2419f53ce989527168ed19ad74b4c3f55173d9efc97972400b5280b15c2e1966 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SpotifyPremiumAPK.apk
Size

75.9MB
Sample

241009-w2dyfa1drr
MD5

06e4c100a267dcd0e73461dd70b89c78
SHA1

dc9975acc2236d94c0dcd7da59d9d451c7729c8d
SHA256

2419f53ce989527168ed19ad74b4c3f55173d9efc97972400b5280b15c2e1966
SHA512

3eea1dc0bd499f3fade6593dd3891a0a8a675f737f178234077e87bb11d79c01652a5a149257c7a9ceb417828b0944c8546ea1dd38c683a7bd09afa23d359fa3
SSDEEP

1572864:697RzXL43t8TvtZlQrBNqEZYB5B94FFJcVczXDj+:6JR/48TrKVQEZYcBcVaXDj+

Score

8^/10

android discovery evasion persistence

Malware Config

Targets

- Target
  
  SpotifyPremiumAPK.apk
- Size
  
  75.9MB
- MD5
  
  06e4c100a267dcd0e73461dd70b89c78
- SHA1
  
  dc9975acc2236d94c0dcd7da59d9d451c7729c8d
- SHA256
  
  2419f53ce989527168ed19ad74b4c3f55173d9efc97972400b5280b15c2e1966
- SHA512
  
  3eea1dc0bd499f3fade6593dd3891a0a8a675f737f178234077e87bb11d79c01652a5a149257c7a9ceb417828b0944c8546ea1dd38c683a7bd09afa23d359fa3
- SSDEEP
  
  1572864:697RzXL43t8TvtZlQrBNqEZYB5B94FFJcVczXDj+:6JR/48TrKVQEZYcBcVaXDj+
Score

8^/10

discovery evasion persistence
- Checks if the Android device is rooted.
  evasion
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Acquires the wake lock
- Queries information about active data network
  discovery
- Checks the presence of a debugger
  evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

Process Discovery

System Information Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistence