irata | 8e50eaa8ce2003d20c1f365a0b10357dc7df10c497257cb6647e2c4d9e2b5072 | Triage

Sharing

General

Target

adl.apk
Size

3.2MB
Sample

250127-c2fmgswnds
MD5

3b371c5b773359cf03949563caac51db
SHA1

13d491930bc5bbde8d395096b8a324cfff17de2e
SHA256

8e50eaa8ce2003d20c1f365a0b10357dc7df10c497257cb6647e2c4d9e2b5072
SHA512

b5874a0305a4e4cddaa73244123b905115d6c7b29f86cf6ccc4e88ba5acdcf563cf2231dd7783c401081c7566a553fe754c201d55cc3d62a46e3a6c3fc221c01
SSDEEP

98304:pabIskjguTIFQQzmNS5odWnvScSnUrhst9:wbVkjhJQzmNSGW6D

Score

10^/10

irata android discovery impact persistence

Malware Config

Targets

- Target
  
  adl.apk
- Size
  
  3.2MB
- MD5
  
  3b371c5b773359cf03949563caac51db
- SHA1
  
  13d491930bc5bbde8d395096b8a324cfff17de2e
- SHA256
  
  8e50eaa8ce2003d20c1f365a0b10357dc7df10c497257cb6647e2c4d9e2b5072
- SHA512
  
  b5874a0305a4e4cddaa73244123b905115d6c7b29f86cf6ccc4e88ba5acdcf563cf2231dd7783c401081c7566a553fe754c201d55cc3d62a46e3a6c3fc221c01
- SSDEEP
  
  98304:pabIskjguTIFQQzmNS5odWnvScSnUrhst9:wbVkjhJQzmNSGW6D
Score

6^/10

discovery impact persistence
- Acquires the wake lock
- Queries information about active data network
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Tasks

static1

behavioral1

behavioral2

discoveryimpactpersistence

behavioral3

discoveryimpact