smsagent | 1aadc15493f6f4fe54e4a9769ff02384672b548bc605c79cda714d99065e656c | Triage

Sharing

General

Target

CheatStandoff_2.1.apk
Size

5.4MB
Sample

240620-y5qgrawcpg
MD5

8a7559806542b099f450c9a2d410fd03
SHA1

890e688a213451e021ee3621d2b55fc48c5d7e17
SHA256

1aadc15493f6f4fe54e4a9769ff02384672b548bc605c79cda714d99065e656c
SHA512

8785c64a8f3f0e4066d522ec02c776a7d3af25ac788554ab49d25b10361b9eefb91b3767fb343334ae09f5212f3b90b0c716cd72abaea2e01c4e3eec7dfd9cdb
SSDEEP

98304:IICMbwEBSiz9Jf1h8AgoJgO1RqL3ZBSLqXQXqULcuaOCVPI0Pz63a7//BBq:IobLBSipx38dQ1RqLHW0QaUArg0Pz62a

Score

10^/10

smsagent android evasion impact persistence

Malware Config

Targets

- Target
  
  CheatStandoff_2.1.apk
- Size
  
  5.4MB
- MD5
  
  8a7559806542b099f450c9a2d410fd03
- SHA1
  
  890e688a213451e021ee3621d2b55fc48c5d7e17
- SHA256
  
  1aadc15493f6f4fe54e4a9769ff02384672b548bc605c79cda714d99065e656c
- SHA512
  
  8785c64a8f3f0e4066d522ec02c776a7d3af25ac788554ab49d25b10361b9eefb91b3767fb343334ae09f5212f3b90b0c716cd72abaea2e01c4e3eec7dfd9cdb
- SSDEEP
  
  98304:IICMbwEBSiz9Jf1h8AgoJgO1RqL3ZBSLqXQXqULcuaOCVPI0Pz63a7//BBq:IobLBSipx38dQ1RqLHW0QaUArg0Pz62a
Score

6^/10

evasion impact persistence
- Acquires the wake lock
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  evasion persistence
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Foreground Persistence

Privilege Escalation

Defense Evasion

Foreground Persistence

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

evasionimpactpersistence

behavioral2

evasionimpactpersistence

behavioral3

evasionimpactpersistence