antidot | 8c284a2e0c84546990d59c7db4beb248cd8a5f01e42b1ec919bbee6fa7c99a16 | Triage

Sharing

General

Target

MP3 Cutter Ringtone Maker v2.2.6.1 (Pro)-android-1.ru.apk
Size

22.5MB
Sample

250121-abjkcawmbx
MD5

91dfc3663252f63e82d1ec051bd2b537
SHA1

0256a855ad5662fa893cb1c00d1bd42a9af18466
SHA256

8c284a2e0c84546990d59c7db4beb248cd8a5f01e42b1ec919bbee6fa7c99a16
SHA512

529382ae6b94c4c52a9a6a6d9b7d8dbfd208db54aae55b265644c2e877c7d331b7fc21b6e6469e52afbd4f267f80f90118557b1d364590ba3f77bc9a2541955f
SSDEEP

393216:dpALxpWxJzwmF3BZYUdqf3piF0l4+jlpx5278Xok5nHAB5iHlF9RQV6aEoh:dpALzIzHF3YUAP8S2Kl/Afk5nH2iFuVZ

Score

10^/10

antidot android defense_evasion execution persistence

Malware Config

Targets

- Target
  
  MP3 Cutter Ringtone Maker v2.2.6.1 (Pro)-android-1.ru.apk
- Size
  
  22.5MB
- MD5
  
  91dfc3663252f63e82d1ec051bd2b537
- SHA1
  
  0256a855ad5662fa893cb1c00d1bd42a9af18466
- SHA256
  
  8c284a2e0c84546990d59c7db4beb248cd8a5f01e42b1ec919bbee6fa7c99a16
- SHA512
  
  529382ae6b94c4c52a9a6a6d9b7d8dbfd208db54aae55b265644c2e877c7d331b7fc21b6e6469e52afbd4f267f80f90118557b1d364590ba3f77bc9a2541955f
- SSDEEP
  
  393216:dpALxpWxJzwmF3BZYUdqf3piF0l4+jlpx5278Xok5nHAB5iHlF9RQV6aEoh:dpALzIzHF3YUAP8S2Kl/Afk5nH2iFuVZ
Score

8^/10

defense_evasion execution persistence
- Checks if the Android device is rooted.
  defense_evasion
- Acquires the wake lock
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  defense_evasion persistence
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  defense_evasion
- Checks the presence of a debugger
  defense_evasion
behavioral1

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

Persistence

Foreground Persistence

Scheduled Task/Job

Privilege Escalation

Defense Evasion

Foreground Persistence

Hide Artifacts

User Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecutionpersistence