General
-
Target
ready.apk
-
Size
6.2MB
-
Sample
230910-3a5emscc9x
-
MD5
190da6bcb3b92d402840488c00f562d1
-
SHA1
3bf373a4cf808ed00ef5c41e2ceefde7e65ead55
-
SHA256
97bf3ce8c71eac529f7326a2256f85e1b178521ca76bc1ecf42fdf7a6193d065
-
SHA512
24a7908e24f1be4c8b9eb63893d504e9a1d8ead6dfd183a7fbc1199acf75709de41831d6f08bad014bff9ac7621fcdef580f01c7fa994a6f51251c5d7e331913
-
SSDEEP
12288:I+kwIeyyGYivT8OW3m8TQprx0qf53ececMMuUzXj7RgwaBKO3GYzWK+pm+XHA0dG:IXwPyZ558EPLMMlXjN/nO/+pLXZdG
Malware Config
Extracted
spynote
fee-harmful.gl.at.ply.gg:41934:7000
Targets
-
-
Target
ready.apk
-
Size
6.2MB
-
MD5
190da6bcb3b92d402840488c00f562d1
-
SHA1
3bf373a4cf808ed00ef5c41e2ceefde7e65ead55
-
SHA256
97bf3ce8c71eac529f7326a2256f85e1b178521ca76bc1ecf42fdf7a6193d065
-
SHA512
24a7908e24f1be4c8b9eb63893d504e9a1d8ead6dfd183a7fbc1199acf75709de41831d6f08bad014bff9ac7621fcdef580f01c7fa994a6f51251c5d7e331913
-
SSDEEP
12288:I+kwIeyyGYivT8OW3m8TQprx0qf53ececMMuUzXj7RgwaBKO3GYzWK+pm+XHA0dG:IXwPyZ558EPLMMlXjN/nO/+pLXZdG
-
Makes use of the framework's Accessibility service.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps).
-
Acquires the wake lock.
-
Tries to add a device administrator.
-
Requests disabling of battery optimizations (often used to enable hiding in the background).
-
Removes a system notification.
-