General
-
Target
17b7f10036031426be964a680c4c94f11d5a83412f9a01b2324c16a8e7b6ee81
-
Size
3.5MB
-
Sample
240805-cxzvkavakr
-
MD5
42ecc6919f1cbf5328b9b76fff6344f0
-
SHA1
1172dd19be27bed9fd54e6b78a8d8b1993350dee
-
SHA256
17b7f10036031426be964a680c4c94f11d5a83412f9a01b2324c16a8e7b6ee81
-
SHA512
f654689930fe7cb4217c196aba72749d77d56489ae915e5bb52edf47865f4e45c75c198e8737f28f62594c93d2fa6bdf4cc4b0eb457c1971c9fe669cdb71334a
-
SSDEEP
98304:7csUdnakXPFjph39UETnir1O1A9snPZFjt:ANjXdjL9UQE9snPZj
Static task
static1
Behavioral task
behavioral1
Sample
17b7f10036031426be964a680c4c94f11d5a83412f9a01b2324c16a8e7b6ee81.apk
Resource
android-x86-arm-20240624-en
Malware Config
Extracted
tispy
https://auth.familysafty.com/TiSPY/printIPN.jsp?screen=IntroScreen&model=Pixel+2&osversion=28&deviceid=358240051014041&version=3.2.183_04Aug24&rtype=T
Targets
-
-
Target
17b7f10036031426be964a680c4c94f11d5a83412f9a01b2324c16a8e7b6ee81
-
Size
3.5MB
-
MD5
42ecc6919f1cbf5328b9b76fff6344f0
-
SHA1
1172dd19be27bed9fd54e6b78a8d8b1993350dee
-
SHA256
17b7f10036031426be964a680c4c94f11d5a83412f9a01b2324c16a8e7b6ee81
-
SHA512
f654689930fe7cb4217c196aba72749d77d56489ae915e5bb52edf47865f4e45c75c198e8737f28f62594c93d2fa6bdf4cc4b0eb457c1971c9fe669cdb71334a
-
SSDEEP
98304:7csUdnakXPFjph39UETnir1O1A9snPZFjt:ANjXdjL9UQE9snPZj
-
TiSpy payload
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Queries the phone number (MSISDN for GSM devices)
-
Acquires the wake lock
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-