Resubmissions

31/10/2024, 04:09

241031-eq5hks1lhm 10

31/10/2024, 04:00

241031-ek3rssxrey 10

General

  • Target

    19267906361.zip

  • Size

    3.8MB

  • Sample

    241031-ek3rssxrey

  • MD5

    7e5846d4e3ee5d12e83e0e187774eddb

  • SHA1

    8019d3cf71c9816c0958dab04a785f751ab5b2e6

  • SHA256

    f73609d837a61d167fb03b2eeda20240957e42c6c68df1d98c93fed06f81cefa

  • SHA512

    8084d37a2c215283cc9cb6b0688c9a1cf047a629c55da083ed0e377b672342e8cff78d963e609b35b61f6c5d4b7d4a39c2abf772408eee4441683a6434d42ae8

  • SSDEEP

    98304:mx8VQhqP0L9l1RKMkYjFA+w7OGuJAXXOB+1ZJMe2vrprqkN:DWhb9lbKjYjFApOXAXS+rSeSrHN

Malware Config

Targets

    • Target

      149bd232175659434bbeed9f12c8dd369d888b22afaf2faabc684c8ff2096f8c

    • Size

      8.5MB

    • MD5

      a097e2b3ec5496dd18b34c9344b5b231

    • SHA1

      d92439fcdba8d468b2b6d64d0542c48c41b99abc

    • SHA256

      149bd232175659434bbeed9f12c8dd369d888b22afaf2faabc684c8ff2096f8c

    • SHA512

      45b400ea85aa225dfaeee7c0ad108b3d27b15ab633a003fe8d767df7162544e4a661083041e76587f79f841a36e63e59b55ef8bf3f15848d65d30d21862a83f2

    • SSDEEP

      196608:JH6fslAGOGD+ZAeZx2S7cRrFXKe+rof8n7DLH:lwslAPTAeZxeFXWr+o

    • Removes its main activity from the application launcher

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Queries the mobile country code (MCC)

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

MITRE ATT&CK Enterprise v15

MITRE ATT&CK Mobile v15

Tasks