triada | 69f2a65a4da4b1682c1a26d646ee09f8e88c494b33babcc939046f25b334fa05 | Triage

Submit
Reports

Overview

overview

Static

static

WhatsApp.apk

android-13-x64

7

Resubmissions

15-09-2024 12:52

240915-p4a61athjd 10

11-07-2024 19:59

240711-yqplxa1gnr 10

Sharing

General

Target

WhatsApp.apk
Size

106.2MB
Sample

240915-p4a61athjd
MD5

5585c7795cf5bfdedd89ba63577b5b38
SHA1

92c0fc7aafecbf79caee6e7e45d577b2e2fc13a2
SHA256

69f2a65a4da4b1682c1a26d646ee09f8e88c494b33babcc939046f25b334fa05
SHA512

464c2c08fa103d1c7a375a05b718ac71daa21feaa85170824bbe50a5aee4049fe871cfba37815d1ccc7809dab1f3c498465a99dc345a3e0bcef6bf76b662ce3e
SSDEEP

1572864:c2sbAKTqxPDzYTxgHR5KnRjxcuKCno89U7qfnfNnrScZFj8EkLUAfbhn/dLtaatJ:rsUKTq1YURQxcuKt89hHNxRoNJtsCGQh

Score

10^/10

triada android discovery evasion execution impact persistence upx

Static task

static1

6 signatures

Behavioral task

behavioral1

Sample

WhatsApp.apk

Resource

android-33-x64-arm64-20240624-en

discovery evasion execution impact persistence

android-13-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  WhatsApp.apk
- Size
  
  106.2MB
- MD5
  
  5585c7795cf5bfdedd89ba63577b5b38
- SHA1
  
  92c0fc7aafecbf79caee6e7e45d577b2e2fc13a2
- SHA256
  
  69f2a65a4da4b1682c1a26d646ee09f8e88c494b33babcc939046f25b334fa05
- SHA512
  
  464c2c08fa103d1c7a375a05b718ac71daa21feaa85170824bbe50a5aee4049fe871cfba37815d1ccc7809dab1f3c498465a99dc345a3e0bcef6bf76b662ce3e
- SSDEEP
  
  1572864:c2sbAKTqxPDzYTxgHR5KnRjxcuKCno89U7qfnfNnrScZFj8EkLUAfbhn/dLtaatJ:rsUKTq1YURQxcuKt89hHNxRoNJtsCGQh
Score

7^/10

discovery evasion execution impact persistence
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Acquires the wake lock
- Queries information about active data network
  discovery
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionexecutionimpactpersistence

© 2018-2024

Terms | Privacy