Analysis
-
max time kernel
51s -
max time network
131s -
platform
android_x64 -
resource
android-x64-20240514-en -
resource tags
-
submitted
22-05-2024 15:54
General
-
Target
Oneeshota_Infection.apk
-
Size
71.8MB
-
MD5
bece83eddbbdc1fa965c96adce41014b
-
SHA1
f481d6fce6c5ec24fae79feedbb8306378760472
-
SHA256
7df5874698c9b42137280fb3db70256753ba9580d76b579e0a6cc1626aef3854
-
SHA512
fb85f531fbc58d62225a7235488a63dd2b512caf6baa606eb1d3570a525913e59159c6e8d7f4321558fb7fcf43059a4f142c496f08f043db7b63d12f7b5980c2
-
SSDEEP
1572864:f1Tvg8yPB3RZYINT/5FftPWUdDNiocfYqYsOW1TzQwQtyYCcvxS:f1TvtQ3MO3ftzdco2Y3slzQ7I
Score
7/10
Malware Config
Signatures
-
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
Processes
-
com.oi.luccisan1⤵
- Checks CPU information
- Checks memory information
- Obtains sensitive information copied to the device clipboard
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)