Overview

overview

10

Static

static

10

xxx.apk

android-10-x64

8

xxx.apk

android-11-x64

8

xxx.apk

android-13-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    xxx.apk

  • Size

    4.4MB

  • Sample

    240331-q9b6xsde24

  • MD5

    609002651a476451a876d70bb2113a3a

  • SHA1

    cfd3ca670e09ab76978c21c6d7abf71337ec7edb

  • SHA256

    18ebf26a49e2d0781470fd6a2afc8f7f47d480f939ac0fceaaf0d534f0564bf1

  • SHA512

    26003a86728567d644f4bca36d8aeec7071d2e0f19320ae527e2ea3b18a108681fca53e5768d56add41f2d7f8c54fe5183569f0887cb4cc2236d14025d15b300

  • SSDEEP

    98304:kyYLJNrab3QPKcZE50+9Q4mzQzBjTQ0t4EHY9W:kyYL/ejwvE6+9gzs73F

Score
10/10
spynoteandroidcollectionevasionpersistence

Malware Config

Targets

    • Target

      xxx.apk

    • Size

      4.4MB

    • MD5

      609002651a476451a876d70bb2113a3a

    • SHA1

      cfd3ca670e09ab76978c21c6d7abf71337ec7edb

    • SHA256

      18ebf26a49e2d0781470fd6a2afc8f7f47d480f939ac0fceaaf0d534f0564bf1

    • SHA512

      26003a86728567d644f4bca36d8aeec7071d2e0f19320ae527e2ea3b18a108681fca53e5768d56add41f2d7f8c54fe5183569f0887cb4cc2236d14025d15b300

    • SSDEEP

      98304:kyYLJNrab3QPKcZE50+9Q4mzQzBjTQ0t4EHY9W:kyYL/ejwvE6+9gzs73F

    Score
    8/10
    collectionevasionpersistence

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

      collectionevasion

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Requests enabling of the accessibility settings.

    • Acquires the wake lock

    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks