General

  • Target

    86ec0119c9983c17de1679e1a7788a3cc38872879948da0d1c94e25bbed8ac8f.bin

  • Size

    3.6MB

  • Sample

    241104-1yjfzaybja

  • MD5

    c725041b62b0e098743679181710c843

  • SHA1

    fc55f484a1ad54685fe8842cf11c06c1def7395b

  • SHA256

    86ec0119c9983c17de1679e1a7788a3cc38872879948da0d1c94e25bbed8ac8f

  • SHA512

    f7fd0bc426124b97a50ce3ee52fd07422be092dd39fdf464f1122c6ee06f737bb1da9fe2c73b9ab7c99b8ba597b9e85decaf36ce2a41e553bd1a503cd0844e7c

  • SSDEEP

    98304:DO8Qj844FynsR8prR83RMGujqXsQbJ5N+hA/JLz/tQ:K44qynZprR8mGqsLe

Malware Config

Targets

    • Target

      86ec0119c9983c17de1679e1a7788a3cc38872879948da0d1c94e25bbed8ac8f.bin

    • Size

      3.6MB

    • MD5

      c725041b62b0e098743679181710c843

    • SHA1

      fc55f484a1ad54685fe8842cf11c06c1def7395b

    • SHA256

      86ec0119c9983c17de1679e1a7788a3cc38872879948da0d1c94e25bbed8ac8f

    • SHA512

      f7fd0bc426124b97a50ce3ee52fd07422be092dd39fdf464f1122c6ee06f737bb1da9fe2c73b9ab7c99b8ba597b9e85decaf36ce2a41e553bd1a503cd0844e7c

    • SSDEEP

      98304:DO8Qj844FynsR8prR83RMGujqXsQbJ5N+hA/JLz/tQ:K44qynZprR8mGqsLe

    • Queries account information for other applications stored on the device

      Application may abuse the framework's APIs to collect account information stored on the device.

    • Queries the phone number (MSISDN for GSM devices)

    • Reads the content of the SMS messages.

    • Reads the content of the call log.

    • Acquires the wake lock

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Queries the unique device ID (IMEI, MEID, IMSI)

    • Reads information about phone network operator.

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

MITRE ATT&CK Mobile v15

Tasks