Overview

overview

10

Static

static

10

ready.apk

android-11-x64

8

ready.apk

android-13-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ready.apk

  • Size

    9.3MB

  • Sample

    240525-3xeshafb2s

  • MD5

    7812d918f3358ab5daa99b89eb0e717e

  • SHA1

    ce7d2d0735fa5058c1f825afe79d1d8a8fa5dac8

  • SHA256

    46020c858067e71651b5ccac4c886eaca51a91de644932eb4b06271cf588bffc

  • SHA512

    36c8cb1fbb058ad67bfb695a23b4d2b8febe998dbff08f24c2031924d551c551e5ec1bface9c51ce29ad6f2a08de90dc1772674c4aa3c0db72a07f0e614dc8e4

  • SSDEEP

    98304:6oQTUTyqPyKKrr3F6VgKw5rnumzPzB8TL0tgdA4O:6pTQUK63jTnpze0cO

Score
10/10
spynoteandroidcollectioncredential_accessevasionexecutionpersistence

Malware Config

Targets

    • Target

      ready.apk

    • Size

      9.3MB

    • MD5

      7812d918f3358ab5daa99b89eb0e717e

    • SHA1

      ce7d2d0735fa5058c1f825afe79d1d8a8fa5dac8

    • SHA256

      46020c858067e71651b5ccac4c886eaca51a91de644932eb4b06271cf588bffc

    • SHA512

      36c8cb1fbb058ad67bfb695a23b4d2b8febe998dbff08f24c2031924d551c551e5ec1bface9c51ce29ad6f2a08de90dc1772674c4aa3c0db72a07f0e614dc8e4

    • SSDEEP

      98304:6oQTUTyqPyKKrr3F6VgKw5rnumzPzB8TL0tgdA4O:6pTQUK63jTnpze0cO

    Score
    8/10
    collectioncredential_accessevasionpersistenceexecution

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

      collectionevasioncredential_access

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Acquires the wake lock

    • Schedules tasks to execute at a specified time

      Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

      executionpersistence
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks