Overview

overview

10

Static

static

1

ff.html

android-10-x64

1

ff.html

android-11-x64

10

ff.html

android-13-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ff

  • Size

    7KB

  • Sample

    250409-h62cmss1f1

  • MD5

    feee8385904c56c40c09d6a57cb37482

  • SHA1

    9f1e8332feed2d74a51c9731db3669a3c4db4643

  • SHA256

    e04091536edb7670381cd07dd4a5c500d27e078053b4f9e0ad314becdd70d87c

  • SHA512

    44e39dcf334a1eff3c9d7d6a3f86035094db847322e7c5ae622708045fab6bff3ac0fd836dd25489f8090b0d2227b944dbeae1649f8d9194cd2cfadc26fdff37

  • SSDEEP

    96:OfWVTg693p1A7IewHFwyJgOHgQ8Bs1EszU/vifEviDMD:+mU693p1A7powyJBAQ8rHikiDMD

Score
10/10
ahmythandroidinfostealerrattrojan

Malware Config

Extracted

Family

ahmyth

C2

http://147.185.221.17:25603

Targets

    • Target

      ff

    • Size

      7KB

    • MD5

      feee8385904c56c40c09d6a57cb37482

    • SHA1

      9f1e8332feed2d74a51c9731db3669a3c4db4643

    • SHA256

      e04091536edb7670381cd07dd4a5c500d27e078053b4f9e0ad314becdd70d87c

    • SHA512

      44e39dcf334a1eff3c9d7d6a3f86035094db847322e7c5ae622708045fab6bff3ac0fd836dd25489f8090b0d2227b944dbeae1649f8d9194cd2cfadc26fdff37

    • SSDEEP

      96:OfWVTg693p1A7IewHFwyJgOHgQ8Bs1EszU/vifEviDMD:+mU693p1A7powyJBAQ8rHikiDMD

    Score
    10/10
    ahmythinfostealerrattrojan

    • AhMyth

      AhMyth is an open source Android remote administration tool.

      trojaninfostealerratahmyth

    • Ahmyth family

      ahmyth

    • Legitimate hosting services abused for malware hosting/C2

    • Requests dangerous framework permissions

    behavioral1behavioral2behavioral3

MITRE ATT&CK Enterprise v16

MITRE ATT&CK Mobile v16

Tasks