Overview

overview

10

Static

static

10

057689e28c...48.apk

android-9-x86

8

057689e28c...48.apk

android-10-x64

8

057689e28c...48.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5d75e747ee6c22e97bb8b6583c613c89.bin

  • Size

    263KB

  • MD5

    15e7520897cee6e44ef60db2cd9c789e

  • SHA1

    b33112b3f74cb55ad9dc2f38c2a228f596d556a5

  • SHA256

    f14401a7900d0f1ea431c4046bdb39c3685ea4d909dd97b135c3f9ee919ad35a

  • SHA512

    2f87348ec6de86a8a8f235603b66ccaa193ed50780c1eb2c200294fd0f90fa87abc082d9240bf68ba4d376246a454afa2c905f2c674f9d84bf25a0921aeb9270

  • SSDEEP

    6144:SM98uJRTq4v6cXIr+oeI7YRfXIjJixAVDMxNV8rAKt/Rc7ENq2:dOShigIKfefjIhxcl/Rc7y/

Score
10/10
ahmyth

Malware Config

Extracted

Family

ahmyth

C2

http://51.20.2.165:3001

Signatures

  • Ahmyth family
    ahmyth
  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 11 IoCs

Files

  • 5d75e747ee6c22e97bb8b6583c613c89.bin
    .zip

    Password: infected

  • 057689e28c35811575811beaa1fa07bdc0130188f4590d286a564a0236060048.apk
    .apk android

    Password: infected

    com.etechd.l3mon

    com.etechd.l3mon.MainActivity