ef199abcd3f48fb2b35491e41e6ef5a135fc438a0609b9cfd7cfab20a4a1a15e

Analysis

max time kernel
2246197s
max time network
159s
platform
android_x64
resource
android-x64-20230831-en
resource tags

androidarch:x64arch:x86image:android-x64-20230831-enlocale:en-usos:android-10-x64system
submitted
11-09-2023 20:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ready.apk
Size

22.2MB
MD5

9b3632adeafe6d015046050e6a6bdb0b
SHA1

da563df3ef52d522314e0c9446504a5d1898774f
SHA256

ef199abcd3f48fb2b35491e41e6ef5a135fc438a0609b9cfd7cfab20a4a1a15e
SHA512

1ed9f76ef42c3015db9b8e49b97b36520138a98d4ba4f69cb6714cc5d4ddafc2a73751ca7330aaa0d5f820d862158e625dea096cd448d4c7cf9c03351401d2bf
SSDEEP

393216:yBhoZ2FNoGqSBx+3bN3sQvg8cxrRmBdcVgt3:82gzoGlBYLN8QvgZrRmBdUm

Score

8^/10

evasion

Malware Config

Signatures

Makes use of the framework's Accessibility service. 1 IoCs

Processes:

ends.nb.california

description	ioc	process
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId	ends.nb.california

Acquires the wake lock. 1 IoCs

Processes:

ends.nb.california

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock ends.nb.california
Removes a system notification. 1 IoCs
evasion

Processes:

ends.nb.california

description ioc process

Framework service call android.app.INotificationManager.cancelNotificationWithTag ends.nb.california

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	ends.nb.california

description	ioc	process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	ends.nb.california

ends.nb.california
1⤵
- Makes use of the framework's Accessibility service.
- Acquires the wake lock.
- Removes a system notification.
PID:5034

ends.nb.california:remote
1⤵
PID:5296

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
25B

MD5
a9148d406d2aa27774f728eac988cdd3

SHA1
68c1e93debcda4b97e06720a3b93a434e0f0c4e5

SHA256
bd8740f21d0f44f343afebfd133a234fa5210d5f4f79f2d826980a4a1bf07a38

SHA512
f6f089bbf90a16061e1af9dc677451ce729fcc908218f60977862beb3f370ff69948eace2a4c995a0d65a96efc5263da307d77f514ec3a16f02133d7d9cc2215

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
25B

MD5
a9148d406d2aa27774f728eac988cdd3

SHA1
68c1e93debcda4b97e06720a3b93a434e0f0c4e5

SHA256
bd8740f21d0f44f343afebfd133a234fa5210d5f4f79f2d826980a4a1bf07a38

SHA512
f6f089bbf90a16061e1af9dc677451ce729fcc908218f60977862beb3f370ff69948eace2a4c995a0d65a96efc5263da307d77f514ec3a16f02133d7d9cc2215

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
37B

MD5
8ff31bd87f525742d1693a62d99dd4d6

SHA1
41eb9344509dc310898211a6ca6a2d32ce42923e

SHA256
4083c1d7859c738c9ac2d623a97f3a5abee21df619cdd78da2690793b60bedca

SHA512
2978ac96f893e3a465406e22a2f6ca89c78ca212f691f868f751c3ce5d2bcc3b975f28dadeb86bf2bf9e8c7332c7481a9734e6a9bdd36d474250313ee7fc90e7

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
37B

MD5
8ff31bd87f525742d1693a62d99dd4d6

SHA1
41eb9344509dc310898211a6ca6a2d32ce42923e

SHA256
4083c1d7859c738c9ac2d623a97f3a5abee21df619cdd78da2690793b60bedca

SHA512
2978ac96f893e3a465406e22a2f6ca89c78ca212f691f868f751c3ce5d2bcc3b975f28dadeb86bf2bf9e8c7332c7481a9734e6a9bdd36d474250313ee7fc90e7

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2023-09-11.txt

Filesize
499B

MD5
599a798739de85b6fa0281c824c1b5bf

SHA1
5e464c95455fd9a5486fbfcd8e219802fbd8dec7

SHA256
effa3efb710336ac4783384a9ca9b8b0f248d163bef4b1a8d7e72efb73a9fe4e

SHA512
256d285a49f25899934b6465a29177d6cffae53b14c854afb92a7018e7c098fdec87b902ddc7b5d44c1587c33d5aae09ae055bf27b91fdfc89928fc845edab60

Download Submit