c949c7cfbcb482579028dd4a75093ee4ee4781922e4d5d8626261bb7f7fffa58 | Triage

Sharing

General

Target

com.shittyports.pmkm-release (1).apk
Size

156.2MB
Sample

241002-1xpxcssgme
MD5

c2a63e81df7d07fc5c2da39ccdd3d249
SHA1

90f373c5a1ae6c23c5d5c930ce29438d9538125a
SHA256

c949c7cfbcb482579028dd4a75093ee4ee4781922e4d5d8626261bb7f7fffa58
SHA512

5e3073c5393520588bb070ee32f6e7bef68f6558bd3211a12f147cf03169cf89127a281f48926f1f0d9ffe6f5f39dacb7d1b051bd2d383a357928a011640f237
SSDEEP

3145728:84Ie1lBGd2r44bstt7TUUYpDW6H0VbLQAcLAg:wqGdK44b3UYpDW6HObZg

Score

7^/10

android collection credential_access evasion impact

Malware Config

Targets

- Target
  
  com.shittyports.pmkm-release (1).apk
- Size
  
  156.2MB
- MD5
  
  c2a63e81df7d07fc5c2da39ccdd3d249
- SHA1
  
  90f373c5a1ae6c23c5d5c930ce29438d9538125a
- SHA256
  
  c949c7cfbcb482579028dd4a75093ee4ee4781922e4d5d8626261bb7f7fffa58
- SHA512
  
  5e3073c5393520588bb070ee32f6e7bef68f6558bd3211a12f147cf03169cf89127a281f48926f1f0d9ffe6f5f39dacb7d1b051bd2d383a357928a011640f237
- SSDEEP
  
  3145728:84Ie1lBGd2r44bstt7TUUYpDW6H0VbLQAcLAg:wqGdK44b3UYpDW6HObZg
Score

7^/10

collection credential_access evasion impact
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Acquires the wake lock
- Listens for changes in the sensor environment (might be used to detect emulation)
  evasion
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

User Evasion

Credential Access

Clipboard Data

Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

collectioncredential_accessevasionimpact

behavioral2

collectioncredential_accessevasionimpact