ef199abcd3f48fb2b35491e41e6ef5a135fc438a0609b9cfd7cfab20a4a1a15e

Analysis

max time kernel
2246507s
max time network
160s
platform
android_x64
resource
android-x64-20230831-en
resource tags

androidarch:x64arch:x86image:android-x64-20230831-enlocale:en-usos:android-10-x64system
submitted
11-09-2023 20:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ready.apk
Size

22.2MB
MD5

9b3632adeafe6d015046050e6a6bdb0b
SHA1

da563df3ef52d522314e0c9446504a5d1898774f
SHA256

ef199abcd3f48fb2b35491e41e6ef5a135fc438a0609b9cfd7cfab20a4a1a15e
SHA512

1ed9f76ef42c3015db9b8e49b97b36520138a98d4ba4f69cb6714cc5d4ddafc2a73751ca7330aaa0d5f820d862158e625dea096cd448d4c7cf9c03351401d2bf
SSDEEP

393216:yBhoZ2FNoGqSBx+3bN3sQvg8cxrRmBdcVgt3:82gzoGlBYLN8QvgZrRmBdUm

Score

8^/10

evasion

Malware Config

Signatures

Makes use of the framework's Accessibility service. 1 IoCs

Processes:

ends.nb.california

description	ioc	process
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId	ends.nb.california

Acquires the wake lock. 1 IoCs

Processes:

ends.nb.california

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock ends.nb.california
Removes a system notification. 1 IoCs
evasion

Processes:

ends.nb.california

description ioc process

Framework service call android.app.INotificationManager.cancelNotificationWithTag ends.nb.california

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	ends.nb.california

description	ioc	process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	ends.nb.california

ends.nb.california
1⤵
- Makes use of the framework's Accessibility service.
- Acquires the wake lock.
- Removes a system notification.
PID:5046

ends.nb.california:remote
1⤵
PID:5332

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
25B

MD5
a9148d406d2aa27774f728eac988cdd3

SHA1
68c1e93debcda4b97e06720a3b93a434e0f0c4e5

SHA256
bd8740f21d0f44f343afebfd133a234fa5210d5f4f79f2d826980a4a1bf07a38

SHA512
f6f089bbf90a16061e1af9dc677451ce729fcc908218f60977862beb3f370ff69948eace2a4c995a0d65a96efc5263da307d77f514ec3a16f02133d7d9cc2215

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
25B

MD5
a9148d406d2aa27774f728eac988cdd3

SHA1
68c1e93debcda4b97e06720a3b93a434e0f0c4e5

SHA256
bd8740f21d0f44f343afebfd133a234fa5210d5f4f79f2d826980a4a1bf07a38

SHA512
f6f089bbf90a16061e1af9dc677451ce729fcc908218f60977862beb3f370ff69948eace2a4c995a0d65a96efc5263da307d77f514ec3a16f02133d7d9cc2215

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
57B

MD5
a9ec0c42a43c72d73c499e5c17ccbb8b

SHA1
731652fbfe61eac3fdb4b9d3e2eaa010848a0906

SHA256
6c5309ce3f31c9af3288b0de3305b7f5ddee97be60ca4ac1184f3c334480c05b

SHA512
5f8ed24a51f68cfa0627aceb9190d3a7febaee61bd5a89898ab113ddaa7ce2a41f129a28c4e200d5e5e4ddff7a483abc0393dc38e870782caf1c46d2ec0df2e3

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
33B

MD5
365f074d64faad2f0f0c7784608e5b57

SHA1
2105b80d01621cbd370bec93f73709a7b67d565b

SHA256
0c4662ed55fc03738e7903864ed0249c921b8f2d858531577eebd53501237cc4

SHA512
d29b5c16d10a78b386ba1f4882f7e80bc6d41887671abe6a36c746b015ea280d4a26f3d2af323b4ad755c256e5851a5b95d0bda8882c6c0a2c125bc748fab47a

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
142B

MD5
55757b4d08e297f3bb76fc6009b0b57f

SHA1
c0232ce3888f4baf55a403109472ab4f3e2daf0d

SHA256
fc81031fcb3b591ad937ff98c28c734b3dfa5aa8c38292b6d7a387d7a7d69dc9

SHA512
2db1ac25f49dd568474bf6ed07b301fed10705b9386d098e4c660d98f6f45abe28892300a782991d1aeba027b9c3168a7cbbb399efac6f44682785b4e0e94afc

Download Submit