ahmyth | e04091536edb7670381cd07dd4a5c500d27e078053b4f9e0ad314becdd70d87c | Triage

Sharing

General

Target

ff
Size

7KB
Sample

250409-h1njlasqy4
MD5

feee8385904c56c40c09d6a57cb37482
SHA1

9f1e8332feed2d74a51c9731db3669a3c4db4643
SHA256

e04091536edb7670381cd07dd4a5c500d27e078053b4f9e0ad314becdd70d87c
SHA512

44e39dcf334a1eff3c9d7d6a3f86035094db847322e7c5ae622708045fab6bff3ac0fd836dd25489f8090b0d2227b944dbeae1649f8d9194cd2cfadc26fdff37
SSDEEP

96:OfWVTg693p1A7IewHFwyJgOHgQ8Bs1EszU/vifEviDMD:+mU693p1A7powyJBAQ8rHikiDMD

Score

10^/10

ahmyth android infostealer rat trojan

Malware Config

Extracted

Family

ahmyth

C2

http://147.185.221.17:25603

Targets

- Target
  
  ff
- Size
  
  7KB
- MD5
  
  feee8385904c56c40c09d6a57cb37482
- SHA1
  
  9f1e8332feed2d74a51c9731db3669a3c4db4643
- SHA256
  
  e04091536edb7670381cd07dd4a5c500d27e078053b4f9e0ad314becdd70d87c
- SHA512
  
  44e39dcf334a1eff3c9d7d6a3f86035094db847322e7c5ae622708045fab6bff3ac0fd836dd25489f8090b0d2227b944dbeae1649f8d9194cd2cfadc26fdff37
- SSDEEP
  
  96:OfWVTg693p1A7IewHFwyJgOHgQ8Bs1EszU/vifEviDMD:+mU693p1A7powyJBAQ8rHikiDMD
Score

10^/10

ahmyth infostealer rat trojan
- AhMyth
  AhMyth is an open source Android remote administration tool.
  trojan infostealer rat ahmyth
- Ahmyth family
  ahmyth
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

MITRE ATT&CK Mobile v16

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ahmythinfostealerrattrojan