soumnibot | 1c8cddbf80b943ad3309bb7cc065208d6bd249cd91a4aa9ced4b58f5b3d0cf3d | Triage

Sharing

General

Target

1c8cddbf80b943ad3309bb7cc065208d6bd249cd91a4aa9ced4b58f5b3d0cf3d.bin
Size

3.6MB
Sample

240828-11vl1syemg
MD5

b3b2613e023572336a06ed783673440f
SHA1

9b8c1fa3f2f42f1dc82128be66b4aef86a9f1a2a
SHA256

1c8cddbf80b943ad3309bb7cc065208d6bd249cd91a4aa9ced4b58f5b3d0cf3d
SHA512

8c322a53e0a3a33b801fd93d6d7a8813ce8f8427da9a16dbb636ed400b71692e2a6a9f53e959ca392e939ffe9227f4718222616999319445c63ab218c6554cbb
SSDEEP

98304:yjrsEgb26OE2Io5crog9wEl1OadvPXw5ZW:8QOE2Io5c0gJl17vPXwTW

Score

10^/10

soumnibot android discovery evasion persistence

Malware Config

Targets

- Target
  
  1c8cddbf80b943ad3309bb7cc065208d6bd249cd91a4aa9ced4b58f5b3d0cf3d.bin
- Size
  
  3.6MB
- MD5
  
  b3b2613e023572336a06ed783673440f
- SHA1
  
  9b8c1fa3f2f42f1dc82128be66b4aef86a9f1a2a
- SHA256
  
  1c8cddbf80b943ad3309bb7cc065208d6bd249cd91a4aa9ced4b58f5b3d0cf3d
- SHA512
  
  8c322a53e0a3a33b801fd93d6d7a8813ce8f8427da9a16dbb636ed400b71692e2a6a9f53e959ca392e939ffe9227f4718222616999319445c63ab218c6554cbb
- SSDEEP
  
  98304:yjrsEgb26OE2Io5crog9wEl1OadvPXw5ZW:8QOE2Io5c0gJl17vPXwTW
Score

6^/10

discovery evasion persistence
- Queries information about active data network
  discovery
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Hide Artifacts

User Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence