General
-
Target
lt_5.43.0_1ac52114_20240511_1122_debug.apk
-
Size
48.2MB
-
Sample
240522-g7dsasfa6x
-
MD5
79e7885be6e974f4db7c50ee3446b9b9
-
SHA1
15cae98324a094ec184d6f32d9c5b8ca1664ab83
-
SHA256
814ef200be71acbc742bced1a1cb82431b7681427f8e63c29740c81dcd4b25d7
-
SHA512
d227cc4275a8989f203c76fad89797735abb1157ffe53919e334eff882325eac53a4703c9d1bf5eea4c148cd5073ef2ac7e559ef3995eb6a6b764561b0ff0e53
-
SSDEEP
786432:xmZlh8jbR3mN20VNf3gQekRYn5g0Ng17NskHDmdS25He9bjfbUCoDqNpAACQED:4hEvSN/k4skj12F6bEDWAAuD
Malware Config
Targets
-
-
Target
lt_5.43.0_1ac52114_20240511_1122_debug.apk
-
Size
48.2MB
-
MD5
79e7885be6e974f4db7c50ee3446b9b9
-
SHA1
15cae98324a094ec184d6f32d9c5b8ca1664ab83
-
SHA256
814ef200be71acbc742bced1a1cb82431b7681427f8e63c29740c81dcd4b25d7
-
SHA512
d227cc4275a8989f203c76fad89797735abb1157ffe53919e334eff882325eac53a4703c9d1bf5eea4c148cd5073ef2ac7e559ef3995eb6a6b764561b0ff0e53
-
SSDEEP
786432:xmZlh8jbR3mN20VNf3gQekRYn5g0Ng17NskHDmdS25He9bjfbUCoDqNpAACQED:4hEvSN/k4skj12F6bEDWAAuD
Score8/10-
Checks if the Android device is rooted.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Acquires the wake lock
-
Checks if the internet connection is available
-
Schedules tasks to execute at a specified time
Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.
-
Checks the presence of a debugger
-