Resubmissions

03-09-2024 10:52

240903-myjvvawcjc 10

03-09-2024 10:51

240903-mx6m8awbqh 10

03-09-2024 10:51

240903-mx1f7swbqf 10

08-07-2024 10:30

240708-mj62tsvclr 10

06-02-2024 12:51

240206-p3xzdahchm 10

General

  • Target

    phoenix-2024.apk

  • Size

    5.1MB

  • Sample

    240708-mj62tsvclr

  • MD5

    ba2160d4969e8ae5af87638de8fd877a

  • SHA1

    aa0e4fd47f2e806d8ffa2debc1325c6b1f1c2237

  • SHA256

    6485ead2248298b48d4e677d3fb740b8ce8688bc7b4adb7a4d2ac3af827da46b

  • SHA512

    b250c62845509736ac1c729777f89ae28275161b1103ed280d507b30e3bfee7a674bef752edae552d45fb6e2b9e5161582813c8d398d7776845b9be76878f1a7

  • SSDEEP

    98304:lSzjfwxWeA9z9h78Rhz9y0+CkteiHvGyXztnwww2wYwvwzHHfroN7:lej39z9+0Zvte2vGyXztwhjJ4W

Score
10/10

Malware Config

Extracted

Family

cerberus

Attributes
  • uri

    /gate.php?action=botcheck&data=

    /gate.php?action=checkAP&data=

    /gate.php?action=getModule&data=

    /gate.php?action=getinj&data=

    /gate.php?action=injcheck&data=

    /gate.php?action=registration&data=

    /gate.php?action=sendInjectLogs&data=

    /gate.php?action=sendKeylogger&data=

    /gate.php?action=sendSmsLogs&data=

    /gate.php?action=timeInject&data=

Targets

    • Target

      phoenix-2024.apk

    • Size

      5.1MB

    • MD5

      ba2160d4969e8ae5af87638de8fd877a

    • SHA1

      aa0e4fd47f2e806d8ffa2debc1325c6b1f1c2237

    • SHA256

      6485ead2248298b48d4e677d3fb740b8ce8688bc7b4adb7a4d2ac3af827da46b

    • SHA512

      b250c62845509736ac1c729777f89ae28275161b1103ed280d507b30e3bfee7a674bef752edae552d45fb6e2b9e5161582813c8d398d7776845b9be76878f1a7

    • SSDEEP

      98304:lSzjfwxWeA9z9h78Rhz9y0+CkteiHvGyXztnwww2wYwvwzHHfroN7:lej39z9+0Zvte2vGyXztwhjJ4W

    Score
    1/10

MITRE ATT&CK Matrix

Tasks