0b23523e26b0887238c8d1ada9f46e7d4ad059aa6a21a20dd280f07ca49864b0 | Triage

Sharing

General

Target

增强-SYH-机方下载.apk
Size

5.8MB
Sample

241121-dklmvayjft
MD5

314ab40b5f92bbc63d2e11a25a40c059
SHA1

4abeda97ff9d770ff9e6969e423538b315f7faf8
SHA256

0b23523e26b0887238c8d1ada9f46e7d4ad059aa6a21a20dd280f07ca49864b0
SHA512

2078a95437bfed49bcdd408049cc049ce7142976e3b3fa6492e04ceaed5ac9dcc989e04cbcb38c8deb9b17011e810f6b9f3cb9ca58da1511083f016cb6f5e80b
SSDEEP

98304:6s1Ahlj13kr7UEReLChgTjScyZSZvgSnnNa7+C:6sKFAoEK3+AQ

Score

7^/10

android discovery evasion impact persistence

Malware Config

Targets

- Target
  
  增强-SYH-机方下载.apk
- Size
  
  5.8MB
- MD5
  
  314ab40b5f92bbc63d2e11a25a40c059
- SHA1
  
  4abeda97ff9d770ff9e6969e423538b315f7faf8
- SHA256
  
  0b23523e26b0887238c8d1ada9f46e7d4ad059aa6a21a20dd280f07ca49864b0
- SHA512
  
  2078a95437bfed49bcdd408049cc049ce7142976e3b3fa6492e04ceaed5ac9dcc989e04cbcb38c8deb9b17011e810f6b9f3cb9ca58da1511083f016cb6f5e80b
- SSDEEP
  
  98304:6s1Ahlj13kr7UEReLChgTjScyZSZvgSnnNa7+C:6sKFAoEK3+AQ
Score

7^/10

discovery evasion impact persistence
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Checks the presence of a debugger
  evasion
behavioral1 behavioral2

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Download New Code at Runtime

Credential Access

Discovery

Process Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryevasionimpactpersistence

behavioral2

discoveryevasionimpact