General

  • Target

    Advanced+Xperia+Z+Launcher+v2.0.4.apk

  • Size

    2.2MB

  • Sample

    240616-z3h6bsyble

  • MD5

    6ea9af65a967759a8e5f224259ce50af

  • SHA1

    ac6159cf07753dee94c20451a567ef2384a312dc

  • SHA256

    06325b83aec99f4f5f0aace6b8b7333cf81f2a732c1c118f3d351fdcefbe9756

  • SHA512

    d7fe9e8c0390eb561ed673e414b65fa5d08538a93da0151291bd964567eb620f294239efff0803b0aaeb8be41600c14b6f8c389f829487084d195836a707a391

  • SSDEEP

    49152:NoItoyFXsvFtU9bbouoVUwfKa5fQoYymCsyVZ1WAx4Ns:FtxcraXouoVdia5o+3PVZ1gm

Malware Config

Targets

    • Target

      Advanced+Xperia+Z+Launcher+v2.0.4.apk

    • Size

      2.2MB

    • MD5

      6ea9af65a967759a8e5f224259ce50af

    • SHA1

      ac6159cf07753dee94c20451a567ef2384a312dc

    • SHA256

      06325b83aec99f4f5f0aace6b8b7333cf81f2a732c1c118f3d351fdcefbe9756

    • SHA512

      d7fe9e8c0390eb561ed673e414b65fa5d08538a93da0151291bd964567eb620f294239efff0803b0aaeb8be41600c14b6f8c389f829487084d195836a707a391

    • SSDEEP

      49152:NoItoyFXsvFtU9bbouoVUwfKa5fQoYymCsyVZ1WAx4Ns:FtxcraXouoVdia5o+3PVZ1gm

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

MITRE ATT&CK Mobile v15

Tasks