18e38d49eba39e03b0caab075fcd54c66a720832a4ca30a3b432fbf8da99b004 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

GHHC-HACKBAR.apk
Size

5.0MB
Sample

240817-cwt8pasbng
MD5

87248ebda26e10134fc1172bad584d22
SHA1

c24e5fef709720ac2b4f3fff21c4bed6dcc54073
SHA256

18e38d49eba39e03b0caab075fcd54c66a720832a4ca30a3b432fbf8da99b004
SHA512

78b6dcde045d01905463c6f6e423b615aa28282d64029c4311ef8cd33263386d7a23a91b1607de3d1b7ec12dbfc18b9c5e8642f3077c6b4692ec127a55a5c7d9
SSDEEP

98304:sL0PJXKLJ28prnbu5ekrXvkmdrSfE1yYVP5F/2YYnCGDhRhH7h8Whzzzhsn:/V8prny5eOvFddeYYnCs/F8iXda

Score

7^/10

android collection credential_access discovery impact persistence

Malware Config

Targets

- Target
  
  GHHC-HACKBAR.apk
- Size
  
  5.0MB
- MD5
  
  87248ebda26e10134fc1172bad584d22
- SHA1
  
  c24e5fef709720ac2b4f3fff21c4bed6dcc54073
- SHA256
  
  18e38d49eba39e03b0caab075fcd54c66a720832a4ca30a3b432fbf8da99b004
- SHA512
  
  78b6dcde045d01905463c6f6e423b615aa28282d64029c4311ef8cd33263386d7a23a91b1607de3d1b7ec12dbfc18b9c5e8642f3077c6b4692ec127a55a5c7d9
- SSDEEP
  
  98304:sL0PJXKLJ28prnbu5ekrXvkmdrSfE1yYVP5F/2YYnCGDhRhH7h8Whzzzhsn:/V8prny5eOvFddeYYnCs/F8iXda
Score

7^/10

discovery impact persistence collection credential_access
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Queries the mobile country code (MCC)
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

System Information Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

discoveryimpactpersistence

behavioral2

collectioncredential_accessimpact