General

  • Target

    DISCORD TUDO LIBERADO.apk

  • Size

    111.1MB

  • Sample

    241109-ad49tssgrq

  • MD5

    ac7aaf940cbf2c607c20976d682020ac

  • SHA1

    cf4644e8fb2726ce2ac1386a84e5a317ef1ea9a0

  • SHA256

    d14fb605b492565f2ac700e0449b68ccf02167e8c169c65282129c45c3ee70ff

  • SHA512

    300fefa1d59a35704de487b1efb96df98a5e8a79634aa58628eba29c9a5a82a1743bd7dc90e25fa1a2e3fec1b4c89ae90689459b4ea7401401da79757eb5de81

  • SSDEEP

    1572864:9j0OkJn+xESiWkf1YWKra8/+MFR3BuW0bpTwqZ4sJm8lyD3KAFJbpDCCkko:2OG+xED1S1a8mMFZgxjJm8ls3K4CCk7

Malware Config

Targets

    • Target

      DISCORD TUDO LIBERADO.apk

    • Size

      111.1MB

    • MD5

      ac7aaf940cbf2c607c20976d682020ac

    • SHA1

      cf4644e8fb2726ce2ac1386a84e5a317ef1ea9a0

    • SHA256

      d14fb605b492565f2ac700e0449b68ccf02167e8c169c65282129c45c3ee70ff

    • SHA512

      300fefa1d59a35704de487b1efb96df98a5e8a79634aa58628eba29c9a5a82a1743bd7dc90e25fa1a2e3fec1b4c89ae90689459b4ea7401401da79757eb5de81

    • SSDEEP

      1572864:9j0OkJn+xESiWkf1YWKra8/+MFR3BuW0bpTwqZ4sJm8lyD3KAFJbpDCCkko:2OG+xED1S1a8mMFZgxjJm8ls3K4CCk7

    • Checks if the Android device is rooted.

    • Queries account information for other applications stored on the device

      Application may abuse the framework's APIs to collect account information stored on the device.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Reads the content of photos stored on the user's device.

    • Acquires the wake lock

    • Legitimate hosting services abused for malware hosting/C2

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Queries information about active data network

    • Checks the presence of a debugger

MITRE ATT&CK Enterprise v15

MITRE ATT&CK Mobile v15

Tasks