d244984f3db507c88731aa6b953fa56a72e832e1ccc0c715d12e4374e63ba2b7 | Triage

Sharing

General

Target

d244984f3db507c88731aa6b953fa56a72e832e1ccc0c715d12e4374e63ba2b7.bin
Size

2.1MB
Sample

250328-1xk86stnv4
MD5

95564f880a4dc204efa01fb847ef5098
SHA1

0cb00494f1b1e2fbc7123b0e0ccdc10d96bfb302
SHA256

d244984f3db507c88731aa6b953fa56a72e832e1ccc0c715d12e4374e63ba2b7
SHA512

79a5254aba019d2e45e69b44dae60f3f4d39ccf104a47eaa1946910f8a1708b3b9f242e0638f53fd4eba1542518dd41356a96d0c6baa57dfdb6371e139bc266a
SSDEEP

49152:2Q8QajoyIakKl9pPwcxDRCv7Ji9WtN8dVfbnnbbVbR/rTZ5LIGdG:2Q8Y4lgcuvtiuUfbnbb1lrTZ5LtdG

Score

7^/10

android collection credential_access discovery impact persistence

Malware Config

Targets

- Target
  
  d244984f3db507c88731aa6b953fa56a72e832e1ccc0c715d12e4374e63ba2b7.bin
- Size
  
  2.1MB
- MD5
  
  95564f880a4dc204efa01fb847ef5098
- SHA1
  
  0cb00494f1b1e2fbc7123b0e0ccdc10d96bfb302
- SHA256
  
  d244984f3db507c88731aa6b953fa56a72e832e1ccc0c715d12e4374e63ba2b7
- SHA512
  
  79a5254aba019d2e45e69b44dae60f3f4d39ccf104a47eaa1946910f8a1708b3b9f242e0638f53fd4eba1542518dd41356a96d0c6baa57dfdb6371e139bc266a
- SSDEEP
  
  49152:2Q8QajoyIakKl9pPwcxDRCv7Ji9WtN8dVfbnnbbVbR/rTZ5LIGdG:2Q8Y4lgcuvtiuUfbnbb1lrTZ5LtdG
Score

7^/10

collection discovery impact persistence credential_access
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Queries the mobile country code (MCC)
  discovery
- Requests changing the default SMS application.
  collection impact
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

System Information Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Clipboard Data

Protected User Data

SMS Messages

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Data Manipulation

Transmitted Data Manipulation

SMS Control

Tasks

static1

behavioral1

collectiondiscoveryimpactpersistence

behavioral2

collectioncredential_accessdiscoveryimpactpersistence

behavioral3

collectioncredential_accessimpact