Overview

overview

8

Static

static

7

0c8a2f17e8...fd.apk

android-9-x86

8

0c8a2f17e8...fd.apk

android-10-x64

1

0c8a2f17e8...fd.apk

android-11-x64

8

Analysis

  • max time kernel
    3085509s
  • max time network
    167s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    14/06/2023, 03:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0c8a2f17e8f1b4c9fb9297fe27ca8bb3c33c5e7429d8308c7ef24e2244cc2ffd.apk

  • Size

    18.8MB

  • MD5

    c99629bc9cadeed1e380213e15c0f719

  • SHA1

    18fbb8e64c5606318107131c2ddeb9397d17026d

  • SHA256

    0c8a2f17e8f1b4c9fb9297fe27ca8bb3c33c5e7429d8308c7ef24e2244cc2ffd

  • SHA512

    940156d7caca03bb640f4987b93788ef504400ba3cabacaf94eb8e2ee1ad22ddd6b750f7321b263e909b3e910fcca8fd7c45e1c80e7621348c13d440b7ef51d1

  • SSDEEP

    49152:RtpJBwOPdlovtdIP5neIr9we1SCuhHm1k0jjPn:Rt7BfloFixGCjf

Score
8/10
evasion

Malware Config

Signatures

  • Makes use of the framework's Accessibility service. 2 IoCs
  • Acquires the wake lock. 1 IoCs
  • Requests disabling of battery optimizations (often used to enable hiding in the background). 1 IoCs
    evasion
  • Removes a system notification. 1 IoCs
    evasion

Processes

  • reaction.wrapping.numeric
    1⤵
    • Makes use of the framework's Accessibility service.
    • Acquires the wake lock.
    • Requests disabling of battery optimizations (often used to enable hiding in the background).
    • Removes a system notification.
    PID:4673

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/reaction.wrapping.numeric/shared_prefs/ProtectedApps.xml
    Filesize

    128B

    MD5

    214fb59450fb63c2eba0eb00cbef71bb

    SHA1

    d55306c66d10c8256ced135b9a245fb3de50b096

    SHA256

    29cd87115f57a3d714e8f666d08c6d1bd53fd644a77b8172dfa29ac2aea1bf46

    SHA512

    83c6d8af079e1224d78056316e5bebc3947871194afe325493599131b82fc6a381cc7c72ab93378ddcca3ab6b5ed9c14c6da2e73086e29d48c6dafa550a1622b

    Download Submit

  • /data/user/0/reaction.wrapping.numeric/shared_prefs/reaction.wrapping.numeric.xml
    Filesize

    146B

    MD5

    e0ae18ee51f8080061f538d00a4a2b1f

    SHA1

    b39e93a0da5a827e9154142070e5eb93eb2a6314

    SHA256

    cb60eb5f68387d91f47eecbf64f465400f1d0dfd29dca34c2f7835a381f2c1ee

    SHA512

    646b099795a1e9232a3548f78cd3e0025695f2cfd002cb9eae73c0ce14c64dc253ad3ceb7dd53e6289b38b5f556ed511c103e99c197c0685f80361aa0d97c96e

    Download Submit