f3abc39f34f77db6ee8b89352354b08a67c9fbb4f6da8a3974c9a3bee681366f | Triage

Resubmissions

21/06/2024, 00:30

240621-atq25stcpg 7

Sharing

Copy URL Twitter E-mail

General

Target

DonCP.apk
Size

28.5MB
Sample

240621-atq25stcpg
MD5

f43de22b95409b38bbd453c9b5b5faeb
SHA1

523e66110bd7fc0e6b4080e9db1d36553278abe8
SHA256

f3abc39f34f77db6ee8b89352354b08a67c9fbb4f6da8a3974c9a3bee681366f
SHA512

fae7a457e4b2cc8e686d08b6ec082282b8545cd9d462344e84df1ab492035c3872b137119860a5dc87ca6dc583c252cf837ddeaaa445ba6b455ab39afe8b701f
SSDEEP

393216:p2OychkbRrvfJehigbytVUNLe/tu99lkNRPwMdB74mWDNGYW9hOimPM23a//aqg:UncYZfJeMVUhe/ATkbPb4nQHhaLang

Score

7^/10

android collection credential_access discovery evasion execution impact persistence

Malware Config

Targets

- Target
  
  DonCP.apk
- Size
  
  28.5MB
- MD5
  
  f43de22b95409b38bbd453c9b5b5faeb
- SHA1
  
  523e66110bd7fc0e6b4080e9db1d36553278abe8
- SHA256
  
  f3abc39f34f77db6ee8b89352354b08a67c9fbb4f6da8a3974c9a3bee681366f
- SHA512
  
  fae7a457e4b2cc8e686d08b6ec082282b8545cd9d462344e84df1ab492035c3872b137119860a5dc87ca6dc583c252cf837ddeaaa445ba6b455ab39afe8b701f
- SSDEEP
  
  393216:p2OychkbRrvfJehigbytVUNLe/tu99lkNRPwMdB74mWDNGYW9hOimPM23a//aqg:UncYZfJeMVUhe/ATkbPb4nQHhaLang
Score

7^/10

discovery evasion execution persistence collection credential_access impact
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Acquires the wake lock
- Queries information about active data network
  discovery
- Queries the mobile country code (MCC)
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

Persistence

Event Triggered Execution

Broadcast Receivers

Scheduled Task/Job

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

discoveryevasionexecutionpersistence

behavioral2

collectioncredential_accessdiscoveryevasionexecutionimpactpersistence