b71b8bb47805be25fce2ddfc4aa8210bf94478832f61d425d6e38c62a6afcd67 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

AntiSplit-G2 1.3.apk
Size

841KB
Sample

240721-x3zf7staml
MD5

830c0ae3b5c071e96f2107d48055ac0c
SHA1

21cb1bad46974397406244682a585b48cad60a69
SHA256

b71b8bb47805be25fce2ddfc4aa8210bf94478832f61d425d6e38c62a6afcd67
SHA512

dfb61645fbe1aa56eafcc76ed5968cd3efb1f171684e7e9a596aa7cf7d4abff54325adce780de96f8ae095bdc0a19d29b639591955f3eb6a131dee33b4e73862
SSDEEP

24576:wTeXbs47DeqjPliPP4PIVYtVj4iLspGgpzVO2:IibRe0Pli+lMiLuGOP

Score

6^/10

android

Malware Config

Targets

- Target
  
  AntiSplit-G2 1.3.apk
- Size
  
  841KB
- MD5
  
  830c0ae3b5c071e96f2107d48055ac0c
- SHA1
  
  21cb1bad46974397406244682a585b48cad60a69
- SHA256
  
  b71b8bb47805be25fce2ddfc4aa8210bf94478832f61d425d6e38c62a6afcd67
- SHA512
  
  dfb61645fbe1aa56eafcc76ed5968cd3efb1f171684e7e9a596aa7cf7d4abff54325adce780de96f8ae095bdc0a19d29b639591955f3eb6a131dee33b4e73862
- SSDEEP
  
  24576:wTeXbs47DeqjPliPP4PIVYtVj4iLspGgpzVO2:IibRe0Pli+lMiLuGOP
Score

6^/10
- Declares services with permission to bind to the system
- Legitimate hosting services abused for malware hosting/C2
- Requests dangerous framework permissions
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2