Overview

overview

10

Static

static

10

ready.apk

android-10-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ready.apk

  • Size

    9.3MB

  • Sample

    240515-bbvhaahf32

  • MD5

    34a249b472c0800abf433415493c6e53

  • SHA1

    e338856960d52b0164781fee6b929266c3b31682

  • SHA256

    176e290d646d15a92cb5c1b1b7379cfea6342c392f2f71d8baa65098b5af91f2

  • SHA512

    f2ab9be96dd092abe66ccbe884d5f9e48e4053cd522359352b0a77cc5b65e023bea8dd6eebba28beeb22261396205594f665bda084bf1601c6328af960156728

  • SSDEEP

    98304:YOYP+Uvy+DadnhmIn+IfbqBKUr6emz8zBpTz0t8ejL:W2UvZDQhn+ge65z08l

Score
10/10
spynoteandroidcollectioncredential_accessevasionpersistence

Malware Config

Targets

    • Target

      ready.apk

    • Size

      9.3MB

    • MD5

      34a249b472c0800abf433415493c6e53

    • SHA1

      e338856960d52b0164781fee6b929266c3b31682

    • SHA256

      176e290d646d15a92cb5c1b1b7379cfea6342c392f2f71d8baa65098b5af91f2

    • SHA512

      f2ab9be96dd092abe66ccbe884d5f9e48e4053cd522359352b0a77cc5b65e023bea8dd6eebba28beeb22261396205594f665bda084bf1601c6328af960156728

    • SSDEEP

      98304:YOYP+Uvy+DadnhmIn+IfbqBKUr6emz8zBpTz0t8ejL:W2UvZDQhn+ge65z08l

    Score
    8/10
    collectioncredential_accessevasionpersistence

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

      collectionevasioncredential_access

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Registers a broadcast receiver at runtime (usually for listening for system events)

      persistence

    • Acquires the wake lock

    behavioral1

MITRE ATT&CK Matrix

Tasks