888rat | hxxps://www[.]mediafire[.]com/file/hm3u7r925vkznne/UgPhoneCrack[.]apk/file | Triage

Sharing

General

Target

https://www.mediafire.com/file/hm3u7r925vkznne/UgPhoneCrack.apk/file
Sample

250118-gw9etswldj

Score

10^/10

888rat android infostealer rat trojan

Malware Config

Targets

- Target
  
  https://www.mediafire.com/file/hm3u7r925vkznne/UgPhoneCrack.apk/file
Score

10^/10

888rat infostealer rat trojan
- 888RAT
  888RAT is an Android remote administration tool.
  trojan infostealer rat 888rat
- 888Rat family
  888rat
- Android 888 RAT payload
- Declares broadcast receivers with permission to handle system events
- Declares services with permission to bind to the system
- Requests dangerous framework permissions
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

behavioral2

behavioral3

888ratinfostealerrattrojan