ef199abcd3f48fb2b35491e41e6ef5a135fc438a0609b9cfd7cfab20a4a1a15e

Analysis

max time kernel
2246510s
max time network
158s
platform
android_x64
resource
android-x64-arm64-20230831-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20230831-enlocale:en-usos:android-11-x64system
submitted
11-09-2023 20:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ready.apk
Size

22.2MB
MD5

9b3632adeafe6d015046050e6a6bdb0b
SHA1

da563df3ef52d522314e0c9446504a5d1898774f
SHA256

ef199abcd3f48fb2b35491e41e6ef5a135fc438a0609b9cfd7cfab20a4a1a15e
SHA512

1ed9f76ef42c3015db9b8e49b97b36520138a98d4ba4f69cb6714cc5d4ddafc2a73751ca7330aaa0d5f820d862158e625dea096cd448d4c7cf9c03351401d2bf
SSDEEP

393216:yBhoZ2FNoGqSBx+3bN3sQvg8cxrRmBdcVgt3:82gzoGlBYLN8QvgZrRmBdUm

Score

8^/10

evasion

Malware Config

Signatures

Makes use of the framework's Accessibility service. 1 IoCs

Processes:

ends.nb.california

description	ioc	process
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId	ends.nb.california

Acquires the wake lock. 1 IoCs

Processes:

ends.nb.california

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock ends.nb.california
Removes a system notification. 1 IoCs
evasion

Processes:

ends.nb.california

description ioc process

Framework service call android.app.INotificationManager.cancelNotificationWithTag ends.nb.california

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	ends.nb.california

description	ioc	process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	ends.nb.california

ends.nb.california
1⤵
- Makes use of the framework's Accessibility service.
- Acquires the wake lock.
- Removes a system notification.
PID:4570

ends.nb.california:remote
1⤵
PID:4882

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
25B

MD5
a9148d406d2aa27774f728eac988cdd3

SHA1
68c1e93debcda4b97e06720a3b93a434e0f0c4e5

SHA256
bd8740f21d0f44f343afebfd133a234fa5210d5f4f79f2d826980a4a1bf07a38

SHA512
f6f089bbf90a16061e1af9dc677451ce729fcc908218f60977862beb3f370ff69948eace2a4c995a0d65a96efc5263da307d77f514ec3a16f02133d7d9cc2215

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
25B

MD5
a9148d406d2aa27774f728eac988cdd3

SHA1
68c1e93debcda4b97e06720a3b93a434e0f0c4e5

SHA256
bd8740f21d0f44f343afebfd133a234fa5210d5f4f79f2d826980a4a1bf07a38

SHA512
f6f089bbf90a16061e1af9dc677451ce729fcc908218f60977862beb3f370ff69948eace2a4c995a0d65a96efc5263da307d77f514ec3a16f02133d7d9cc2215

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
33B

MD5
ae6301b417a4058b1c66e9017db594ce

SHA1
88a29b5b61835f8d651cf7c3826bf5c42986ad83

SHA256
453558b4a2507eea7ee276b772cdcbf902de9957859a974d51c6865d844f33a3

SHA512
28011a6d9c2d5eee1c907a47994c6e116fefcf8df67f4b55f08b6c70ef44f7922fa09dddfacf4b2a1071c80ece7e52dd1ab7b4b86906bd3186a427785e8d5d3d

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
29B

MD5
bcac621fd8aec2962185828f8e1be98e

SHA1
4519d10f64f1b790b97b4e1146f5cc64ca0a28d8

SHA256
1a59cc44bcd7a483d2cf373b7d81ff2f818139af99b909fa0fb0e301ce194135

SHA512
3708600943fff82a603b73f3385625d1f229ab2b65200b7d8ae4a89f81c9ec7bd3a8a33b390396514c6dded315653f64029ab30580c4fce4b54a5e8671b1e84a

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
337B

MD5
075360172087238a643d9a91840bb65a

SHA1
c4756b3cd9a9b6d03cdbbe139ce9da1f709d511a

SHA256
8da73ef57517ae1b7b05b1bf941767eb43cc2580cde29862e6e1ffc048d5def4

SHA512
51e5d7b4410e870fcbff37b5a9c9f132312b27f678c309ecbb1024f8f400ead704e39ba2d3362d0c53e8a5c37c8549cb289a5cb7974c0f2ddf8b64ddaffb5b8f

Download Submit