General
-
Target
6a386248e8856ebd0841cb70e0433189b251c4dbe9bc2dce2096d6996266abbe.apk
-
Size
3.7MB
-
Sample
240615-b4qd2avcpa
-
MD5
085e45a58084320319df1ef0fffbdac4
-
SHA1
9cb8d7e4d84c8abe52a99e373fbc91834c6aa854
-
SHA256
6a386248e8856ebd0841cb70e0433189b251c4dbe9bc2dce2096d6996266abbe
-
SHA512
c91b0627d0681346fc6ed00c5da21ad0537a1964061e70b5ea703e2e9c7ce682758b03fa212976b78561e9cc20036b6955f1175def6bdd5053ddc963c02791b3
-
SSDEEP
98304:9mL/mQjQ6PB/QxfassCyjslc1FTo7lNCQhXY:KOQjRJ/QVzojs+G7XVXY
Malware Config
Targets
-
-
Target
6a386248e8856ebd0841cb70e0433189b251c4dbe9bc2dce2096d6996266abbe.apk
-
Size
3.7MB
-
MD5
085e45a58084320319df1ef0fffbdac4
-
SHA1
9cb8d7e4d84c8abe52a99e373fbc91834c6aa854
-
SHA256
6a386248e8856ebd0841cb70e0433189b251c4dbe9bc2dce2096d6996266abbe
-
SHA512
c91b0627d0681346fc6ed00c5da21ad0537a1964061e70b5ea703e2e9c7ce682758b03fa212976b78561e9cc20036b6955f1175def6bdd5053ddc963c02791b3
-
SSDEEP
98304:9mL/mQjQ6PB/QxfassCyjslc1FTo7lNCQhXY:KOQjRJ/QVzojs+G7XVXY
Score10/10-
TiSpy
TiSpy is an Android stalkerware.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Queries the phone number (MSISDN for GSM devices)
-
Requests cell location
Uses Android APIs to to get current cell location.
-
Acquires the wake lock
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-
Reads information about phone network operator.
-