General

  • Target

    f6975b1a9ab8935d45d6c2d94540b67b2374827734593c126785924afffb6634.apk

  • Size

    4.4MB

  • Sample

    240416-lx88nsgg61

  • MD5

    a95315ca7af6d857379adb2c87f27c72

  • SHA1

    22e40aac894a8218aae2f1b5eeb79473922eb97c

  • SHA256

    f6975b1a9ab8935d45d6c2d94540b67b2374827734593c126785924afffb6634

  • SHA512

    0f33de6a47f34a9406f573d8d14c9cdab445b69c95489b2b1fd3521c3d9a3ab1ea275f6b21a52792167debea6a989d6c3a9d8d1849b56081bd1ba7e5292f6c4a

  • SSDEEP

    98304:whinthin6thinyhinxdhinihinkhin8hinqA/pCIBd1sehPC+MHcl:WCrC6rCECx7CUC6CiCqud1sUPClHcl

Malware Config

Targets

    • Target

      f6975b1a9ab8935d45d6c2d94540b67b2374827734593c126785924afffb6634.apk

    • Size

      4.4MB

    • MD5

      a95315ca7af6d857379adb2c87f27c72

    • SHA1

      22e40aac894a8218aae2f1b5eeb79473922eb97c

    • SHA256

      f6975b1a9ab8935d45d6c2d94540b67b2374827734593c126785924afffb6634

    • SHA512

      0f33de6a47f34a9406f573d8d14c9cdab445b69c95489b2b1fd3521c3d9a3ab1ea275f6b21a52792167debea6a989d6c3a9d8d1849b56081bd1ba7e5292f6c4a

    • SSDEEP

      98304:whinthin6thinyhinxdhinihinkhin8hinqA/pCIBd1sehPC+MHcl:WCrC6rCECx7CUC6CiCqud1sUPClHcl

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Checks CPU information

      Checks CPU information which indicate if the system is an emulator.

    • Checks memory information

      Checks memory information which indicate if the system is an emulator.

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Queries information about the current Wi-Fi connection.

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Requests enabling of the accessibility settings.

    • Acquires the wake lock

MITRE ATT&CK Mobile v15

Tasks