6534b5abdbd015ababdab0fbb2a5b8b6e5d78808a97cade1cf6f0f33694583e4

Analysis

max time kernel
62s
max time network
156s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
26/03/2025, 22:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6534b5abdbd015ababdab0fbb2a5b8b6e5d78808a97cade1cf6f0f33694583e4.apk
Size

117KB
MD5

ffa9b81a27ea96e36821013d5cc40d5f
SHA1

0a81c61929a1d12c718fbb4759295ded75cb407c
SHA256

6534b5abdbd015ababdab0fbb2a5b8b6e5d78808a97cade1cf6f0f33694583e4
SHA512

7d6718d62f5edeeaf42c663325cbfca3e0bd49430afd085a44dd36067805400aeb627f686e4b79d032a18ffacfeb426559f0146271c88477ca8ef54bf2d0f99a
SSDEEP

1536:BUAPYwLjTMw3hMCGv9jATqy4blxIo0R2AY5qP3KdbwwpsAyjBgF5iEhYEqJKt+hQ:Z7LfMNfATQZxIoi2bqvKyraTi68A+hvI

Score

8^/10

discovery evasion stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs

stealth trojan evasion

Suppress Application Icon

T1628.001

pid	Process
4677	anu_bispro.app

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	anu_bispro.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	anu_bispro.app

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	anu_bispro.app

anu_bispro.app
1⤵
- Removes its main activity from the application launcher
- Acquires the wake lock
- Queries information about active data network
- Queries the mobile country code (MCC)
PID:4677

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

T1628

Suppress Application Icon

T1628.001

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads