b07ceb6c807dccd0f6e83cbaa3ea4c4145a9d7a93c85efa54b1cf3a2d3b8597cd7369fff3fb248ff96f6940791f5777f4099f851288c2ec68aafc

    • SSDEEP

      192:2yGaJ+6ELjhYetMKolqb45LG6NKAk98UwIWeXUykj:2yH1EL9gKolqbwvNrkWUFFUykj

    Score
    1/10
    • Target

      config.fr.apk

    • Size

      12KB

    • MD5

      c45cbdaad1a6ddd7fce6c3a60d5e750f

    • SHA1

      727f2be1045b4783b9e38093d85311e25d839471

    • SHA256

      4d93af4d8a90ec327c319fd25b4b4b5706fad16e558ac777b4bc04c90cb5b77f

    • SHA512

      71ee74b383a3a470d3781f9932201d5305a4494a4a5b1a3ef1267252c0b74bf9fde0d725a9ef3155f6c554273c523ebf6daf3bf4d38c3366b98336935fed7cba

    • SSDEEP

      96:7+qsOtvcJVb6rFwFiJFFi9yBhj0CHQ2Vzau5DiUiAVFUH0N9mqLu8UhmLH0NVoBU:3RmuhAiJbi9y70CHxd5Bk98UwATkW3

    Score
    1/10
    • Target

      config.hi.apk

    • Size

      12KB

    • MD5

      f088609c0b3b23175d21650057b991a6

    • SHA1

      5fa480112c4f06d674f6636dfa3cc6f6ff62a102

    • SHA256

      138496879e107dfa895d447df63cc43f746942e6b0ea0cab4f06f58e3434a9f2

    • SHA512

      2f5bb22cca3fc780e98f303042acbc526460114fe73cb538549e118f7131c8216d8b45a022926e29e5699b88e0e44c9ec6e10451c404cb93a99d6050ac666162

    • SSDEEP

      96:WCNfcwoMgt6Ah76rrmoxYTegpUuI/NwLwhJzEXmwpH0N9mqLu8UhmLMSfZi0N9m7:n+UIO/Lx0FpH+uLwIXmFk98UwgClk7

    Score
    1/10
    • Target

      config.in.apk

    • Size

      12KB

    • MD5

      7efa90ac1336d21c457c5c1ef11fd04f

    • SHA1

      c1604422a8e4cbc1e70d67e6209c140c8bf0572c

    • SHA256

      2f6e61545566165defa62888827e137ba211a75297fcb39189258df91db57ce6

    • SHA512

      a2616259eb6054954ed16ef5db9deac59b65fde907ca059304b94236eba5908b4e465c4bc1dc6636fde70332177465c47322a755e0e3bf584a6139c80641140c

    • SSDEEP

      96:QZiqtW5E8H676r3rWFLxynuW7d0wgmAEwuKlwmfP78H0N9mqLu8UhmL+nlwR0N9c:ktW5daOfWFdyrW188jpk98Uw9+kx

    Score
    1/10
    • Target

      config.it.apk

    • Size

      12KB

    • MD5

      01cebbe257ad7438d5bd3a78ac6ca723

    • SHA1

      b28eb39ba7d7ff75d733b561ecd3ce17b4342bfd

    • SHA256

      e837572475c03d20d8ce7fe3500d1478855e431b6d078e814a96d13c121ff1df

    • SHA512

      0c5753c0da232bd3c5ce3c2ac51e7c82c83c989e03b30c3b4e16bf907ec6ea8fe50c4e65f8539b5c25b1e6bde83a634f669cf76f10d99bffb26b3ceea109c607

    • SSDEEP

      96:xZkjq3rXxW6rfzz8XUJ8VPCXmaKRZpXH0N9mqLu8UhmLa7L0N9mqLP:Yqjjnz8XIXaWk98UwjkA

    Score
    1/10
    • Target

      config.ja.apk

    • Size

      12KB

    • MD5

      5370d4896320fb75331a3f80dd2cc488

    • SHA1

      04f1637d15bd19555e20194bfb29acac6d110c5d

    • SHA256

      3c5e3812213aa27d2b8a1db7e96c10f650e43dfe913cd271910f772bd84e09e2

    • SHA512

      e4ab528ba0a9617bd37f43368788bd392eda511f99dd33697756c67ca03104637bc9a88a89099a25db60ec70118536d6dd9d25fd2bc7738ac5b18563b5eb32f8

    • SSDEEP

      96:y7qiastD6rgFLR5+bWzx7JcRIUHH9BfWywTN46pFiBDH0N9mqLu8UhmLKa5X72fn:yuchR5FxexWywTuCk98UwG2aFk8z

    Score
    1/10

MITRE ATT&CK Matrix

Tasks

static1

Score
1/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

evasiontrojan
Score
6/10

behavioral4

Score
3/10

behavioral5

discoverypersistence
Score
6/10

behavioral6

collectioncredential_accessdiscoveryimpactpersistence
Score
7/10

behavioral7

collectioncredential_accessimpact
Score
7/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10