General

  • Target

    2.1.zip

  • Size

    33.0MB

  • Sample

    241003-rpd1fstama

  • MD5

    96649f5d9d6a3ec3c18a765febe5f106

  • SHA1

    9c573d65b96e600180f7b8b0d214f2f9bc225255

  • SHA256

    da6b636975abd0380a57645c9908eb409f6615363ef7861a31095aa11768250d

  • SHA512

    1ad8d2d2364352343d6f0eb6443d4023ac72f529dee14e8acd62ea400739eb6036704608d67eccee1cd6aefa679d58bf42c6f1ca1ba3ac2f68fac2c2f1d902d5

  • SSDEEP

    786432:njj59zuvBTK8wlwhVOtBV32ZTUOQGifX+q0g/ZZ:jjzutTwlCGV32xFCOk/ZZ

Malware Config

Targets

    • Target

      Connectivity Thermal Power Manager.apk

    • Size

      8.0MB

    • MD5

      540f383a59db27ef8054433c89c79881

    • SHA1

      2837a4ae972285bbececc56bd11fe253bf6abada

    • SHA256

      03aab29d8822ef2d93feadb73b40fd3c13b1ab18412002263b936722803c15da

    • SHA512

      e8ac0a6811def5e0206da99ca73f880e9b429c4172e8a9468de35c30931a0fd3c645964446ab1c8c103b2042ac6251a62e2a111846ab069d8f5627691bf97f9f

    • SSDEEP

      98304:ERl26efuX2qGFuid7u6DjVJpPD0aGCfv0w:K2r2UV1Dh4E9

    Score
    1/10
    • Target

      Credential Manager.apk

    • Size

      5.1MB

    • MD5

      e349369f84d8a852a36e79047faba210

    • SHA1

      b622fa8b86cfd131c48a7bfe901b143d44fdcb51

    • SHA256

      1b1c941d061723ace5261cd0e0b63203c166bd843b5e6658ea948a872eea76a6

    • SHA512

      8285a3c02b8ea61d9630c42ccba02ce91cca4251e8f4b04a544e8eb79327593da65aa08eb99cf86690baa5dc80dafd0806305dc7f5b55940db550fbfa4b160c8

    • SSDEEP

      49152:ge+SYDeONF6bsxKInzwyOc9Sv0R3salkTsDKPwAa9RQk0M6tEuWMGUqAzHlN88pm:gaYzzwylw/c

    Score
    1/10
    • Target

      Device Health Services Adapter.apk

    • Size

      253KB

    • MD5

      dbf5e4b9f6a641b351cfe10a410f4ddd

    • SHA1

      0990b269bf0fddafd444072d39f26598d8e36c29

    • SHA256

      3d2ea80ded0682a5ca44b16760ae912932fdc59a042674bf8c4f189779d14439

    • SHA512

      5afaf7d929fe782fc189e3e0afe1734297ca7469d155d168debe9a3be807af03a430aa0bb5db9ce39a66b680145d226e86005df424beb1ce110127a37ad4b979

    • SSDEEP

      3072:dxaJVs0OzQXmtjNUBezCY/wqqKYOSot7sD9lLsZhdonrnSPkKeormjIhXCLztrw:dxaJYQ2pNnbwwYOSomtsiTSmj5L2

    Score
    1/10
    • Target

      Device setup.apk

    • Size

      2.6MB

    • MD5

      ef65d820c3c3167e280a685bf0910ede

    • SHA1

      953eb399e8f3d38905e293a8b8e85acb000d7b8f

    • SHA256

      f066c4d4f97cc4e6269e1a159d994d65bced6ac7177017aac5f04a12db42c349

    • SHA512

      8c43d549b88e405d5f7b3508d62f1081fd548acd9320c9200c2ac34e584e804714b548798cae8665286d2b415bb5035d6c12e263f79920747617e124c9d0a82e

    • SSDEEP

      24576:vMMXvP3hki59tMzb983As3qS2SJUhPPAGPuZP4JJs8E6qwVMQkpUkRByBFuFHPRc:lDiS3AfWSnxHE6WQkpUkRByBFe5xC

    • Acquires the wake lock

    • Queries information about active data network

    • Target

      Download Manager.apk

    • Size

      520KB

    • MD5

      1c929c8c2f405ee923b395a2d8222357

    • SHA1

      27d0fb26770cd7092191d6045d28d07078ca7c9b

    • SHA256

      394380ea938393a22fbf6bf1f470837ce157f0c7a351229db190f24e92f6944e

    • SHA512

      3e428d1cf5cfa741bd6a5e4c80a61a1229679b3f994ab47698ebcadd8d8d66245658b7d765046b91e256099f49b55a4e04b8a9421c7a5f119d07e22df4230219

    • SSDEEP

      6144:un/3vFFwPEl94vOha10b2shrC02OHTsZQ2LIzi/3yZJ4a5CguNZ4BQQsu0C:I//zl4vtM2shrC0fz52LIzi/WJzw/uN

    Score
    1/10
    • Target

      Files by Google.apk

    • Size

      18.5MB

    • MD5

      ffe902ff96640be1866bb3d2207388fc

    • SHA1

      b390ac0b01de0af8a54e4c1034bf49f35b88ed52

    • SHA256

      b0ebf727552b9f260450fec5331581eaa6c81080b6382edd03e26874fab34812

    • SHA512

      c01723c53431645410ad663734edc2b0e337deb567020875afd2b513a821d9bae20ca7d0b12f96a61151a069a0c868f0c89481073e7d3a55009ca8bcbe3a0189

    • SSDEEP

      393216:ocC3fZZqMIfPJCBjjwkRaYAj/DYRjfpiO0BML:C3fnzIfxCRUsN1MLGL

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Acquires the wake lock

    • Queries information about active data network

    • Target

      Gestural Navigation Bar.apk

    • Size

      20KB

    • MD5

      7d273407a7d2db05ac922130f5ba7ad3

    • SHA1

      64fef989b08643c63edaec38419eb824c1481511

    • SHA256

      fbe678541cfe5fa04a9820ecab944c23209f4503e56e3cdfedfa49f97b06f786

    • SHA512

      7662e8aa5d6be90178a30409f4d5d46b97f36ff7d7a2a14c8bedd8ff01703156caac8c5e85766cc4279c57b01a56387c60810637f6dfd681ff4ff00863c63a9a

    • SSDEEP

      384:yGo8Aeeo4ZE/E/H16V1DxAa6F16VZ16V1DxC016V0VVPWDq8:yX+aV6V9xJy6V76V9x16VMWDq8

    Score
    1/10
    • Target

      HTML Viewer.apk

    • Size

      32KB

    • MD5

      5c322b4f1eafcadabb1c545b3531c8a7

    • SHA1

      0f87ef68741d3598200998374e78d7a5d17feb7e

    • SHA256

      03c2efbfc3a7d232990aa20170b3980b8968fa6d89bc213cc4abe848d40487ff

    • SHA512

      cdaa94aac2f985699f9b5affd98eff83809c07fa407386fade7eb76d8b02b65de3f5eb379bbf437092462679382ab6562f96344cb98c8e1ede177e135a24aeef

    • SSDEEP

      768:b2ugnTlgD4hI6V9xY6Vy6V9xOa6VWFr1q:6+5svYsysvtsirU

    Score
    1/10
    • Target

      ImsService.apk

    • Size

      3.9MB

    • MD5

      a1ded5c23c2336f13fdc338713f58eae

    • SHA1

      1245928e290e19df3bad3b0fddc72ba039d84d69

    • SHA256

      9762d072a5b338726e94a17d6e08607a1047e6f0dd750ff56433c1655c0f789c

    • SHA512

      9a52edc57d7dba2acf583a99b1601ce7c1538e5f22fceaf300372033bcb85c9f79c432c4872f0fbbdd174925b57184b009bb749cbc342acc501afea923f67e43

    • SSDEEP

      49152:YHnlNzZKdIYX7Khw7LWJ1ygpstUmkqRuwO2p4C98Ltw3b4xq88ptV0oAZO4WzreZ:YHnlNANAWtIWLb4j

    Score
    1/10
    • Target

      Live Wallpaper Picker.apk

    • Size

      4.5MB

    • MD5

      785f2aca4cdce3a053277e991e0f132f

    • SHA1

      277a5c00a678c88c71d72dca43b762183e970bd3

    • SHA256

      51ac5929cf255b726a07355dd6a729834815b26d5036dd7d6b17262e017b25b1

    • SHA512

      accc6991ccd863d8002770828329a757fd2d8cc571b13be44b27d1f33c2c5e91dc94fea40e39bf1752e2620c0f29ab38b973a28584a8fc5aa7c35e6dd0d54a6d

    • SSDEEP

      49152:R2KE42y5WK6to7eBh5rzroxo88pGInWrVetDGzbIGimTxN+tEsrvhYCE:orerQtybIJtEsrv2Z

    Score
    1/10
    • Target

      Main components.apk

    • Size

      2.6MB

    • MD5

      d5c4f0d6ae61b01396545a9652286e84

    • SHA1

      f0660354917009660dfda2418c9ccdb71bb2ce31

    • SHA256

      6abc9e62c7c05c7cf1613827a83724d1d75f035c21d3abee7de48fe621970b25

    • SHA512

      13707e3b9141b43f49208176061141bc21b451c4d977e6f2d343bb7387d8001f53c2f27487eea5ab6c5e3714bbb8d705492f1b2f0313429c2ac5ad7cde9a483c

    • SSDEEP

      24576:886aAaVS32GOzXLRptnZdhDLk7iUD+KJlseME+MrinnbCKi6uBZ9QfCVW:XRt5Nd2KKLMminiBZ9QaW

    Score
    1/10

MITRE ATT&CK Mobile v15

Tasks

static1

Score
6/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

discoverypersistence
Score
6/10

behavioral11

discoverypersistence
Score
6/10

behavioral12

discovery
Score
6/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

bankerdiscoveryexecutionpersistence
Score
7/10

behavioral18

bankerdiscoveryevasionexecutionpersistence
Score
7/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10