triada | 2ade30aa4d1ffbed90ef4bc87054b4168c1cb94a9a1404da9349e520d01b3a81 | Triage

Submit
Reports

Overview

overview

Static

static

2ade30aa4d...81.apk

android-9-x86

8

Sharing

General

Target

2ade30aa4d1ffbed90ef4bc87054b4168c1cb94a9a1404da9349e520d01b3a81.apk
Size

79.1MB
Sample

250106-ctzqdssqct
MD5

f9686890d7367494e9a8d98a7c22b204
SHA1

b707c8fbea37b3256fe0f9ded40dab18affa9084
SHA256

2ade30aa4d1ffbed90ef4bc87054b4168c1cb94a9a1404da9349e520d01b3a81
SHA512

d32b554db0a5d1da978c5f5cba8ea66b54615944a1be65281a856ff3dd0fa36d15476ed152c510ff6e8bba4f805c694c953a3035ba8cc183a1c509fc06bb581e
SSDEEP

1572864:GS+RWt2OLFPZtlSY2e1c4s90MmDpPwpJL/B36mEJcXRMGDUz/L0XXh:7MWcYrS/eY0rDhmEJyRDq2h

Score

10^/10

triada android discovery execution impact persistence upx

Static task

static1

4 signatures

Behavioral task

behavioral1

Sample

2ade30aa4d1ffbed90ef4bc87054b4168c1cb94a9a1404da9349e520d01b3a81.apk

Resource

android-x86-arm-20240624-en

discovery execution impact persistence upx

android-9-x86

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  2ade30aa4d1ffbed90ef4bc87054b4168c1cb94a9a1404da9349e520d01b3a81.apk
- Size
  
  79.1MB
- MD5
  
  f9686890d7367494e9a8d98a7c22b204
- SHA1
  
  b707c8fbea37b3256fe0f9ded40dab18affa9084
- SHA256
  
  2ade30aa4d1ffbed90ef4bc87054b4168c1cb94a9a1404da9349e520d01b3a81
- SHA512
  
  d32b554db0a5d1da978c5f5cba8ea66b54615944a1be65281a856ff3dd0fa36d15476ed152c510ff6e8bba4f805c694c953a3035ba8cc183a1c509fc06bb581e
- SSDEEP
  
  1572864:GS+RWt2OLFPZtlSY2e1c4s90MmDpPwpJL/B36mEJcXRMGDUz/L0XXh:7MWcYrS/eY0rDhmEJyRDq2h
Score

8^/10

discovery execution impact persistence upx
- Patched UPX-packed file
  Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.
- Acquires the wake lock
- Queries information about active data network
  discovery
- Reads information about phone network operator.
  discovery
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

Persistence

Event Triggered Execution

Broadcast Receivers

Scheduled Task/Job

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

discoveryexecutionimpactpersistenceupx

© 2018-2025

Terms | Privacy