irata | 76a8d06ffe1be684e5be20aca8b45e6bdd0399b7870ff6ed17e67284a762560c | Triage

Sharing

General

Target

app.apk
Size

2.8MB
Sample

240614-sy6mhazgpk
MD5

3b101fa1cdecde692d532e283cde0965
SHA1

d5bddb3d1d78a1ccaf08008144b40380a76e4792
SHA256

76a8d06ffe1be684e5be20aca8b45e6bdd0399b7870ff6ed17e67284a762560c
SHA512

e37586d79e676ff6aa613b216d80ad3fdcc73c5b74780d818b1bf2f79c06c706d5277571f151809a16ad8ee032963995f31132a210b0da87736d99ac79fced3d
SSDEEP

49152:HU/q6xEtzSF8vds66oL6WCJnAokqjcOjNO5Y/3CHLQYB4P9X3R5oHYWF:HCq6CBtvG6D6WoOORB/3sLQzFXvS

Score

10^/10

irata android collection credential_access discovery impact persistence

Malware Config

Targets

- Target
  
  app.apk
- Size
  
  2.8MB
- MD5
  
  3b101fa1cdecde692d532e283cde0965
- SHA1
  
  d5bddb3d1d78a1ccaf08008144b40380a76e4792
- SHA256
  
  76a8d06ffe1be684e5be20aca8b45e6bdd0399b7870ff6ed17e67284a762560c
- SHA512
  
  e37586d79e676ff6aa613b216d80ad3fdcc73c5b74780d818b1bf2f79c06c706d5277571f151809a16ad8ee032963995f31132a210b0da87736d99ac79fced3d
- SSDEEP
  
  49152:HU/q6xEtzSF8vds66oL6WCJnAokqjcOjNO5Y/3CHLQYB4P9X3R5oHYWF:HCq6CBtvG6D6WoOORB/3sLQzFXvS
Score

7^/10

discovery persistence collection credential_access impact
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Acquires the wake lock
- Queries information about active data network
  discovery
- Queries the mobile country code (MCC)
  discovery
- Reads information about phone network operator.
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

discoverypersistence

behavioral2

collectioncredential_accessdiscoveryimpactpersistence

behavioral3

collectioncredential_accessdiscoveryimpact