General
-
Target
8160d883fc3b8bc7b902ab96d3de0fc21d48997d861a8b890d499aaa693f0bd8.bin
-
Size
4.6MB
-
Sample
241019-13wbbssbjc
-
MD5
39b91a6637a0544c2181acb1875d10fd
-
SHA1
570f8ebf31ecb850b272ea069a431dbba06b7519
-
SHA256
8160d883fc3b8bc7b902ab96d3de0fc21d48997d861a8b890d499aaa693f0bd8
-
SHA512
c1815eea4b93d6e4ae89ee98fa8f4738936068e11fc2b7f012b30ddb58a945003a0431e40d2df4e6796f4d2470fbc471040f67f784452146fac8665b74e8c461
-
SSDEEP
98304:3wvIl701zShJA86jIoDbaMEkZSaO7NaN8aRbn:3wB1zS16jIObE8j++bn
Behavioral task
behavioral1
Sample
8160d883fc3b8bc7b902ab96d3de0fc21d48997d861a8b890d499aaa693f0bd8.apk
Resource
android-x86-arm-20240910-en
Behavioral task
behavioral2
Sample
8160d883fc3b8bc7b902ab96d3de0fc21d48997d861a8b890d499aaa693f0bd8.apk
Resource
android-x64-20240910-en
Behavioral task
behavioral3
Sample
8160d883fc3b8bc7b902ab96d3de0fc21d48997d861a8b890d499aaa693f0bd8.apk
Resource
android-x64-arm64-20240910-en
Behavioral task
behavioral4
Sample
i.apk
Resource
android-x86-arm-20240910-en
Behavioral task
behavioral5
Sample
i.apk
Resource
android-x64-20240910-en
Behavioral task
behavioral6
Sample
i.apk
Resource
android-x64-arm64-20240910-en
Malware Config
Extracted
godfather
https://t.me/tumonokasiperake
Targets
-
-
Target
8160d883fc3b8bc7b902ab96d3de0fc21d48997d861a8b890d499aaa693f0bd8.bin
-
Size
4.6MB
-
MD5
39b91a6637a0544c2181acb1875d10fd
-
SHA1
570f8ebf31ecb850b272ea069a431dbba06b7519
-
SHA256
8160d883fc3b8bc7b902ab96d3de0fc21d48997d861a8b890d499aaa693f0bd8
-
SHA512
c1815eea4b93d6e4ae89ee98fa8f4738936068e11fc2b7f012b30ddb58a945003a0431e40d2df4e6796f4d2470fbc471040f67f784452146fac8665b74e8c461
-
SSDEEP
98304:3wvIl701zShJA86jIoDbaMEkZSaO7NaN8aRbn:3wB1zS16jIObE8j++bn
Score4/10 -
-
-
Target
i.apk
-
Size
3.9MB
-
MD5
d7af53607ad462f1ace152be5c4bc79c
-
SHA1
dc7f8ed8b5de140adbe74719024c95be6efae9f7
-
SHA256
e7d6ce2ad7b816c2aeb19425d7a174ee6b04ea748abc84cb65eaaf2d408d430d
-
SHA512
a023143dd993724c4d2da5c1c7b267b461a1a83b610019c18950533b411dfece30f536468b4d9c1d74390e44067ac50d4c0d4a1cb78a07210dd15bd127111345
-
SSDEEP
98304:HwGuIdbuOsmIEWEA2uj2IL6ydhgavRkeTLCe:HoOuEuj2ILSekgCe
-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Acquires the wake lock
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-