Overview

overview

10

Static

static

10

755f4423fd...f9.apk

android-9-x86

6

755f4423fd...f9.apk

android-10-x64

6

755f4423fd...f9.apk

android-11-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    755f4423fdb1f32f1072c7360dc08e34c233b108f3212821fa0bace5bc5ccaf9.bin

  • Size

    3.7MB

  • Sample

    240718-1w3f3aydkj

  • MD5

    598126ba5a154e93f973cd1e6f5acbdc

  • SHA1

    87fd623875b4bf84d78812eabd275a2df24da127

  • SHA256

    755f4423fdb1f32f1072c7360dc08e34c233b108f3212821fa0bace5bc5ccaf9

  • SHA512

    f42bd82c11f0cfc33eda7c6b1e905ea69ffc1587238f5ea3f78ca38bd2df0f113d0ba31cd771414e9af675e2ed7f89b7f32fc85f40d59c810d564846c5153907

  • SSDEEP

    98304:m3E4bstshWhGIN//DkCslamj0Mz8Bksu3OJkXiuh1:m04bfWBtI0Mz8E3Ozuh1

Score
10/10
godfatherandroidevasionimpactpersistence

Malware Config

Extracted

Family

godfather

C2

https://t.me/mazokoveraser

Targets

    • Target

      755f4423fdb1f32f1072c7360dc08e34c233b108f3212821fa0bace5bc5ccaf9.bin

    • Size

      3.7MB

    • MD5

      598126ba5a154e93f973cd1e6f5acbdc

    • SHA1

      87fd623875b4bf84d78812eabd275a2df24da127

    • SHA256

      755f4423fdb1f32f1072c7360dc08e34c233b108f3212821fa0bace5bc5ccaf9

    • SHA512

      f42bd82c11f0cfc33eda7c6b1e905ea69ffc1587238f5ea3f78ca38bd2df0f113d0ba31cd771414e9af675e2ed7f89b7f32fc85f40d59c810d564846c5153907

    • SSDEEP

      98304:m3E4bstshWhGIN//DkCslamj0Mz8Bksu3OJkXiuh1:m04bfWBtI0Mz8E3Ozuh1

    Score
    6/10
    evasionimpactpersistence

    • Acquires the wake lock

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Performs UI accessibility actions on behalf of the user

      Application may abuse the accessibility service to prevent their removal.

      evasion
    behavioral1behavioral2behavioral3

MITRE ATT&CK Mobile v15

Tasks