soumnibot | a464b33b995aa0474ba3ed1089f3f4aa5e36581189c0d43c3d829ac35f65053c | Triage

Sharing

General

Target

a464b33b995aa0474ba3ed1089f3f4aa5e36581189c0d43c3d829ac35f65053c.bin
Size

3.6MB
Sample

240920-1z2nyazhqb
MD5

b4409a7919ba2f977e97a6de37bbdfc0
SHA1

63290790e0d4a63ac3f4360357802d8b4eda2d5a
SHA256

a464b33b995aa0474ba3ed1089f3f4aa5e36581189c0d43c3d829ac35f65053c
SHA512

9a41dfb8a708cec371b4fae18cb1ae75bb5ab593bdc38042e3a68523effa6f916b51103a27c8be948cdcedaab50d95d908173207ccbd432566566fe1e6e9498b
SSDEEP

98304:yjrsEQb26OE2I45Fr5jg8yrAHzP1/quV5HPstUygcY:8gOE2I45Fdj4AHzth7/PN

Score

10^/10

soumnibot android discovery evasion persistence

Malware Config

Targets

- Target
  
  a464b33b995aa0474ba3ed1089f3f4aa5e36581189c0d43c3d829ac35f65053c.bin
- Size
  
  3.6MB
- MD5
  
  b4409a7919ba2f977e97a6de37bbdfc0
- SHA1
  
  63290790e0d4a63ac3f4360357802d8b4eda2d5a
- SHA256
  
  a464b33b995aa0474ba3ed1089f3f4aa5e36581189c0d43c3d829ac35f65053c
- SHA512
  
  9a41dfb8a708cec371b4fae18cb1ae75bb5ab593bdc38042e3a68523effa6f916b51103a27c8be948cdcedaab50d95d908173207ccbd432566566fe1e6e9498b
- SSDEEP
  
  98304:yjrsEQb26OE2I45Fr5jg8yrAHzP1/quV5HPstUygcY:8gOE2I45Fdj4AHzth7/PN
Score

6^/10

discovery evasion persistence
- Queries information about active data network
  discovery
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Hide Artifacts

User Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence