bc22baff93b8a2b8e543ca4272dbcbd5dc528e36fe38263d72e9b60f3ec31ee5 | Triage

Sharing

General

Target

com.einnovation.temu_2.72.5.apk
Size

34.8MB
Sample

240606-pyfvasec4x
MD5

ecc93caf5f9d4a147d2608414ea15f3d
SHA1

c3a090d70a9fbf1b2a634ceed4792a3487b24d49
SHA256

bc22baff93b8a2b8e543ca4272dbcbd5dc528e36fe38263d72e9b60f3ec31ee5
SHA512

228843bc80d0a917f473492cf26207fb5088e112f80fe664122a1eb5e709e855d205b2d5dd2224afa83d5197f1d3e6573ef6b3e885736162b6ed7ec80c0e60ce
SSDEEP

196608:okZ717uNyfLTNd3o+E6qtJssPTyso6bGFPSUO+s7dY6:okZ7QKQ+E6qt2sPTyL6e6TZ1

Score

8^/10

android discovery evasion impact

Malware Config

Targets

- Target
  
  com.einnovation.temu_2.72.5.apk
- Size
  
  34.8MB
- MD5
  
  ecc93caf5f9d4a147d2608414ea15f3d
- SHA1
  
  c3a090d70a9fbf1b2a634ceed4792a3487b24d49
- SHA256
  
  bc22baff93b8a2b8e543ca4272dbcbd5dc528e36fe38263d72e9b60f3ec31ee5
- SHA512
  
  228843bc80d0a917f473492cf26207fb5088e112f80fe664122a1eb5e709e855d205b2d5dd2224afa83d5197f1d3e6573ef6b3e885736162b6ed7ec80c0e60ce
- SSDEEP
  
  196608:okZ717uNyfLTNd3o+E6qtJssPTyso6bGFPSUO+s7dY6:okZ7QKQ+E6qt2sPTyL6e6TZ1
Score

8^/10

discovery evasion impact
- Checks if the Android device is rooted.
  evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Acquires the wake lock
- Queries information about active data network
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Process Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionimpact