General
-
Target
6cdcb5f901b60311b05acff5a5e1ac9891ded28be68b1a8700c49225e3491ac7.bin
-
Size
108KB
-
Sample
240417-1zxpzsff68
-
MD5
9e5d676d139da14a866acd2efb3f4f15
-
SHA1
325f1b7d0d6e88279ad627defcd3e572d1a6915c
-
SHA256
6cdcb5f901b60311b05acff5a5e1ac9891ded28be68b1a8700c49225e3491ac7
-
SHA512
d66c791c9bbddfc44581bded4ed1acc9a4447984e006dcf4cd94e903cd64004530ec065168cecb7ebf282ab6c3f514387b35aa04f3371a7f7ec211432ca63dee
-
SSDEEP
3072:WI8S36F3cWXftSjpRR6Q6b+IgiTN4aChnMH:9RqF3hS1S+PNFMH
Malware Config
Targets
-
-
Target
6cdcb5f901b60311b05acff5a5e1ac9891ded28be68b1a8700c49225e3491ac7.bin
-
Size
108KB
-
MD5
9e5d676d139da14a866acd2efb3f4f15
-
SHA1
325f1b7d0d6e88279ad627defcd3e572d1a6915c
-
SHA256
6cdcb5f901b60311b05acff5a5e1ac9891ded28be68b1a8700c49225e3491ac7
-
SHA512
d66c791c9bbddfc44581bded4ed1acc9a4447984e006dcf4cd94e903cd64004530ec065168cecb7ebf282ab6c3f514387b35aa04f3371a7f7ec211432ca63dee
-
SSDEEP
3072:WI8S36F3cWXftSjpRR6Q6b+IgiTN4aChnMH:9RqF3hS1S+PNFMH
Score8/10-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Requests enabling of the accessibility settings.
-
Acquires the wake lock
-
Requests disabling of battery optimizations (often used to enable hiding in the background).
-