General

  • Target

    rectv16.6.apk

  • Size

    48.6MB

  • Sample

    241110-nk8gqavpet

  • MD5

    4910cff8dcb1b3e9b6d1eb74c168aeec

  • SHA1

    d97ab629dc672591d09cc5be3089ba12b884ea5f

  • SHA256

    72434f9e7ab70d6e404a252d94ce7986831b6a86a0398d9f0c54cfe4e2622bf2

  • SHA512

    fb9d1e75f1dad707879aabd974695417f9ad5da08a838fd6479aa4712e858ff6238cc89eba13c51e6a5499702a50eafb4d26c37e8d32ddfed56dc63d7dbb1e66

  • SSDEEP

    786432:ysfIYxs8vzJoVBHCuK7O+xxsgbEz3/kiATEzunodqahLMcjfk/6+ugS9goOL:yKIYxXLJoXizOAi8IzuoAadbj8/7SE

Malware Config

Targets

    • Target

      rectv16.6.apk

    • Size

      48.6MB

    • MD5

      4910cff8dcb1b3e9b6d1eb74c168aeec

    • SHA1

      d97ab629dc672591d09cc5be3089ba12b884ea5f

    • SHA256

      72434f9e7ab70d6e404a252d94ce7986831b6a86a0398d9f0c54cfe4e2622bf2

    • SHA512

      fb9d1e75f1dad707879aabd974695417f9ad5da08a838fd6479aa4712e858ff6238cc89eba13c51e6a5499702a50eafb4d26c37e8d32ddfed56dc63d7dbb1e66

    • SSDEEP

      786432:ysfIYxs8vzJoVBHCuK7O+xxsgbEz3/kiATEzunodqahLMcjfk/6+ugS9goOL:yKIYxXLJoXizOAi8IzuoAadbj8/7SE

    • Checks if the Android device is rooted.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Acquires the wake lock

    • Queries information about active data network

    • Queries the mobile country code (MCC)

    • Reads information about phone network operator.

    • Checks the presence of a debugger

MITRE ATT&CK Mobile v15

Tasks