SecretCalls Spotlight: A Formidable App of Notorious Korean Financial Fraudster (Part 1)
Common Information
Type Value
UUID 44fe8546-2e0f-4a83-a693-80655bf1e96a
Fingerprint b83cc95a883aa643
Analysis status DONE
Considered CTI value 2
Text language
Published April 30, 2024, 12:59 p.m.
Added to db Aug. 31, 2024, 8:08 a.m.
Last updated Dec. 24, 2024, 4 a.m.
Headline SecretCalls Spotlight: A Formidable App of Notorious Korean Financial Fraudster (Part 1)
Title SecretCalls Spotlight: A Formidable App of Notorious Korean Financial Fraudster (Part 1)
Detected Hints/Tags/Attributes 55/3/56
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 220 Stories by S2W on Medium https://s2w.medium.com/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 919
index.html
Details File 1
byfg2.apk
Details File 189
androidmanifest.xml
Details File 2
cfuvdw.apk
Details File 1
securityservice.apk
Details md5 1
2603b73c22498e6eb20c4cfae5d34850
Details md5 1
9ffc137696947fa52c2a1171ed971d3d
Details md5 1
c9bd36ec8f1fd4323a3585891c504999
Details md5 1
4eece3206d12f32e2061f954bb4eee33
Details md5 1
ea9bd37b1cf23d95c33356e5dabfb623
Details md5 1
2ac75296c3c537faf125543c9d386b05
Details md5 1
84695f568bc58df62e9befdcf70c9fe7
Details md5 1
963272edf22f2273b5b6b309279d29dd
Details md5 1
bac5c46f4070ebf7b9ce740e4e0ba1a7
Details md5 1
f05c85ebbc27ccee496d7940922fc313
Details md5 1
2c567713992e320ef4545f6bad48cba1
Details md5 1
64d7cdafa0112813b3ee2f18ba0e8b05
Details md5 1
e8f543d317e9b30c59e4ef9a73577936
Details md5 1
59ffa49047dd058c980c0023c4dd7087
Details md5 1
16f1bc026c56bf0ec9f89224113ec4f8
Details md5 1
984b47a9adbd9879f881af49798f11db
Details md5 1
30f608c02e39887399effb74f98ed9bc
Details md5 1
5465a99e3652c60df680eaa783263e56
Details md5 1
6b67ec8b07939cf58c81ee88cc0ba3ee
Details md5 1
e40267bb203c87e33692723631183e86
Details sha1 1
121b6fd9178edfd3b6422c66c3d504bee90cbe46
Details sha1 2
e24292b5d840671519b87cb076f9ced4f39191c5
Details sha256 1
76bb1d3fa9b8b872c01da30bfac5fe52ae89d3ca43ce0dad967bc7da0a8e7644
Details sha256 1
b7081e46af122391481235a4d0a542150db1f4500cfce90e07e227730981476f
Details sha256 1
1d7702548185a610711e25e0f31bdf10719ee38543ec192a129268aafc683b0b
Details sha256 1
145f72fb0938f395c8d8dc71efa768241a00b7b1721bde4cc231e4233374a836
Details sha256 1
54ee8358723132b4b6f41eee4c40c3a06a794201ce998d4c7cc6185a37ee0dad
Details sha256 1
f2c48f0a34746fae9dd0bea3eaafc11058338b39736d6a1db715da42437dd601
Details sha256 1
662b84e31e38334394c35a0862dad21ef10086bd8a90619bc73c4b8598213526
Details sha256 1
e9b7980cde15f62dcceb98470b476b075659ef08b5a38c794b6e8954ccdcefbd
Details sha256 1
0d619094cd4d2c5fe7ffa917b4cef5852101128a31b25850bb4bdcfeb782b7c0
Details sha256 1
649176de7d03d218952f72ff780f6f8532752066688192f4ae92e409efaf0864
Details sha256 1
9b40ee23aa24a37cffe3dba91e4e490e4138ee3f593a135d17f6b2c2e02d69e6
Details sha256 1
9e8c3d489ad519cc4185d9a69085bc85048f5481743fcc7480d3dde616639771
Details sha256 1
32e668ab3cbcebaec73d7b8a5b1e5cfee1c8b07969f851df6fe0f1ba405d1a89
Details sha256 1
ce5082cb80719da6e91d4e5fb0b4c35fd4881fb4acbdc06243a00c86b42a4ded
Details sha256 1
d65b2092ee471eb25c756fa4d1847b16895e57aa690c3f317df51afd79d28dd2
Details sha256 1
b46f93c5b127ddbea341c45c42934e32248467f6d226cf8f89c20916491e4977
Details sha256 1
7f1e4420025c544b9dd8b13929b04c82ac0abd08dba8c2f1e7a667345bf06dee
Details sha256 1
a4c6a52cabfddb57bdaad2532f324116f7900269339d9f41c6d3c46e3bd682ae
Details sha256 1
baad6e7a9a06768682f5553c2b765ac5f74e708be69856d4f640a534a06da459
Details sha256 1
eddf03eb7a3579026eec268e74209f68286bf07993c04ec24ffab10173b69877
Details IPv4 1
61.227.55.47
Details IPv4 1
114.44.218.84
Details IPv4 1
36.234.40.6
Details MITRE ATT&CK Techniques 14
T1575
Details MITRE ATT&CK Techniques 6
T1633.001
Details MITRE ATT&CK Techniques 7
T1630.002
Details MITRE ATT&CK Techniques 15
T1407
Details MITRE ATT&CK Techniques 3
T1629.003
Details Url 2
https://www.blackhat.com/asia-24/briefings/schedule/index.html#voice