General
-
Target
Повітряна тривога_6.1.1_APKPure.apk
-
Size
48.4MB
-
Sample
240522-l8zhlsbf2s
-
MD5
307c869e4fc648de1ef06d49eda27b22
-
SHA1
a0a864619dfb83731685234e8aa049e138a7faad
-
SHA256
e319e0b595b2ab651f0cf3b8c729329a5da9bd7d5fa3138f5f7e1919b2ae6430
-
SHA512
c032f35221e3ad87ffeb9e6e9ebce2c0188153b86dbb0ac4009b74c42469ff8615e4d51b8daf1edd82412044bbd9ecc22fe00d9b4713956e04065036d7f7a690
-
SSDEEP
786432:vpdlsVbYvayaM9rn8L32nuvQ8t4p1d3dy25IyvmzpdJVUs8edEdMu4Ugrn7rnC:vpdlzaSIL3Ft4G25IyEwuUgf2
Malware Config
Targets
-
-
Target
Повітряна тривога_6.1.1_APKPure.apk
-
Size
48.4MB
-
MD5
307c869e4fc648de1ef06d49eda27b22
-
SHA1
a0a864619dfb83731685234e8aa049e138a7faad
-
SHA256
e319e0b595b2ab651f0cf3b8c729329a5da9bd7d5fa3138f5f7e1919b2ae6430
-
SHA512
c032f35221e3ad87ffeb9e6e9ebce2c0188153b86dbb0ac4009b74c42469ff8615e4d51b8daf1edd82412044bbd9ecc22fe00d9b4713956e04065036d7f7a690
-
SSDEEP
786432:vpdlsVbYvayaM9rn8L32nuvQ8t4p1d3dy25IyvmzpdJVUs8edEdMu4Ugrn7rnC:vpdlzaSIL3Ft4G25IyEwuUgf2
Score8/10-
Checks if the Android device is rooted.
-
Checks CPU information
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Acquires the wake lock
-
Checks if the internet connection is available
-
Schedules tasks to execute at a specified time
Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.
-
Checks the presence of a debugger
-