General

  • Target

    QR Code _ Barcode Scanner Plus v1.8.0.apk

  • Size

    11.1MB

  • Sample

    241102-sxykha1lgm

  • MD5

    a5e5cd3f9cbd3c3ccc61e139c19942da

  • SHA1

    cea16f5206eac979eaf3eadf2e4b0a6247b97624

  • SHA256

    f8427b4fcfe15b3be2d13172657f0150adc11871b1ccf9a7f7d8d5bae892f79f

  • SHA512

    42b537beec9d5cab8dbfec6debcb13aed8d0dc50f174b977f5ebf3dbde93122cd7cb6da23339c46ccbf2ed4740ffd3d44278dc1d0a6c80b22ea78fb26afa0fcf

  • SSDEEP

    196608:rT082YWjiedJaiH+zfhPa69b0SvRXzn0WFADQt9p4/dkTF:k8Wj5JVAZN9bPjFcs

Malware Config

Targets

    • Target

      QR Code _ Barcode Scanner Plus v1.8.0.apk

    • Size

      11.1MB

    • MD5

      a5e5cd3f9cbd3c3ccc61e139c19942da

    • SHA1

      cea16f5206eac979eaf3eadf2e4b0a6247b97624

    • SHA256

      f8427b4fcfe15b3be2d13172657f0150adc11871b1ccf9a7f7d8d5bae892f79f

    • SHA512

      42b537beec9d5cab8dbfec6debcb13aed8d0dc50f174b977f5ebf3dbde93122cd7cb6da23339c46ccbf2ed4740ffd3d44278dc1d0a6c80b22ea78fb26afa0fcf

    • SSDEEP

      196608:rT082YWjiedJaiH+zfhPa69b0SvRXzn0WFADQt9p4/dkTF:k8Wj5JVAZN9bPjFcs

    • Checks if the Android device is rooted.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries information about active data network

    • Reads information about phone network operator.

    • Checks the presence of a debugger

MITRE ATT&CK Mobile v15

Tasks