Overview

overview

8

Static

static

6

ac32dc236f...8f.apk

android-9-x86

8

ac32dc236f...8f.apk

android-10-x64

8

ac32dc236f...8f.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ac32dc236fea345d135bf1ff973900482cdfce489054760601170ef7feec458f.apk

  • Size

    1.3MB

  • Sample

    250327-bnt3aavzf1

  • MD5

    93ac3627ec63373a239f4a521819dbe9

  • SHA1

    ce1f752ba4f550e8439e24228c6ccb7aad56ef98

  • SHA256

    ac32dc236fea345d135bf1ff973900482cdfce489054760601170ef7feec458f

  • SHA512

    bd483c8bc6efb24c3f54a9c3632c842a2f7b606b7769d23b4fea455ea08be137f2a0e42632bf3d88490ea954c697db5af85b145596ccb3c1fbe5d90c2b0bc95a

  • SSDEEP

    24576:N1Gk/63Nc4TlZoBP+8fQgwbigP9zlJlnP6f7I2h8r3mVZvrRa+2RplR8Qngx:N17/yZZo1Ff8GgP9zTlnP6n8rWnvrRUk

Score
8/10
androidcollectioncredential_accessdefense_evasiondiscoveryevasionpersistencestealthtrojan

Malware Config

Targets

    • Target

      ac32dc236fea345d135bf1ff973900482cdfce489054760601170ef7feec458f.apk

    • Size

      1.3MB

    • MD5

      93ac3627ec63373a239f4a521819dbe9

    • SHA1

      ce1f752ba4f550e8439e24228c6ccb7aad56ef98

    • SHA256

      ac32dc236fea345d135bf1ff973900482cdfce489054760601170ef7feec458f

    • SHA512

      bd483c8bc6efb24c3f54a9c3632c842a2f7b606b7769d23b4fea455ea08be137f2a0e42632bf3d88490ea954c697db5af85b145596ccb3c1fbe5d90c2b0bc95a

    • SSDEEP

      24576:N1Gk/63Nc4TlZoBP+8fQgwbigP9zlJlnP6f7I2h8r3mVZvrRa+2RplR8Qngx:N17/yZZo1Ff8GgP9zTlnP6n8rWnvrRUk

    Score
    8/10
    discoveryevasionpersistencestealthtrojancollectioncredential_accessdefense_evasion

    • Removes its main activity from the application launcher

      stealthtrojanevasion

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

      collectiondefense_evasioncredential_access

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    • Queries information about active data network

      discovery

    • Queries the mobile country code (MCC)

      discovery

    • Reads information about phone network operator.

      discovery

    • Requests enabling of the accessibility settings.

    behavioral1behavioral2behavioral3

MITRE ATT&CK Mobile v15

Tasks