aberebot | e8d99733f81c3a20cb51b89c57ba6ebfbd0d420a36c1494fba394ea7419d4878 | Triage

Sharing

General

Target

e8d99733f81c3a20cb51b89c57ba6ebfbd0d420a36c1494fba394ea7419d4878.zip
Size

1.9MB
Sample

250327-strmsawm18
MD5

624f6fa5b907bc396b9937ddcbe1d61d
SHA1

1e85d10bf12137da6146bc73b70823e48a9f17db
SHA256

e8d99733f81c3a20cb51b89c57ba6ebfbd0d420a36c1494fba394ea7419d4878
SHA512

1740f9a937038e006a216b613e933a69e73072a968c46c4730fc51bbd94a417e53dc8fd7a7aa79dc0b68021786d53f829c4c77bf36fdbb34c457a6eea88064e4
SSDEEP

49152:zimDcncV3iI3zKS8MXuVNr8yXgVGNG+onu0jf2OyD+20:WmDMTjMXaNQyXgcNG+wZbsDX0

Score

10^/10

aberebot android defense_evasion persistence

Malware Config

Targets

- Target
  
  38ff459a46e9ea6d63a83c1eddb640626fef562cd1bcb0ab3823c4770d07d0fb.apk
- Size
  
  2.7MB
- MD5
  
  4778aca48d170d67aabe89fddc783249
- SHA1
  
  c07cdfc9f349b323fbc4309ad907e0d9b4295a7a
- SHA256
  
  38ff459a46e9ea6d63a83c1eddb640626fef562cd1bcb0ab3823c4770d07d0fb
- SHA512
  
  8c8b1b8a37c07981dc7544f0800bede98186c843b3ce63a17f30005e404fc2af2edd694eafb70e11441272a68119fc86b705572ed20337c7e1c083ad213d7fac
- SSDEEP
  
  49152:fFSORq9FCJL/kX/hnHje2wN6RN/eeJIPPbLRX+Hfr2f4du1e:NRqCJL8XJIoFeeJI7gHfr2f9Q
Score

6^/10

defense_evasion persistence
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  defense_evasion persistence
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

Privilege Escalation

Defense Evasion

Foreground Persistence

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionpersistence

behavioral2

defense_evasionpersistence

behavioral3