soumnibot | f000e7e8234bac4f2efb277b69b2db8311bc5676116d7208a5598c9d6d96a9f2 | Triage

Sharing

General

Target

f000e7e8234bac4f2efb277b69b2db8311bc5676116d7208a5598c9d6d96a9f2.bin
Size

3.6MB
Sample

240729-1zfrgashjl
MD5

1ac099832e94f9af3b7969f3c33fa6a0
SHA1

cd2356ec06a1981dc965e351d7bd05fe524cf4fe
SHA256

f000e7e8234bac4f2efb277b69b2db8311bc5676116d7208a5598c9d6d96a9f2
SHA512

25018e3251329daa1fd65dc7245c11c568e4f8aacbe4c1f6b2e0489e81fc203792dd77a3930c69f277a3d42eca735194712e1e84e262d711cae56cad49d47bb7
SSDEEP

98304:a16x0JV45PUAmxrs4DjUyh0MPOgZ07GJY3vC9YAb2ThTeP:A8cAegijkPk07omv9lhTeP

Score

10^/10

soumnibot android discovery evasion persistence

Malware Config

Targets

- Target
  
  f000e7e8234bac4f2efb277b69b2db8311bc5676116d7208a5598c9d6d96a9f2.bin
- Size
  
  3.6MB
- MD5
  
  1ac099832e94f9af3b7969f3c33fa6a0
- SHA1
  
  cd2356ec06a1981dc965e351d7bd05fe524cf4fe
- SHA256
  
  f000e7e8234bac4f2efb277b69b2db8311bc5676116d7208a5598c9d6d96a9f2
- SHA512
  
  25018e3251329daa1fd65dc7245c11c568e4f8aacbe4c1f6b2e0489e81fc203792dd77a3930c69f277a3d42eca735194712e1e84e262d711cae56cad49d47bb7
- SSDEEP
  
  98304:a16x0JV45PUAmxrs4DjUyh0MPOgZ07GJY3vC9YAb2ThTeP:A8cAegijkPk07omv9lhTeP
Score

6^/10

discovery evasion persistence
- Queries information about active data network
  discovery
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Hide Artifacts

User Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence