Overview

overview

10

Static

static

10

4daf21a708...8b.apk

android-9-x86

8

4daf21a708...8b.apk

android-10-x64

8

4daf21a708...8b.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4daf21a708afc06c0da4ee6e192a6db6405efb1e3a9eb6905cc69d501e781c8b.bin

  • Size

    4.5MB

  • Sample

    240324-1wwzaaha97

  • MD5

    1ec0f8696578e0e427140fd256ec4e4f

  • SHA1

    dee29fb458a62b82e63a8f1cc570b4b2136faa1c

  • SHA256

    4daf21a708afc06c0da4ee6e192a6db6405efb1e3a9eb6905cc69d501e781c8b

  • SHA512

    5d8c4b1c6190af462101145713b8f53317a63c94fe737d413e758b3c3f404b2ffeba18aaa988cf2e8cfbc6304b8e6e0d51fe3f57f82e165dda83e5b0260b61f9

  • SSDEEP

    98304:gLUhinlhin6Vhinahinx1hin6hinshinUhindbB1N9XruuBogd9PRlO:gLKCzC6DC8CxjCcCyCKCdbnnXquh9PRs

Score
10/10
irataandroidcollectionevasionpersistence

Malware Config

Targets

    • Target

      4daf21a708afc06c0da4ee6e192a6db6405efb1e3a9eb6905cc69d501e781c8b.bin

    • Size

      4.5MB

    • MD5

      1ec0f8696578e0e427140fd256ec4e4f

    • SHA1

      dee29fb458a62b82e63a8f1cc570b4b2136faa1c

    • SHA256

      4daf21a708afc06c0da4ee6e192a6db6405efb1e3a9eb6905cc69d501e781c8b

    • SHA512

      5d8c4b1c6190af462101145713b8f53317a63c94fe737d413e758b3c3f404b2ffeba18aaa988cf2e8cfbc6304b8e6e0d51fe3f57f82e165dda83e5b0260b61f9

    • SSDEEP

      98304:gLUhinlhin6Vhinahinx1hin6hinshinUhindbB1N9XruuBogd9PRlO:gLKCzC6DC8CxjCcCyCKCdbnnXquh9PRs

    Score
    8/10
    collectionevasionpersistence

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

      collectionevasion

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Acquires the wake lock

    behavioral1behavioral2behavioral3

MITRE ATT&CK Mobile v15

Tasks