5c06d1e348c9c53f392221e446fd7904b4b6f96a0faee5c1b93f76fe19becac3 | Triage

Sharing

General

Target

org.totschnig.myexpenses_757.apk
Size

28.4MB
Sample

240930-gvrhmavcjh
MD5

65fbd153db196bcf64973a7f4796cde8
SHA1

51a5bc8a5231a247e15b934cc84e81b14903bfe7
SHA256

5c06d1e348c9c53f392221e446fd7904b4b6f96a0faee5c1b93f76fe19becac3
SHA512

daf29f839fcff4074da41cca2c6f34a21b03a1571a061247762b276c0f3ab568565207a22735bb1b0b8d9efbcb2d92aab3319e038ce5d1856494fc00ee8251d0
SSDEEP

393216:L7IcVyE9LUKzOvKGO1IeTTpw2j/kB0dMbWHY5Ym3eSD5Dvx4ItZIqcQXFcjK7XdU:IcU+LUoOCHwu/G0a8Y5Y3QdUqcsF5RA

Score

7^/10

android collection discovery evasion

Malware Config

Targets

- Target
  
  org.totschnig.myexpenses_757.apk
- Size
  
  28.4MB
- MD5
  
  65fbd153db196bcf64973a7f4796cde8
- SHA1
  
  51a5bc8a5231a247e15b934cc84e81b14903bfe7
- SHA256
  
  5c06d1e348c9c53f392221e446fd7904b4b6f96a0faee5c1b93f76fe19becac3
- SHA512
  
  daf29f839fcff4074da41cca2c6f34a21b03a1571a061247762b276c0f3ab568565207a22735bb1b0b8d9efbcb2d92aab3319e038ce5d1856494fc00ee8251d0
- SSDEEP
  
  393216:L7IcVyE9LUKzOvKGO1IeTTpw2j/kB0dMbWHY5Ym3eSD5Dvx4ItZIqcQXFcjK7XdU:IcU+LUoOCHwu/G0a8Y5Y3QdUqcsF5RA
Score

7^/10

collection discovery evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries account information for other applications stored on the device
  Application may abuse the framework's APIs to collect account information stored on the device.
  collection
- Queries the mobile country code (MCC)
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Stored Application Data

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

collectiondiscoveryevasion