irata | ab7845e4e0081a9609c40d6e48ac0e1ccf171c6987556e37cdbb26e814bbd0d6 | Triage

Sharing

General

Target

Application.apk
Size

2.8MB
Sample

250113-hmqf2atmdl
MD5

c90d0c1ac450350610455c43505b6926
SHA1

fde5b2f4d4d58b66bdb898af584445751082d4da
SHA256

ab7845e4e0081a9609c40d6e48ac0e1ccf171c6987556e37cdbb26e814bbd0d6
SHA512

9f13e9e1bd48e8fd4e6e8f746eddaabd6e21fcdf3fe0908cf1e50a121bd5b14129bcfcbf2d05fe5f8f1de64a9588bb65ee969d640af49d3e3e6599ac59d4c8bf
SSDEEP

49152:i/67lUUxto6nfTDB0Ej0TNDShMkXEdmhupqBIbLFku2sOlgD6Qko8umRz9JdxH+w:4oUUxLfTl0EjEOMkXEdmYqIbLFkuSgWD

Score

10^/10

irata android collection credential_access discovery impact persistence

Malware Config

Targets

- Target
  
  Application.apk
- Size
  
  2.8MB
- MD5
  
  c90d0c1ac450350610455c43505b6926
- SHA1
  
  fde5b2f4d4d58b66bdb898af584445751082d4da
- SHA256
  
  ab7845e4e0081a9609c40d6e48ac0e1ccf171c6987556e37cdbb26e814bbd0d6
- SHA512
  
  9f13e9e1bd48e8fd4e6e8f746eddaabd6e21fcdf3fe0908cf1e50a121bd5b14129bcfcbf2d05fe5f8f1de64a9588bb65ee969d640af49d3e3e6599ac59d4c8bf
- SSDEEP
  
  49152:i/67lUUxto6nfTDB0Ej0TNDShMkXEdmhupqBIbLFku2sOlgD6Qko8umRz9JdxH+w:4oUUxLfTl0EjEOMkXEdmYqIbLFkuSgWD
Score

7^/10

discovery collection credential_access impact persistence
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Acquires the wake lock
- Queries information about active data network
  discovery
- Queries the mobile country code (MCC)
  discovery
- Reads information about phone network operator.
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

behavioral2

collectioncredential_accessdiscoveryimpactpersistence

behavioral3