416c6ee99942ddceec7b41a9dfe09bf26a8eb50c3dd2435618e7ef914d0eb652 | Triage

Sharing

General

Target

Plants vs Zombies Fusion Edition_1.0.apk
Size

169.3MB
Sample

240930-xyzams1cqp
MD5

dc12c607a88c8c9fb6058d34f3fbecb0
SHA1

048223b9154e7e25f26901675da889374c271876
SHA256

416c6ee99942ddceec7b41a9dfe09bf26a8eb50c3dd2435618e7ef914d0eb652
SHA512

850a9c6569c02eaf23f5f009152001322aac24c1cd6c6d77e05f11c205c2f1724caebf33ca19f6b299e3b4eb689bdaea56ac9ece10ff65b04c11b523a677d9b4
SSDEEP

3145728:XUh6t3Gxw0hBsF077e/Ci7YxTBlOB4ack3Of6n4PK27ydAY:XTgw0oI7e/nYxTBlg+SqlG

Score

8^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  Plants vs Zombies Fusion Edition_1.0.apk
- Size
  
  169.3MB
- MD5
  
  dc12c607a88c8c9fb6058d34f3fbecb0
- SHA1
  
  048223b9154e7e25f26901675da889374c271876
- SHA256
  
  416c6ee99942ddceec7b41a9dfe09bf26a8eb50c3dd2435618e7ef914d0eb652
- SHA512
  
  850a9c6569c02eaf23f5f009152001322aac24c1cd6c6d77e05f11c205c2f1724caebf33ca19f6b299e3b4eb689bdaea56ac9ece10ff65b04c11b523a677d9b4
- SSDEEP
  
  3145728:XUh6t3Gxw0hBsF077e/Ci7YxTBlOB4ack3Of6n4PK27ydAY:XTgw0oI7e/nYxTBlg+SqlG
Score

8^/10

discovery evasion persistence
- Checks if the Android device is rooted.
  evasion
- Checks Android system properties for emulator presence.
  evasion
- Checks Qemu related system properties.
  Checks for Android system properties related to Qemu for Emulator detection.
  evasion
- Reads information about phone network operator.
  discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence