34e56b190de7eb129d5f1425af6061c26c98cc71eca3ab0372f3a550a690ff50 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1DM_-v17.2.apk
Size

21.8MB
Sample

241002-mml6tsvgrf
MD5

1dfe2dae098420941a4a7e87a7f221ae
SHA1

6e806eb5da4a471b007ff2cd9b0dc3fbfddc719e
SHA256

34e56b190de7eb129d5f1425af6061c26c98cc71eca3ab0372f3a550a690ff50
SHA512

512376cab4837c9013860fb569690edb230bcd0e423298e8a73b59b3eb3dacb357c86c92f31529765e2758f20f49105e36804c5b8c1aac620d59df7e00877f41
SSDEEP

393216:FBC5Mv56oLpPN2PAczR1hgt0chyRNaPBqYAoPMJq/h8tVV5RNNVDjbTsg8wmFS4G:KSlP2xhaMRN8jAoPkqIVX3bTx7mFS4i3

Score

6^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  1DM_-v17.2.apk
- Size
  
  21.8MB
- MD5
  
  1dfe2dae098420941a4a7e87a7f221ae
- SHA1
  
  6e806eb5da4a471b007ff2cd9b0dc3fbfddc719e
- SHA256
  
  34e56b190de7eb129d5f1425af6061c26c98cc71eca3ab0372f3a550a690ff50
- SHA512
  
  512376cab4837c9013860fb569690edb230bcd0e423298e8a73b59b3eb3dacb357c86c92f31529765e2758f20f49105e36804c5b8c1aac620d59df7e00877f41
- SSDEEP
  
  393216:FBC5Mv56oLpPN2PAczR1hgt0chyRNaPBqYAoPMJq/h8tVV5RNNVDjbTsg8wmFS4G:KSlP2xhaMRN8jAoPkqIVX3bTx7mFS4i3
Score

6^/10

discovery evasion persistence
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  evasion persistence
- Queries information about active data network
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

Privilege Escalation

Defense Evasion

Foreground Persistence

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence

behavioral2

discoveryevasionpersistence