General
-
Target
ready.apk
-
Size
9.3MB
-
Sample
240526-bewjrahg26
-
MD5
dd514bb2418a95ec90cb41dd255ae5a8
-
SHA1
a97b0c94ce0e7c0e944670cf2df692bd0b86ebe3
-
SHA256
21eac47259b873d3ec8d2f06b785e295bdc1380495b4c289ad30c91628420410
-
SHA512
3896a70690d0fe60553beef17c85266b642b13d898ff75425969258ff6080d7a1ded0cbe31b418bb0f3a9f5ec3f4997b6a91385456871ed8734156241c35dc5b
-
SSDEEP
98304:Ej/mYFcYrVn/hunQ1Q1zGRM8fz4FJvrRmzbzB1Tk0tgEVpQ:Ej/TrrVn/U1avEUzrXnQ
Malware Config
Targets
-
-
Target
ready.apk
-
Size
9.3MB
-
MD5
dd514bb2418a95ec90cb41dd255ae5a8
-
SHA1
a97b0c94ce0e7c0e944670cf2df692bd0b86ebe3
-
SHA256
21eac47259b873d3ec8d2f06b785e295bdc1380495b4c289ad30c91628420410
-
SHA512
3896a70690d0fe60553beef17c85266b642b13d898ff75425969258ff6080d7a1ded0cbe31b418bb0f3a9f5ec3f4997b6a91385456871ed8734156241c35dc5b
-
SSDEEP
98304:Ej/mYFcYrVn/hunQ1Q1zGRM8fz4FJvrRmzbzB1Tk0tgEVpQ:Ej/TrrVn/U1avEUzrXnQ
Score8/10-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Acquires the wake lock
-
Schedules tasks to execute at a specified time
Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.
-