General

  • Target

    MBWhatsApp_1.4.1_by_stefanoYG.apk

  • Size

    84.5MB

  • Sample

    240916-2k5ygstdjp

  • MD5

    55bdfa0ec855faa3a9fed582465c4388

  • SHA1

    3b7fcd78cc8a1c9e06057d6534f218c320da04a2

  • SHA256

    7445259625fbd39caa72958eb6750d2b4f658b4cdac4dbef56bcfe0b05a07af7

  • SHA512

    d6bca86140dde35b189a62056153087927b0af6c562f9eaf334f918bc0c5030ea6924b506677829144452e0d34bc62ee26ddcf44858f1da2593a5e45e6b6ef65

  • SSDEEP

    1572864:strEdbcmfQc20Q3ZDI24ehVGHfbq4znXc/B46PuK27NftACK:CEdomocQ3ZDI24dHfbq4znXURPuK2zg

Malware Config

Targets

    • Target

      MBWhatsApp_1.4.1_by_stefanoYG.apk

    • Size

      84.5MB

    • MD5

      55bdfa0ec855faa3a9fed582465c4388

    • SHA1

      3b7fcd78cc8a1c9e06057d6534f218c320da04a2

    • SHA256

      7445259625fbd39caa72958eb6750d2b4f658b4cdac4dbef56bcfe0b05a07af7

    • SHA512

      d6bca86140dde35b189a62056153087927b0af6c562f9eaf334f918bc0c5030ea6924b506677829144452e0d34bc62ee26ddcf44858f1da2593a5e45e6b6ef65

    • SSDEEP

      1572864:strEdbcmfQc20Q3ZDI24ehVGHfbq4znXc/B46PuK27NftACK:CEdomocQ3ZDI24dHfbq4znXURPuK2zg

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Acquires the wake lock

    • Legitimate hosting services abused for malware hosting/C2

    • Queries information about active data network

    • Reads information about phone network operator.

MITRE ATT&CK Enterprise v15

MITRE ATT&CK Mobile v15

Tasks