cffed8818e94fb65eb2efa405188daf1ede9091279fdb0d099f2d66469e75b70

Analysis

max time kernel
57s
max time network
43s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
05/03/2025, 12:39

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

gen_signed.apk
Size

625KB
MD5

7fbbfbddd233bd288d74239aaed00d39
SHA1

f7185ae8a0f26be671644417449e23bcf91260fd
SHA256

cffed8818e94fb65eb2efa405188daf1ede9091279fdb0d099f2d66469e75b70
SHA512

30fb2220da300d0192f4fbf76b95bc88ee272d857e4aa0308be586356bf877f2f8b258b3b1da0c11d03d8356abb3b99a0877b176aee21dcd074df92184db592a
SSDEEP

12288:NcVS3E28sccs6iDsGJsOoF5GA6yaaBDt16LRSAXKja6epmPw5nRoNq+fA7AfOM:NOS3E28Xcs6iAGJ2p7au6LoAXKjappmd

Score

8^/10

collection evasion impact privilege_escalation stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs

stealth trojan evasion

Suppress Application Icon

T1628.001

pid	Process
4326	com.elite

Reads the contacts stored on the device. 1 TTPs 1 IoCs

collection

Contact List

T1636.003

description	ioc	Process
URI accessed for read	content://com.android.contacts/data/phones	com.elite

Tries to add a device administrator. 2 TTPs 1 IoCs

privilege_escalation impact

Device Administrator Permissions

T1626.001

Account Access Removal

T1640

description	ioc	Process
Intent action	android.app.action.ADD_DEVICE_ADMIN	com.elite

com.elite
1⤵
- Removes its main activity from the application launcher
- Reads the contacts stored on the device.
- Tries to add a device administrator.
PID:4326

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

T1626

Device Administrator Permissions

T1626.001

Defense Evasion

Hide Artifacts

T1628

Suppress Application Icon

T1628.001

Credential Access

Discovery

Lateral Movement

Collection

Protected User Data

T1636

Contact List

T1636.003

Command and Control

Exfiltration

Impact

Account Access Removal

T1640

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads