c205c6fb976ba9eeb11c0c2e466c389a20b071d3cadebb0b0c7b112a0cea3336 | Triage

Resubmissions

04/10/2024, 10:19

241004-mch2esyckp 6

04/10/2024, 10:17

241004-mbnwaasgjf 1

Sharing

Copy URL Twitter E-mail

General

Target

com.nekki.shadowfight_2.38.0-30000060_2arch_6255e116b7a798256653e2da354de88a_apkmirror.com.apkm
Size

153.2MB
Sample

241004-mch2esyckp
MD5

03ff19a63fa116381b54e61fb04352f9
SHA1

caf6162ba8798ba9acee26555e4dcafd1b78b0b9
SHA256

c205c6fb976ba9eeb11c0c2e466c389a20b071d3cadebb0b0c7b112a0cea3336
SHA512

9f43848d47994b98c9715ea866a732b08ce90ca43d1ac0f6550b41e5a9c1d374797a5da270d3803cf6477b977bc8517fb80a70617c8fd454a01fd4955f92e4d1
SSDEEP

3145728:Csk2VcArntcmVKOigKhZV6YXIYi1PxIS6gCHoWmIvQwnogDGCHLTsvnJ:tkenthEM0ZV4PxIS6loWmItTDbq

Score

6^/10

evasion execution macos

Malware Config

Targets

- Target
  
  com.nekki.shadowfight_2.38.0-30000060_2arch_6255e116b7a798256653e2da354de88a_apkmirror.com.apkm
- Size
  
  153.2MB
- MD5
  
  03ff19a63fa116381b54e61fb04352f9
- SHA1
  
  caf6162ba8798ba9acee26555e4dcafd1b78b0b9
- SHA256
  
  c205c6fb976ba9eeb11c0c2e466c389a20b071d3cadebb0b0c7b112a0cea3336
- SHA512
  
  9f43848d47994b98c9715ea866a732b08ce90ca43d1ac0f6550b41e5a9c1d374797a5da270d3803cf6477b977bc8517fb80a70617c8fd454a01fd4955f92e4d1
- SSDEEP
  
  3145728:Csk2VcArntcmVKOigKhZV6YXIYi1PxIS6gCHoWmIvQwnogDGCHLTsvnJ:tkenthEM0ZV4PxIS6loWmItTDbq
Score

6^/10

evasion execution
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Resource Forking

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

evasionexecution