General

  • Target

    f824aeab51359be06bf50393f4f118ff5d2d356687742bdefebdf42774530f8c.bin

  • Size

    3.4MB

  • Sample

    241114-12exystke1

  • MD5

    05646d769831ae0f85ac6aec22ae6ecb

  • SHA1

    72da1a2ee3716d5f7b0d4b00d5d2911e5fb81003

  • SHA256

    f824aeab51359be06bf50393f4f118ff5d2d356687742bdefebdf42774530f8c

  • SHA512

    fd36f9f1a95c1030bb4170241cd6a9a269d7cd67119b3819126695e535d0b0740906a042584b61ef3f23beb3c0513d1ab05f3614d8466feae8f11074c4e32af9

  • SSDEEP

    49152:U3g92NnBm0h/SRq0a/v1EV87PI6D3hDwZQBgcoVWAV1foS/NqcrWmZ0IGKF+9H7I:GTARq0eEVD6ztw2gcorV1fr/NP9ady

Malware Config

Targets

    • Target

      f824aeab51359be06bf50393f4f118ff5d2d356687742bdefebdf42774530f8c.bin

    • Size

      3.4MB

    • MD5

      05646d769831ae0f85ac6aec22ae6ecb

    • SHA1

      72da1a2ee3716d5f7b0d4b00d5d2911e5fb81003

    • SHA256

      f824aeab51359be06bf50393f4f118ff5d2d356687742bdefebdf42774530f8c

    • SHA512

      fd36f9f1a95c1030bb4170241cd6a9a269d7cd67119b3819126695e535d0b0740906a042584b61ef3f23beb3c0513d1ab05f3614d8466feae8f11074c4e32af9

    • SSDEEP

      49152:U3g92NnBm0h/SRq0a/v1EV87PI6D3hDwZQBgcoVWAV1foS/NqcrWmZ0IGKF+9H7I:GTARq0eEVD6ztw2gcorV1fr/NP9ady

    • A potential corporate email address has been identified in the URL: [email protected]

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Queries the mobile country code (MCC)

MITRE ATT&CK Mobile v15

Tasks