bab68939362d86f4748350c4cccec652ff656ca34cd2df63d239c8debe3dc7a1 | Triage

Resubmissions

08/05/2025, 17:11

250508-vqej6atvht 8

Sharing

Copy URL Twitter E-mail

General

Target

JokesPhone.apk
Size

8.3MB
Sample

250508-vqej6atvht
MD5

617d8eba8f639c22b886ba6b32005cb7
SHA1

88abe3cc6dfff69916f55e02b97dd762ed450a3f
SHA256

bab68939362d86f4748350c4cccec652ff656ca34cd2df63d239c8debe3dc7a1
SHA512

e92684cf493c02ce5e87f5383e2e974204363231300eb6ce1b86e079493469adaf40cc8fb1976766939f9a56ca8f9605b6c8f03fe5cbd1e82cc17360190c82a0
SSDEEP

196608:ZB66xcLC3pAeO9efol1y8FyglJIDMmHjlIxzyPTgPbTH:ZvEXzjUDFAzgTo

Score

8^/10

android collection credential_access defense_evasion discovery impact persistence

Malware Config

Targets

- Target
  
  JokesPhone.apk
- Size
  
  8.3MB
- MD5
  
  617d8eba8f639c22b886ba6b32005cb7
- SHA1
  
  88abe3cc6dfff69916f55e02b97dd762ed450a3f
- SHA256
  
  bab68939362d86f4748350c4cccec652ff656ca34cd2df63d239c8debe3dc7a1
- SHA512
  
  e92684cf493c02ce5e87f5383e2e974204363231300eb6ce1b86e079493469adaf40cc8fb1976766939f9a56ca8f9605b6c8f03fe5cbd1e82cc17360190c82a0
- SSDEEP
  
  196608:ZB66xcLC3pAeO9efol1y8FyglJIDMmHjlIxzyPTgPbTH:ZvEXzjUDFAzgTo
Score

8^/10

defense_evasion discovery impact persistence collection credential_access
- Checks if the Android device is rooted.
  defense_evasion
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Acquires the wake lock
- Queries information about active data network
  discovery
- Queries the mobile country code (MCC)
  discovery
- Checks the presence of a debugger
  defense_evasion
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Mobile v16

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Clipboard Data

Discovery

System Information Discovery

System Network Configuration Discovery

System Network Connections Discovery

Lateral Movement

Collection

Clipboard Data

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Data Manipulation

Transmitted Data Manipulation

Tasks

static1

behavioral1

defense_evasiondiscoveryimpactpersistence

behavioral2

collectioncredential_accessdefense_evasiondiscoveryimpactpersistence

behavioral3

	
		OSZAR »