truthspy | 3b8a7fcd8c68111efa1df0cf350fba4e0a21f4cc2fbde52e30e6b12951b8f81f | Triage

Sharing

General

Target

b25e3bd5b92ad8fcbeebb20ff1232789_JaffaCakes118
Size

2.4MB
Sample

241129-tl7jpsvkfy
MD5

b25e3bd5b92ad8fcbeebb20ff1232789
SHA1

50661ef2289a1d66aa5d81b37b6620d9a0f920cb
SHA256

3b8a7fcd8c68111efa1df0cf350fba4e0a21f4cc2fbde52e30e6b12951b8f81f
SHA512

74d717481c6869bcd0e89fdda8ea421fdddd112a266807611f0944102853fab8159df0e825e817394a8f870e765e3621e5fa0b645a646c4bcb3e5bfd95476960
SSDEEP

49152:HLVdU3gkHS90XgdXEo0wmF61T5W0aElw7BV50KQ3CoyagrFs/i:HLigkHdQdN09o/1lwD50Qo4Ci

Score

10^/10

truthspy android banker discovery persistence

Malware Config

Targets

- Target
  
  b25e3bd5b92ad8fcbeebb20ff1232789_JaffaCakes118
- Size
  
  2.4MB
- MD5
  
  b25e3bd5b92ad8fcbeebb20ff1232789
- SHA1
  
  50661ef2289a1d66aa5d81b37b6620d9a0f920cb
- SHA256
  
  3b8a7fcd8c68111efa1df0cf350fba4e0a21f4cc2fbde52e30e6b12951b8f81f
- SHA512
  
  74d717481c6869bcd0e89fdda8ea421fdddd112a266807611f0944102853fab8159df0e825e817394a8f870e765e3621e5fa0b645a646c4bcb3e5bfd95476960
- SSDEEP
  
  49152:HLVdU3gkHS90XgdXEo0wmF61T5W0aElw7BV50KQ3CoyagrFs/i:HLigkHdQdN09o/1lwD50Qo4Ci
Score

7^/10

banker discovery persistence
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
  banker discovery
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

Security Software Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bankerdiscoverypersistence