triada | 47659706713f3a05e206fd7fe34ea3913934ae874bd8de43dc6b1b64348b9c74 | Triage

Sharing

General

Target

WALiteXsigned.apk
Size

62.0MB
Sample

240924-p9ljxsyhlh
MD5

fcdd6ffda62f59a50f122d8c9e4bf3d3
SHA1

6e6313bbb686f6b5b12119c37f5c5d55e00c288a
SHA256

47659706713f3a05e206fd7fe34ea3913934ae874bd8de43dc6b1b64348b9c74
SHA512

c9b4df63b6ec2fea081bba483357cca4dbf3a21d15bac6d467d58cc316d2167c4da65ad67f3d4600f06a2beb4a801bcc043fce13a889364671aac6695f070868
SSDEEP

1572864:kvztx2sQwBEwd1L/MBj4znXc/B46auK4tFLjS:8tYsQwBT1L/MBj4znXURauK4q

Score

10^/10

triada android discovery execution impact persistence upx

Malware Config

Targets

- Target
  
  WALiteXsigned.apk
- Size
  
  62.0MB
- MD5
  
  fcdd6ffda62f59a50f122d8c9e4bf3d3
- SHA1
  
  6e6313bbb686f6b5b12119c37f5c5d55e00c288a
- SHA256
  
  47659706713f3a05e206fd7fe34ea3913934ae874bd8de43dc6b1b64348b9c74
- SHA512
  
  c9b4df63b6ec2fea081bba483357cca4dbf3a21d15bac6d467d58cc316d2167c4da65ad67f3d4600f06a2beb4a801bcc043fce13a889364671aac6695f070868
- SSDEEP
  
  1572864:kvztx2sQwBEwd1L/MBj4znXc/B46auK4tFLjS:8tYsQwBT1L/MBj4znXURauK4q
Score

6^/10

discovery execution impact persistence
- Acquires the wake lock
- Legitimate hosting services abused for malware hosting/C2
- Queries information about active data network
  discovery
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

Persistence

Event Triggered Execution

Broadcast Receivers

Scheduled Task/Job

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryexecutionimpactpersistence