General
-
Target
f6975b1a9ab8935d45d6c2d94540b67b2374827734593c126785924afffb6634.apk
-
Size
4.4MB
-
Sample
240416-lx88nsgg61
-
MD5
a95315ca7af6d857379adb2c87f27c72
-
SHA1
22e40aac894a8218aae2f1b5eeb79473922eb97c
-
SHA256
f6975b1a9ab8935d45d6c2d94540b67b2374827734593c126785924afffb6634
-
SHA512
0f33de6a47f34a9406f573d8d14c9cdab445b69c95489b2b1fd3521c3d9a3ab1ea275f6b21a52792167debea6a989d6c3a9d8d1849b56081bd1ba7e5292f6c4a
-
SSDEEP
98304:whinthin6thinyhinxdhinihinkhin8hinqA/pCIBd1sehPC+MHcl:WCrC6rCECx7CUC6CiCqud1sUPClHcl
Malware Config
Targets
-
-
Target
f6975b1a9ab8935d45d6c2d94540b67b2374827734593c126785924afffb6634.apk
-
Size
4.4MB
-
MD5
a95315ca7af6d857379adb2c87f27c72
-
SHA1
22e40aac894a8218aae2f1b5eeb79473922eb97c
-
SHA256
f6975b1a9ab8935d45d6c2d94540b67b2374827734593c126785924afffb6634
-
SHA512
0f33de6a47f34a9406f573d8d14c9cdab445b69c95489b2b1fd3521c3d9a3ab1ea275f6b21a52792167debea6a989d6c3a9d8d1849b56081bd1ba7e5292f6c4a
-
SSDEEP
98304:whinthin6thinyhinxdhinihinkhin8hinqA/pCIBd1sehPC+MHcl:WCrC6rCECx7CUC6CiCqud1sUPClHcl
Score8/10-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Checks CPU information
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Queries information about the current Wi-Fi connection.
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Requests enabling of the accessibility settings.
-
Acquires the wake lock
-