Overview

overview

10

Static

static

10

19880f372f...e3.apk

android-9-x86

8

19880f372f...e3.apk

android-10-x64

8

19880f372f...e3.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    19880f372f3bcf059e43129f56978ee3

  • Size

    39.3MB

  • Sample

    240916-w2p1pssglh

  • MD5

    19880f372f3bcf059e43129f56978ee3

  • SHA1

    b06cf40b5a7668fbcf3880e3cb5af175fca8a773

  • SHA256

    bde3d81846abd79435187497bb1d52b24c6c1d6fc9047e2dc2be61b23db3bd61

  • SHA512

    1f51ef868e1cccda46cd2661cd51849065d49d01f21a78b86ae3cf270adbfadb0b7b3d065feaa710f5f552894766f983ee47a865b9e0858396d65ace37ce38a6

  • SSDEEP

    786432:Bxh2ou5DO1dZDV1FirhsjXe2j4u+WA0ltQsm3dSxea39WSt2XT60RTTc5M:bhYZsdpTFskXHj4u+B0leZNaea8St2Xf

Score
10/10
spymaxandroidevasionpersistencestealthtrojan

Malware Config

Extracted

Family

spymax

C2

khalss.zapto.org:1337

Targets

    • Target

      19880f372f3bcf059e43129f56978ee3

    • Size

      39.3MB

    • MD5

      19880f372f3bcf059e43129f56978ee3

    • SHA1

      b06cf40b5a7668fbcf3880e3cb5af175fca8a773

    • SHA256

      bde3d81846abd79435187497bb1d52b24c6c1d6fc9047e2dc2be61b23db3bd61

    • SHA512

      1f51ef868e1cccda46cd2661cd51849065d49d01f21a78b86ae3cf270adbfadb0b7b3d065feaa710f5f552894766f983ee47a865b9e0858396d65ace37ce38a6

    • SSDEEP

      786432:Bxh2ou5DO1dZDV1FirhsjXe2j4u+WA0ltQsm3dSxea39WSt2XT60RTTc5M:bhYZsdpTFskXHj4u+B0leZNaea8St2Xf

    Score
    8/10
    evasionpersistencestealthtrojan

    • Removes its main activity from the application launcher

      stealthtrojanevasion

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Requests dangerous framework permissions

    behavioral1behavioral2behavioral3

MITRE ATT&CK Mobile v15

Tasks