General
-
Target
uptodown-com.discord.apk
-
Size
18.5MB
-
Sample
241109-3cyd4stlfv
-
MD5
2d1c0c415c0f8d487c26d802286dee81
-
SHA1
0becec980bc01c83a129ac5691797b111ed5f563
-
SHA256
16e92144150740174963342cfd470c2415b52800e050de81fa2ce44af0b0ffe0
-
SHA512
c5671b6f70965cedf13287d3f9e06c3613bf2a2da5ee39450bde444a6d56a785f0578a8a43fbc1a4c023a3f7868b76bdda9da4e60fba1036f755e73c3955f9e6
-
SSDEEP
393216:wUjAsU6jBYbD+QsK8sAWrYvSHIz/nWz+IfH8XT2m/JonuTw89E:ljJBZQb6tA+IfIaut9E
Static task
static1
Behavioral task
behavioral1
Sample
uptodown-com.discord.apk
Resource
android-33-x64-arm64-20240624-en
Malware Config
Targets
-
-
Target
uptodown-com.discord.apk
-
Size
18.5MB
-
MD5
2d1c0c415c0f8d487c26d802286dee81
-
SHA1
0becec980bc01c83a129ac5691797b111ed5f563
-
SHA256
16e92144150740174963342cfd470c2415b52800e050de81fa2ce44af0b0ffe0
-
SHA512
c5671b6f70965cedf13287d3f9e06c3613bf2a2da5ee39450bde444a6d56a785f0578a8a43fbc1a4c023a3f7868b76bdda9da4e60fba1036f755e73c3955f9e6
-
SSDEEP
393216:wUjAsU6jBYbD+QsK8sAWrYvSHIz/nWz+IfH8XT2m/JonuTw89E:ljJBZQb6tA+IfIaut9E
-
Checks if the Android device is rooted.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Acquires the wake lock
-
Checks the application is allowed to request package installs through the package installer
Checks the application is allowed to install additional applications (Might try to install applications from unknown sources).
-
Queries information about active data network
-
Queries the mobile country code (MCC)
-
Checks the presence of a debugger
-
MITRE ATT&CK Mobile v15
Defense Evasion
Download New Code at Runtime
1Subvert Trust Controls
1Code Signing Policy Modification
1Virtualization/Sandbox Evasion
2System Checks
2