General

  • Target

    7a02c5eb86106247a3e744caced3b621918e7033dcae40c8d4015d12e246abb7

  • Size

    3.8MB

  • Sample

    241127-x78knsxjat

  • MD5

    0d5b966d999d4801bc81b225a29a2f31

  • SHA1

    b338c125cfcb68e8aeb053d718488a7bf7de9e55

  • SHA256

    7a02c5eb86106247a3e744caced3b621918e7033dcae40c8d4015d12e246abb7

  • SHA512

    9f50d7c5858a1559102e2b764dd95cced75fecea8b5481d5eee9091aee773216d7c75e6286e2216b61b18cc9c24a4ce84b13f80081442ca425b68a9508026dc6

  • SSDEEP

    98304:7oTwrHKDwj/yK2DM+F742qs7QOCbwQb0fES:aDwjo7NNCbPxS

Malware Config

Targets

    • Target

      7a02c5eb86106247a3e744caced3b621918e7033dcae40c8d4015d12e246abb7

    • Size

      3.8MB

    • MD5

      0d5b966d999d4801bc81b225a29a2f31

    • SHA1

      b338c125cfcb68e8aeb053d718488a7bf7de9e55

    • SHA256

      7a02c5eb86106247a3e744caced3b621918e7033dcae40c8d4015d12e246abb7

    • SHA512

      9f50d7c5858a1559102e2b764dd95cced75fecea8b5481d5eee9091aee773216d7c75e6286e2216b61b18cc9c24a4ce84b13f80081442ca425b68a9508026dc6

    • SSDEEP

      98304:7oTwrHKDwj/yK2DM+F742qs7QOCbwQb0fES:aDwjo7NNCbPxS

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Acquires the wake lock

    • Queries information about active data network

    • Queries the mobile country code (MCC)

    • Reads information about phone network operator.

MITRE ATT&CK Mobile v15

Tasks