General
-
Target
0e30948b3327a093bd7b35a10f65bc1f03a9b8d1d3e242dd6b5726e9136aaff0.zip
-
Size
13.5MB
-
Sample
240619-s1xglssgla
-
MD5
af48cb753dd527b3423571b6b8669529
-
SHA1
a4c7a2ef74e9c7d986f49086dfc6c038686dab10
-
SHA256
aed121a5d68ef14b550a0d202d27f0c2e1f677510dbf7e4c865778f8359bc5e5
-
SHA512
31365c27e00d206f300e8a6d1b9c5da1cfd2f5a2859aa144bafe48e20d55e8a3fdf88156acbf1f0dd678675395d49d4d8b6eaa02770bf0cd36304c51cc41643a
-
SSDEEP
393216:OivIiAeCdW/SdLL1g867UG98Ub4z8mb+N:OigiAeYF1g3B98UQbO
Malware Config
Targets
-
-
Target
0e30948b3327a093bd7b35a10f65bc1f03a9b8d1d3e242dd6b5726e9136aaff0.apk
-
Size
16.0MB
-
MD5
be5e2f074432526ef36156e82bb219cf
-
SHA1
6cf0b782485e77218710fa024f1c11f122d84f60
-
SHA256
0e30948b3327a093bd7b35a10f65bc1f03a9b8d1d3e242dd6b5726e9136aaff0
-
SHA512
84633c70391513b388cdaf77634e0c6a60d270be121bfef6d94cbcc5f88e34a929659d13d2f05348e83f56c356be3eb9dc9fc44fbeca8cf6637cc19cba8af845
-
SSDEEP
393216:yf0YUtNuYwbvbaSafQ0Wejue+95sweOsjIYPaP:y9GNujbDaS4WeaeI5sqC8
Score8/10-
Checks if the Android device is rooted.
-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Acquires the wake lock
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Checks the presence of a debugger
-