General
-
Target
Standoff123.apk
-
Size
857KB
-
Sample
240617-qzrhvsxdrq
-
MD5
48b9c6baac4cd5348b1d4c4baf90c90b
-
SHA1
dc153759069d38b25770221c9022a79838067d7c
-
SHA256
7af7345e3aaefd36eebd58b9db18b480f61dc50ce15ecdaad9f9895fa266e1a2
-
SHA512
2040de4a3508b2e91e5d30b7da7f55f5152e72c48d273131bc6c80d04862c7ed26b9680d045d79cdef3c9c41f8c8b031eab7a4c3fe3b75184d1cc3499cc8f6f0
-
SSDEEP
12288:SaR92J6sgRMLz7dpM+fAfT+Kc90ky5WmpYshXZPbGwidNpgQ:biJ6s9Lz7dplYfT+Ks0r5WmD9idNpj
Malware Config
Extracted
spynote
case-enclosed.gl.at.ply.gg:23165
Targets
-
-
Target
Standoff123.apk
-
Size
857KB
-
MD5
48b9c6baac4cd5348b1d4c4baf90c90b
-
SHA1
dc153759069d38b25770221c9022a79838067d7c
-
SHA256
7af7345e3aaefd36eebd58b9db18b480f61dc50ce15ecdaad9f9895fa266e1a2
-
SHA512
2040de4a3508b2e91e5d30b7da7f55f5152e72c48d273131bc6c80d04862c7ed26b9680d045d79cdef3c9c41f8c8b031eab7a4c3fe3b75184d1cc3499cc8f6f0
-
SSDEEP
12288:SaR92J6sgRMLz7dpM+fAfT+Kc90ky5WmpYshXZPbGwidNpgQ:biJ6s9Lz7dplYfT+Ks0r5WmD9idNpj
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-