Analysis
-
max time kernel
150s -
max time network
132s -
platform
android_x86 -
resource
android-x86-arm-20240506-en -
resource tags
-
submitted
13-05-2024 17:15
General
-
Target
Hidden.apk
-
Size
760KB
-
MD5
54d58ec4d05f837a101fa08f94bb98db
-
SHA1
77a2853ad6f0402183806899d801b79c0091cf61
-
SHA256
6008975dfd2aaa07fcb307b12d0c8a273aa6f4882749e29bac1f29e26a035c8f
-
SHA512
47b66a05d9b8e9588b5a82eeff367c79a4ff0102388f2c3cf0202cd6ae2ca306b5c12c450877d4c66d60ca9fc1855e5523f16cdcb7de9d65a25e9ccca2b295ab
-
SSDEEP
12288:Lw8MOAsa1a8Lde9/NhRmmw5WmpYshXZPbGwidNpg/FD:LwL0a1a6e9fRmmw5WmD9idNpyN
Score
8/10
Malware Config
Signatures
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs
Application may abuse the framework's foreground service to continue running in the foreground.
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Requests enabling of the accessibility settings. 1 IoCs
-
Tries to add a device administrator. 2 TTPs 1 IoCs
Processes
-
cmf0.c3b5bm90zq.patch1⤵
- Makes use of the framework's foreground persistence service
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Requests enabling of the accessibility settings.
- Tries to add a device administrator.
-
su2⤵