Analysis
-
max time kernel
12s -
max time network
148s -
platform
android_x64 -
resource
android-x64-arm64-20240221-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system -
submitted
17-03-2024 19:24
Behavioral task
behavioral1
Sample
globalotpbeta.apk
Resource
android-x86-arm-20240221-en
Behavioral task
behavioral2
Sample
globalotpbeta.apk
Resource
android-x64-20240221-en
Behavioral task
behavioral3
Sample
globalotpbeta.apk
Resource
android-x64-arm64-20240221-en
General
-
Target
globalotpbeta.apk
-
Size
696KB
-
MD5
6c794a8993deca2effdc6f9b463cdf21
-
SHA1
55b3a42b2fca32d3a14ff2f3564dfbc0e07b3327
-
SHA256
469fde07129aeba4100ef0f8146b4e36ff4f8d53c9fea346042850cab9ea7ecc
-
SHA512
dc10bc2084c015948b475561b305abea24d28cbaf314679d176173f4dde0a8345723c3e8159bb6c9f4687a4ce8acde558bb33d735ca9ed5dbfe06e8bd3aad382
-
SSDEEP
12288:kc5HJ9azrzA55rzKdpYBj5z6jqDxbmlQXolRL+Ve/JusT3cgtN0F1U6Rq21DgvVw:kaTazrzu5vKdpYDmjIFyRiVeHT3SF1Us
Malware Config
Signatures
-
Makes use of the framework's Accessibility service 2 TTPs 1 IoCs
Retrieves information displayed on the phone screen using AccessibilityService.
Processes:
com.fda.porcelaindescription ioc process Framework service call android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId com.fda.porcelain
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
/storage/emulated/0/Config/sys/apps/log/log-2024-03-17.txtFilesize
40B
MD5dcaf1c3864939e82f6f556dcd21d2125
SHA1a4f2d53d692702fd58476d7d35727d7783792119
SHA2565d766b08b1c08c118a70c10cfded6b0c43cce1699828fe846cf9879b3927cc2a
SHA512786183141e8656e3624fa3a264fa6989ffb097e6214d251040574deeb5a12517c4beae5456254bbbe6ac5b5edeb8e013bd41e7a31a17c3b1b29cfb621cb6aac0