General

  • Target

    CdekTracker.apk

  • Size

    7.8MB

  • Sample

    241103-vkazsasjdp

  • MD5

    538c63cae90dba7f1190b098814da974

  • SHA1

    94ed1d01371186f312243e0f7335aca7001bb374

  • SHA256

    c77818166987307b13659aa5d087004b9fcd53dff68aa6d4021f4a6d5164900a

  • SHA512

    f476100a04b18291205a375561237c164669c3f0e1925c4ee8352ee568d95764b682ebb3a08dbd4d9df954b557edf0827c3c2761d4853e2f57ef68a159617a4b

  • SSDEEP

    196608:z60rEDeDVsN+E/FibtonrEnnzVCUhRAZ3rx0Q/k:ZrO7/Y5onQz3yZm

Malware Config

Targets

    • Target

      CdekTracker.apk

    • Size

      7.8MB

    • MD5

      538c63cae90dba7f1190b098814da974

    • SHA1

      94ed1d01371186f312243e0f7335aca7001bb374

    • SHA256

      c77818166987307b13659aa5d087004b9fcd53dff68aa6d4021f4a6d5164900a

    • SHA512

      f476100a04b18291205a375561237c164669c3f0e1925c4ee8352ee568d95764b682ebb3a08dbd4d9df954b557edf0827c3c2761d4853e2f57ef68a159617a4b

    • SSDEEP

      196608:z60rEDeDVsN+E/FibtonrEnnzVCUhRAZ3rx0Q/k:ZrO7/Y5onQz3yZm

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Queries the phone number (MSISDN for GSM devices)

    • Reads the content of SMS inbox messages.

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

MITRE ATT&CK Mobile v15

Tasks