e7106f58d10b82f9ea5cb4262c568b39974486583808105a04c7383a46cd12c9

Analysis

max time kernel
149s
max time network
150s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
27/03/2025, 15:00

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e7106f58d10b82f9ea5cb4262c568b39974486583808105a04c7383a46cd12c9.apk
Size

70KB
MD5

659bdbafacab415cc1529e84e282713f
SHA1

aeab8196e67829a695bbbc5ec87109c4706deb30
SHA256

e7106f58d10b82f9ea5cb4262c568b39974486583808105a04c7383a46cd12c9
SHA512

a1f5ce8c1b979ce9a67ae15dab480e4f5cc43e5f64f55014aa1ae5d62641748d7bd318c8439351e91ca1c3bda4cf2ae2801ef2170d493ce8096332bb680f6cd5
SSDEEP

1536:03gVYQWk3gtxtzZSFS3imCPow1fpsNOC7rATo1oKgH:0wVdWkcxX3imeB1xsEC7wYi

Score

8^/10

discovery evasion stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs

stealth trojan evasion

Suppress Application Icon

T1628.001

pid	Process
4301	anu_bifuulro.app

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	anu_bifuulro.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	anu_bifuulro.app

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	anu_bifuulro.app

anu_bifuulro.app
1⤵
- Removes its main activity from the application launcher
- Acquires the wake lock
- Queries information about active data network
- Queries the mobile country code (MCC)
PID:4301

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

T1628

Suppress Application Icon

T1628.001

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads