68888c31c2e30b003d08f001548ac321985975bb64e48de368310cf4c4df9df4

Target

SicurezzaDispositivo.apk
Size

1.8MB
MD5

fb10f2f9b79ed2c21061cec17160fe20
SHA1

7f1e62f31793ca39ccee63075625cd148c86beb7
SHA256

68888c31c2e30b003d08f001548ac321985975bb64e48de368310cf4c4df9df4
SHA512

b03ad37e48640391ddb78c124bfbfee6cf06861db04e09e802603cd53fbebf3f23e103e453735ca732855c0b53fa520ecb8bde0377a681f940216577847d89c0

Score

7^/10

obfuscation

Malware Config

Signatures

Requests enabling of the accessibility settings. 1 IoCs

Processes:

b4a.example

description ioc process

Intent action android.settings.ACCESSIBILITY_SETTINGS b4a.example

description	ioc	process
Intent action	android.settings.ACCESSIBILITY_SETTINGS	b4a.example

Uses reflection 64 IoCs

obfuscation

Processes:

b4a.example

description	pid	process
Acesses field anywheresoftware.b4a.keywords.Common.Density	3632	b4a.example
Acesses field anywheresoftware.b4a.keywords.Common.Density	3632	b4a.example
Invokes method b4a.example.main._globals	3632	b4a.example
Acesses field anywheresoftware.b4a.BA.sharedProcessBA	3632	b4a.example
Acesses field anywheresoftware.b4a.BA$SharedProcessBA.activityBA	3632	b4a.example
Acesses field anywheresoftware.b4a.BA.context	3632	b4a.example
Invokes method android.app.Activity.getSystemService	3632	b4a.example
Invokes method android.view.WindowManagerImpl.getDefaultDisplay	3632	b4a.example
Invokes method android.view.Display.getRealSize	3632	b4a.example
Acesses field android.graphics.Point.x	3632	b4a.example
Acesses field anywheresoftware.b4a.BA.sharedProcessBA	3632	b4a.example
Acesses field anywheresoftware.b4a.BA$SharedProcessBA.activityBA	3632	b4a.example
Acesses field anywheresoftware.b4a.BA.context	3632	b4a.example
Invokes method android.app.Activity.getSystemService	3632	b4a.example
Invokes method android.view.WindowManagerImpl.getDefaultDisplay	3632	b4a.example
Invokes method android.view.Display.getRealSize	3632	b4a.example
Acesses field android.graphics.Point.y	3632	b4a.example
Invokes method b4a.example.main._activity_create	3632	b4a.example
Invokes method b4a.example.main._activity_resume	3632	b4a.example
Invokes method android.app.Activity.invalidateOptionsMenu	3632	b4a.example
Acesses field anywheresoftware.b4a.keywords.Common.Density	3632	b4a.example
Invokes method b4a.example.main.initializeProcessGlobals	3632	b4a.example
Invokes method b4a.example.websock_service._service_create	3632	b4a.example
Invokes method b4a.example.websock_service._service_start	3632	b4a.example
Invokes method b4a.example.websock_service._service_start	3632	b4a.example
Acesses field anywheresoftware.b4a.keywords.Common.Density	3632	b4a.example
Acesses field anywheresoftware.b4a.keywords.Common.Density	3632	b4a.example
Invokes method b4a.example.main.initializeProcessGlobals	3632	b4a.example
Invokes method b4a.example.permission_activity_a11y._globals	3632	b4a.example
Invokes method anywheresoftware.b4a.objects.drawable.ColorDrawable.build	3632	b4a.example
Invokes method anywheresoftware.b4a.objects.ActivityWrapper.build	3632	b4a.example
Acesses field android.graphics.Typeface.DEFAULT	3632	b4a.example
Acesses field android.graphics.Typeface.BOLD	3632	b4a.example
Acesses field android.view.Gravity.CENTER_VERTICAL	3632	b4a.example
Acesses field android.view.Gravity.CENTER_HORIZONTAL	3632	b4a.example
Invokes method anywheresoftware.b4a.objects.drawable.ColorDrawable.build	3632	b4a.example
Invokes method anywheresoftware.b4a.objects.LabelWrapper.build	3632	b4a.example
Invokes method anywheresoftware.b4a.objects.ImageViewWrapper.build	3632	b4a.example
Invokes method anywheresoftware.b4a.objects.drawable.ColorDrawable.build	3632	b4a.example
Invokes method android.view.View.setElevation	3632	b4a.example
Invokes method anywheresoftware.b4a.objects.PanelWrapper.build	3632	b4a.example
Acesses field android.graphics.Typeface.DEFAULT	3632	b4a.example
Acesses field android.graphics.Typeface.BOLD	3632	b4a.example
Acesses field android.view.Gravity.CENTER_VERTICAL	3632	b4a.example
Acesses field android.view.Gravity.CENTER_HORIZONTAL	3632	b4a.example
Invokes method anywheresoftware.b4a.objects.drawable.ColorDrawable.build	3632	b4a.example
Invokes method anywheresoftware.b4a.objects.LabelWrapper.build	3632	b4a.example
Acesses field b4a.example.permission_activity_a11y._label2	3632	b4a.example
Invokes method b4a.example.designerscripts.LS_a11y_eng.LS_general	3632	b4a.example
Invokes method b4a.example.permission_activity_a11y._activity_create	3632	b4a.example
Acesses field b4a.example.websock_service.processBA	3632	b4a.example
Invokes method b4a.example.permission_activity_a11y._activity_resume	3632	b4a.example
Invokes method android.app.Activity.invalidateOptionsMenu	3632	b4a.example
Invokes method b4a.example.permission_activity_a11y._label2_click	3632	b4a.example
Invokes method b4a.example.permission_activity_a11y._activity_pause	3632	b4a.example
Invokes method b4a.example.main.isAnyActivityVisible	3632	b4a.example
Invokes method b4a.example.websock_service._service_start	3632	b4a.example
Acesses field anywheresoftware.b4a.keywords.Common.Density	3632	b4a.example
Invokes method b4a.example.main.initializeProcessGlobals	3632	b4a.example
Invokes method b4a.example.permission_activity_a11y._globals	3632	b4a.example
Invokes method anywheresoftware.b4a.objects.drawable.ColorDrawable.build	3632	b4a.example
Invokes method anywheresoftware.b4a.objects.ActivityWrapper.build	3632	b4a.example
Acesses field android.graphics.Typeface.DEFAULT	3632	b4a.example
Acesses field android.graphics.Typeface.BOLD	3632	b4a.example

b4a.example
1⤵
- Requests enabling of the accessibility settings.
- Uses reflection
PID:3632

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/b4a.example/files/me_device.json
MD5
c0990bbc3dc599b65b897e86be0ae36c

SHA1
b20ff06068631095bf5281b1b47ce61d96c7534e

SHA256
8cfcd7ffb3b0e14d41bc0420c5cd3d02dd0e7e57b77fcfca33c5706b25e2e6e1

SHA512
31295bcc2d1cfaf761646bb032a7a6e8f97e7e7df7fba9843bb4511cafa1f022bdbf9a6eb9fa1c2628d7d4cc6118488e31dfb2d5feadfb43f4feb6c9a940804a

Download Submit