bfa612757463a5c569bb0680073a8a6ce3905e09c425831096ac02bcf9463906 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

com-mod-wavelet-mod-apk-24-05-premium-2168.apk
Size

4.6MB
Sample

240822-x54hyatemc
MD5

0f8552f52f97698805d25729aea89ec7
SHA1

3b5dfc7726041dbded108a716ce6581a179b1992
SHA256

bfa612757463a5c569bb0680073a8a6ce3905e09c425831096ac02bcf9463906
SHA512

482c402277c6889a8fe3ffff3b237b0e8919e7cf75c620e227ddb90b6c97827e98b973b6d04e441fd0e44cbaea796ea597779034babb8ece9c571bd719a99e06
SSDEEP

98304:pPwXL8hVyaN9Fm/M0hLQ7Sl3ty9tkdLkz1rkR3pIZ/Krmpe:ewhVDzFmkNOlE8SlCb

Score

7^/10

android evasion persistence

Malware Config

Targets

- Target
  
  com-mod-wavelet-mod-apk-24-05-premium-2168.apk
- Size
  
  4.6MB
- MD5
  
  0f8552f52f97698805d25729aea89ec7
- SHA1
  
  3b5dfc7726041dbded108a716ce6581a179b1992
- SHA256
  
  bfa612757463a5c569bb0680073a8a6ce3905e09c425831096ac02bcf9463906
- SHA512
  
  482c402277c6889a8fe3ffff3b237b0e8919e7cf75c620e227ddb90b6c97827e98b973b6d04e441fd0e44cbaea796ea597779034babb8ece9c571bd719a99e06
- SSDEEP
  
  98304:pPwXL8hVyaN9Fm/M0hLQ7Sl3ty9tkdLkz1rkR3pIZ/Krmpe:ewhVDzFmkNOlE8SlCb
Score

7^/10

evasion persistence
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  evasion persistence
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Foreground Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Foreground Persistence

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

evasionpersistence

behavioral2

evasionpersistence