General
-
Target
193ea3675bfb5291d4c74b43a6f123e236ff3e407c9f82b1fc699184b68ac526
-
Size
3.7MB
-
Sample
240701-crf59swgkm
-
MD5
9f242ac3c129ba81329d49822c85bbc8
-
SHA1
1b84538b8eff542156d367f346dbcc9dca994dee
-
SHA256
193ea3675bfb5291d4c74b43a6f123e236ff3e407c9f82b1fc699184b68ac526
-
SHA512
da5a938cbec9e83973816d4aeeaf13f2c8626a2fa8a478f1d4f5b692f4db8c61926552d96117c5e871adcbc26669bf1655f4d6472a51751c95eb42022b24e0e1
-
SSDEEP
98304:Xm4pCkj/Pub/yE0HernXZUSKqqDhnpYXXg7q:jEkj/mb/yE0HerqBIg7q
Malware Config
Targets
-
-
Target
193ea3675bfb5291d4c74b43a6f123e236ff3e407c9f82b1fc699184b68ac526
-
Size
3.7MB
-
MD5
9f242ac3c129ba81329d49822c85bbc8
-
SHA1
1b84538b8eff542156d367f346dbcc9dca994dee
-
SHA256
193ea3675bfb5291d4c74b43a6f123e236ff3e407c9f82b1fc699184b68ac526
-
SHA512
da5a938cbec9e83973816d4aeeaf13f2c8626a2fa8a478f1d4f5b692f4db8c61926552d96117c5e871adcbc26669bf1655f4d6472a51751c95eb42022b24e0e1
-
SSDEEP
98304:Xm4pCkj/Pub/yE0HernXZUSKqqDhnpYXXg7q:jEkj/mb/yE0HerqBIg7q
Score10/10-
TiSpy
TiSpy is an Android stalkerware.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Queries the phone number (MSISDN for GSM devices)
-
Requests cell location
Uses Android APIs to to get current cell location.
-
Acquires the wake lock
-
Queries information about active data network
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries the mobile country code (MCC)
-