15255e2e349f2965de58bff86807db92cf88c3f5e554961572e6ecaa920d9a03 | Triage

Sharing

General

Target

Poweramp vbuild-946-uni [Modded].apk
Size

41.5MB
Sample

240811-tal4ma1aje
MD5

883d5090601c33aa7d3d0e41e503de43
SHA1

362e260a74a471674c999d9113f0aef8c45cc37c
SHA256

15255e2e349f2965de58bff86807db92cf88c3f5e554961572e6ecaa920d9a03
SHA512

08a1d0f47e57ae40bc234922915900f17bc5060df9144521d44946a15e2118e17099b0a0add855d2ca3288a6c3d007aa7e3d099c72e8a7cfb2ce0053c1c1fdba
SSDEEP

786432:64+BLNJla2TyUSk8LPln67nJc8zjq2XC1CsTEE2xsGN8P1icZppFHudpf21TUkhu:MhJk2T/pzJcIXmCsgEReyPDH8pfqUIVo

Score

7^/10

android banker discovery execution persistence

Malware Config

Targets

- Target
  
  Poweramp vbuild-946-uni [Modded].apk
- Size
  
  41.5MB
- MD5
  
  883d5090601c33aa7d3d0e41e503de43
- SHA1
  
  362e260a74a471674c999d9113f0aef8c45cc37c
- SHA256
  
  15255e2e349f2965de58bff86807db92cf88c3f5e554961572e6ecaa920d9a03
- SHA512
  
  08a1d0f47e57ae40bc234922915900f17bc5060df9144521d44946a15e2118e17099b0a0add855d2ca3288a6c3d007aa7e3d099c72e8a7cfb2ce0053c1c1fdba
- SSDEEP
  
  786432:64+BLNJla2TyUSk8LPln67nJc8zjq2XC1CsTEE2xsGN8P1icZppFHudpf21TUkhu:MhJk2T/pzJcIXmCsgEReyPDH8pfqUIVo
Score

1^/10
behavioral1
- Target
  
  origin.apk
- Size
  
  31.3MB
- MD5
  
  ece486ae4aae6f18609526fbbae908ec
- SHA1
  
  2d9ce34094baef393db56ef39477c9d24a3a8505
- SHA256
  
  5cb6fe7d1e0b5a78e3f54a636bde74d72ab1bc9521fac32daca1d86545e55369
- SHA512
  
  dea3d4288d3b3c324f36837361cd0c1a21c06f964228444c8496adacb50432d068c0b81d0cc0fc39bcfcc1ed4f61cb280bf70e3cf7e873a6f9009f3e2f660041
- SSDEEP
  
  786432:5c8LPltJLNle67FGPMs/8f1WYudd3/GBfmiMvK6U1bYx/k4l2wW:OoJhV1ucOl/Qfmn41bGd2wW
Score

7^/10

banker discovery execution persistence
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
- Queries information about active data network
  discovery
behavioral2
- Target
  
  origin.apk
- Size
  
  16.0MB
- MD5
  
  0de9ec07ef963bda262dc868fa96c422
- SHA1
  
  9cb91285218b49ca0daa45283009de5cdb3d15a8
- SHA256
  
  611178454a6d32ebf7ff5329c3c0a8ea498296aa4b0ef411f0ac413081cb2c19
- SHA512
  
  6a2db4311967ec9af9468f9c59bc589dfedc9ec1f36c331ec3bde1d4e81c048e5bdc4bce68a821e255a6d3db03a51ebf40cad1780f7a0469b5adffed5a04ff7d
- SSDEEP
  
  393216:3qA4TGo6Z8LPl3G6ilsLNBAonHAayi7olp:5oGl8LPl32lsLNSayi7olp
Score

1^/10
behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

Security Software Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

bankerdiscoveryexecutionpersistence

behavioral3