Malware Analysis Report

2025-04-03 14:16

Sample ID 250310-lh97eszyfw
Target M-Pajak.apk
SHA256 704b519e1ec950e5f2145c49ac1e1f4d63b7fbd58600a352069193f871a16dbb
Tags
golddigger
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

704b519e1ec950e5f2145c49ac1e1f4d63b7fbd58600a352069193f871a16dbb

Threat Level: Known bad

The file M-Pajak.apk was found to be: Known bad.

Malicious Activity Summary

golddigger

GoldDigger payload

Golddigger family

Attempts to obfuscate APK file format

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2025-03-10 09:33

Signatures

GoldDigger payload

Description Indicator Process Target
N/A N/A N/A N/A
N/A N/A N/A N/A

Golddigger family

golddigger

Attempts to obfuscate APK file format

Analysis: behavioral1

Detonation Overview

Submitted

2025-03-10 09:33

Reported

2025-03-10 09:35

Platform

android-x86-arm-20240910-en

Max time network

151s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.14:443 tcp
GB 142.250.200.14:443 tcp
GB 142.250.200.14:443 tcp
AU 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 android.apis.google.com tcp
GB 142.250.178.4:80 tcp
GB 142.250.200.35:80 tcp
GB 142.250.178.4:443 tcp
GB 142.250.200.34:443 tcp

Files

N/A