General
-
Target
dec_amongUs.zip
-
Size
5.8MB
-
Sample
250323-tbq4zav1gy
-
MD5
40a52d51bcdd8ffd999d6a8958587ea9
-
SHA1
e92caa1ad8a0dff720cd0eacf6c72e87a96a3c27
-
SHA256
453c506378fa71efc871a8f4442b49b6d59a513def153bfec9813856d6d93a1b
-
SHA512
351f40a0edf0bd547562401171641060435469f065fc9862639f53a31203aa7a4cf28970eba68399c2b7a346591e8013fa02e51c0e9471f240dac7e65481d583
-
SSDEEP
98304:dWUsDvz3mc/ty9CGVfdOT5jtPCxIr/Tl/j3HxrKDDxe8a3VF1O+dO8dnLTYTbLAZ:dW13v/ty7dET5jt5Tl/7HxkelVDldbn5
Malware Config
Targets
-
-
Target
adcc3a2f7cef4a20d5985f7d6c2290a0
-
Size
6.7MB
-
MD5
adcc3a2f7cef4a20d5985f7d6c2290a0
-
SHA1
49cc48340ee2397c09f0484805e49e223e92b3e4
-
SHA256
3d1e6b84b50e9dbcfdc6b609aa57d28fa06f78e1f3cd9285e07ba8e39f419bfb
-
SHA512
52720c88b187718e7b3a4e557782a4794f2e98cbd15a14de04d80921ff8d3c9eb0cd5b8bc0c4705c867f81347f941e8fff9d14b1b850e432307e9da4c81369a7
-
SSDEEP
98304:1TOGZpDDsRB06CE3BFEi0c0Sll0pkQt8w1PGDdfnVBwvnBFWGm6pMn5fm+PSpKJ:1TvDDsRB0TE3BD70Cw1ODdWRcxqKJ
Score8/10-
Checks if the Android device is rooted.
-
Checks Android system properties for emulator presence.
-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Acquires the wake lock
-
Queries information about active data network
-
Queries the mobile country code (MCC)
-
Reads information about phone network operator.
-
Requests cell location
Uses Android APIs to to get current cell information.
-