General

  • Target

    GBWhatsApp_v10.06.apk

  • Size

    76.3MB

  • Sample

    240621-mfat8azdkl

  • MD5

    8e7a6e727682382c4a99d385c71cfd82

  • SHA1

    ee277662db8cad3cb3d5a2763eb360b7cf746462

  • SHA256

    66ee89f0f1f4f9990d26b4d5c4f67d9321273d5519d8082686ce7a838a570708

  • SHA512

    574bc1988d9df3401832eca16421c25e2b4656fe9089da28357121195124a2bbbf46ffe134181a0c81b9c9852f6f2375c2d91f2811ff91ad52e678b310147a39

  • SSDEEP

    1572864:V1o1AOLAjIo0dVZPapJHhbozNMi66ieFMuSe/ZxM:YGR0dTQJoRouSeXM

Malware Config

Targets

    • Target

      GBWhatsApp_v10.06.apk

    • Size

      76.3MB

    • MD5

      8e7a6e727682382c4a99d385c71cfd82

    • SHA1

      ee277662db8cad3cb3d5a2763eb360b7cf746462

    • SHA256

      66ee89f0f1f4f9990d26b4d5c4f67d9321273d5519d8082686ce7a838a570708

    • SHA512

      574bc1988d9df3401832eca16421c25e2b4656fe9089da28357121195124a2bbbf46ffe134181a0c81b9c9852f6f2375c2d91f2811ff91ad52e678b310147a39

    • SSDEEP

      1572864:V1o1AOLAjIo0dVZPapJHhbozNMi66ieFMuSe/ZxM:YGR0dTQJoRouSeXM

    • Patched UPX-packed file

      Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Acquires the wake lock

    • Queries information about active data network

    • Reads information about phone network operator.

MITRE ATT&CK Mobile v15

Tasks