triada | 5076949906171a24f0e5d886526437f4cd0d793d4e85086ed545aadfc38288e5 | Triage

Sharing

General

Target

GBWhatsApp_Pro_v17.57-gbup.net.apk
Size

70.3MB
Sample

240706-khtn1asern
MD5

b88758f0c475c3650a401946704b429e
SHA1

b9582b8abedbbc72869b3f6c045e48319a11b0a4
SHA256

5076949906171a24f0e5d886526437f4cd0d793d4e85086ed545aadfc38288e5
SHA512

da1f5ea9417f9cb1ffc6d99ca0a64e05712140040bddca3c2f2b11967a8bcc8220ddc71cff348bd221bde97d025bbfcc86aed8a220872e9e9e5c1be6ea41c31c
SSDEEP

1572864:r8UoM4JUteDelCAsD9zOUehYkM+U8mR3+iJ:rfoIteDelC59H3kRqRpJ

Score

10^/10

triada android discovery execution impact persistence

Malware Config

Targets

- Target
  
  GBWhatsApp_Pro_v17.57-gbup.net.apk
- Size
  
  70.3MB
- MD5
  
  b88758f0c475c3650a401946704b429e
- SHA1
  
  b9582b8abedbbc72869b3f6c045e48319a11b0a4
- SHA256
  
  5076949906171a24f0e5d886526437f4cd0d793d4e85086ed545aadfc38288e5
- SHA512
  
  da1f5ea9417f9cb1ffc6d99ca0a64e05712140040bddca3c2f2b11967a8bcc8220ddc71cff348bd221bde97d025bbfcc86aed8a220872e9e9e5c1be6ea41c31c
- SSDEEP
  
  1572864:r8UoM4JUteDelCAsD9zOUehYkM+U8mR3+iJ:rfoIteDelC59H3kRqRpJ
Score

6^/10

discovery execution impact persistence
- Acquires the wake lock
- Queries information about active data network
  discovery
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

Persistence

Event Triggered Execution

Broadcast Receivers

Scheduled Task/Job

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryexecutionimpactpersistence