smsworm | 3a36f94bb1e89b5fd1650804761ed649385edb747c77215597a3816bc14f5802 | Triage

Sharing

General

Target

ver3.ycntivi.off-3 (SFILE.MOBI).apk
Size

11.4MB
Sample

241030-nafzqasdpp
MD5

c3162f4cec19a5439b93434c627f7585
SHA1

10759f3aa6fe2eb7d0314aee780e142d4c52a637
SHA256

3a36f94bb1e89b5fd1650804761ed649385edb747c77215597a3816bc14f5802
SHA512

2ebda3a4baecb7c37cbccccb42aa4d223fba149215fd94c24af855e5075096f3e9e8cc9539151df37d433ebdb053196eda0c4726d9dd03c0f45f57c19e0ddeea
SSDEEP

196608:dEV/aPg9oAqy6nHQ1hbla2tQYA0bUQJRjldyvg7mLBKwMca1KSjjsr:E/aPg+AqRC5A0bUUjldyRLgwGPjor

Score

10^/10

smsworm android discovery impact persistence

Malware Config

Targets

- Target
  
  ver3.ycntivi.off-3 (SFILE.MOBI).apk
- Size
  
  11.4MB
- MD5
  
  c3162f4cec19a5439b93434c627f7585
- SHA1
  
  10759f3aa6fe2eb7d0314aee780e142d4c52a637
- SHA256
  
  3a36f94bb1e89b5fd1650804761ed649385edb747c77215597a3816bc14f5802
- SHA512
  
  2ebda3a4baecb7c37cbccccb42aa4d223fba149215fd94c24af855e5075096f3e9e8cc9539151df37d433ebdb053196eda0c4726d9dd03c0f45f57c19e0ddeea
- SSDEEP
  
  196608:dEV/aPg9oAqy6nHQ1hbla2tQYA0bUQJRjldyvg7mLBKwMca1KSjjsr:E/aPg+AqRC5A0bUUjldyRLgwGPjor
Score

6^/10

discovery impact persistence
- Acquires the wake lock
- Queries information about active data network
  discovery
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryimpactpersistence

behavioral2

discoveryimpactpersistence