c3c0aecb66f3f89938977805e43a8ace98ee7c013131748ed65cf91f1751a8c1

Analysis

max time kernel
149s
max time network
152s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
27/03/2025, 06:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c3c0aecb66f3f89938977805e43a8ace98ee7c013131748ed65cf91f1751a8c1.apk
Size

72KB
MD5

674df4806881fe37f0f56b0d4786a73f
SHA1

e4877316b30428989b1ba94addc9e0c563274fdd
SHA256

c3c0aecb66f3f89938977805e43a8ace98ee7c013131748ed65cf91f1751a8c1
SHA512

5c9d4ca9bc16cc85ed5ae0854b67e0b3edf504be3c17d91c3230b5bc0f8ebafa98c72c0e559737c2e1539da9c127c8b9c133ce5c7d88160e403510a6c6aba0d5
SSDEEP

1536:Hok4mCgYYQwpqx+ScBemxcCuoFS3imC2owyfpsIOC7cATo1oKgp:IkXYdwpS+ScBemCV3imbByxsZC7RY0

Score

8^/10

discovery evasion stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs

stealth trojan evasion

Suppress Application Icon

T1628.001

pid	Process
5139	anu_bifuulro.app

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	anu_bifuulro.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	anu_bifuulro.app

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	anu_bifuulro.app

anu_bifuulro.app
1⤵
- Removes its main activity from the application launcher
- Acquires the wake lock
- Queries information about active data network
- Queries the mobile country code (MCC)
PID:5139

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

T1628

Suppress Application Icon

T1628.001

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads