4eee212a97a28a120bab77ace77770fbc691878547dfb3ef37c270ae39e56c9e

Analysis

max time kernel
61s
max time network
152s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
26/03/2025, 22:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4eee212a97a28a120bab77ace77770fbc691878547dfb3ef37c270ae39e56c9e.apk
Size

61KB
MD5

660da4868a7e3853f8d564c990588874
SHA1

a320a3c7823faebb3df46249473f7344a2c3919b
SHA256

4eee212a97a28a120bab77ace77770fbc691878547dfb3ef37c270ae39e56c9e
SHA512

451cec09ccf68dfad7f2ede5464affc6ea17aa393814cbbbf1eb5fb7e479da3ba7bf6e52501ffb5ea422407aa336ad0eaf00fd566cb4fe58c6052888b9e0d67e
SSDEEP

1536:rH0JbFqjF01/oEZliEh1yE7JKt+haDb12kQw:rSxuEoEi6pA+h03D

Score

8^/10

discovery evasion stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs

stealth trojan evasion

Suppress Application Icon

T1628.001

pid	Process
4716	anu_bispro.app

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	anu_bispro.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	anu_bispro.app

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	anu_bispro.app

anu_bispro.app
1⤵
- Removes its main activity from the application launcher
- Acquires the wake lock
- Queries information about active data network
- Queries the mobile country code (MCC)
PID:4716

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

T1628

Suppress Application Icon

T1628.001

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads