triada | 66ee89f0f1f4f9990d26b4d5c4f67d9321273d5519d8082686ce7a838a570708 | Triage

Submit
Reports

Overview

overview

Static

static

GBWhatsApp_v10.06.apk

android-9-x86

8

Sharing

General

Target

GBWhatsApp_v10.06.apk
Size

76.3MB
Sample

240621-mfat8azdkl
MD5

8e7a6e727682382c4a99d385c71cfd82
SHA1

ee277662db8cad3cb3d5a2763eb360b7cf746462
SHA256

66ee89f0f1f4f9990d26b4d5c4f67d9321273d5519d8082686ce7a838a570708
SHA512

574bc1988d9df3401832eca16421c25e2b4656fe9089da28357121195124a2bbbf46ffe134181a0c81b9c9852f6f2375c2d91f2811ff91ad52e678b310147a39
SSDEEP

1572864:V1o1AOLAjIo0dVZPapJHhbozNMi66ieFMuSe/ZxM:YGR0dTQJoRouSeXM

Score

10^/10

triada android discovery execution impact persistence upx

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

GBWhatsApp_v10.06.apk

Resource

android-x86-arm-20240611.1-en

discovery execution impact persistence upx

android-9-x86

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  GBWhatsApp_v10.06.apk
- Size
  
  76.3MB
- MD5
  
  8e7a6e727682382c4a99d385c71cfd82
- SHA1
  
  ee277662db8cad3cb3d5a2763eb360b7cf746462
- SHA256
  
  66ee89f0f1f4f9990d26b4d5c4f67d9321273d5519d8082686ce7a838a570708
- SHA512
  
  574bc1988d9df3401832eca16421c25e2b4656fe9089da28357121195124a2bbbf46ffe134181a0c81b9c9852f6f2375c2d91f2811ff91ad52e678b310147a39
- SSDEEP
  
  1572864:V1o1AOLAjIo0dVZPapJHhbozNMi66ieFMuSe/ZxM:YGR0dTQJoRouSeXM
Score

8^/10

discovery execution impact persistence upx
- Patched UPX-packed file
  Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Acquires the wake lock
- Queries information about active data network
  discovery
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

Persistence

Event Triggered Execution

Broadcast Receivers

Scheduled Task/Job

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryexecutionimpactpersistenceupx

© 2018-2024

Terms | Privacy