General
-
Target
phoenix-2024.apk
-
Size
5.1MB
-
Sample
240903-mx6m8awbqh
-
MD5
ba2160d4969e8ae5af87638de8fd877a
-
SHA1
aa0e4fd47f2e806d8ffa2debc1325c6b1f1c2237
-
SHA256
6485ead2248298b48d4e677d3fb740b8ce8688bc7b4adb7a4d2ac3af827da46b
-
SHA512
b250c62845509736ac1c729777f89ae28275161b1103ed280d507b30e3bfee7a674bef752edae552d45fb6e2b9e5161582813c8d398d7776845b9be76878f1a7
-
SSDEEP
98304:lSzjfwxWeA9z9h78Rhz9y0+CkteiHvGyXztnwww2wYwvwzHHfroN7:lej39z9+0Zvte2vGyXztwhjJ4W
Malware Config
Extracted
cerberus
-
uri
/gate.php?action=botcheck&data=
/gate.php?action=checkAP&data=
/gate.php?action=getModule&data=
/gate.php?action=getinj&data=
/gate.php?action=injcheck&data=
/gate.php?action=registration&data=
/gate.php?action=sendInjectLogs&data=
/gate.php?action=sendKeylogger&data=
/gate.php?action=sendSmsLogs&data=
/gate.php?action=timeInject&data=