0b5265ef1ba7739ed5466791d7a39f0e5f93190c6f67bb2d826e07091e6defdc | Triage

Sharing

General

Target

0b5265ef1ba7739ed5466791d7a39f0e5f93190c6f67bb2d826e07091e6defdc.bin
Size

4.1MB
Sample

250328-11dy9sstcz
MD5

50ead329b60971e0895512f2b9da30be
SHA1

30b2513a2568f9ac12fafe16016d38d63cbda911
SHA256

0b5265ef1ba7739ed5466791d7a39f0e5f93190c6f67bb2d826e07091e6defdc
SHA512

4647e91c73e77f0126d8538a3a4ed704f58c1f421c4808f7aa68a69f5d6cc322a202d4b8e48b588cadd71b356b905bd45b95f1e6af4d0c3468a0b71604dd8d94
SSDEEP

98304:8ClBiRc1lofNxy94+H2U3GpBjOrsz6PDWH3NbYgqc:kc1lofC4a2U3obOUNbMc

Score

7^/10

android collection defense_evasion persistence

Malware Config

Targets

- Target
  
  0b5265ef1ba7739ed5466791d7a39f0e5f93190c6f67bb2d826e07091e6defdc.bin
- Size
  
  4.1MB
- MD5
  
  50ead329b60971e0895512f2b9da30be
- SHA1
  
  30b2513a2568f9ac12fafe16016d38d63cbda911
- SHA256
  
  0b5265ef1ba7739ed5466791d7a39f0e5f93190c6f67bb2d826e07091e6defdc
- SHA512
  
  4647e91c73e77f0126d8538a3a4ed704f58c1f421c4808f7aa68a69f5d6cc322a202d4b8e48b588cadd71b356b905bd45b95f1e6af4d0c3468a0b71604dd8d94
- SSDEEP
  
  98304:8ClBiRc1lofNxy94+H2U3GpBjOrsz6PDWH3NbYgqc:kc1lofC4a2U3obOUNbMc
Score

7^/10

collection defense_evasion persistence
- Reads the content of SMS inbox messages.
  collection
- Makes use of the framework's foreground persistence service
  Application may abuse the framework's foreground service to continue running in the foreground.
  defense_evasion persistence
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

Privilege Escalation

Defense Evasion

Foreground Persistence

Credential Access

Discovery

Lateral Movement

Collection

Protected User Data

SMS Messages

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

collectiondefense_evasionpersistence

behavioral2

collectiondefense_evasionpersistence

behavioral3

collectiondefense_evasionpersistence