General

  • Target

    ready.apk

  • Size

    9.3MB

  • Sample

    240731-sc9r2atfkd

  • MD5

    c72e0fa80d59f65a0151f17d986ca893

  • SHA1

    26fc2eb0199a01eaa652492a0e7ea86d690160cf

  • SHA256

    c78b51c1d2fe480e5a9b5de7229d8e0c61e9182bc39844fad500613e10be6485

  • SHA512

    e56607c7601f59da4b51c86d206041332b4b01155b89f4cf29b5d2141a2706e2a51806dbf2a6c57c09631c08842c6b16b7d63421a98269aeb8e1271a0644b457

  • SSDEEP

    98304:+Wjtrircw5Tj0qogxvFXhhf0NBowQWU4IumzrzBMTUXVC0tUysW9:jotj0t4zhcIwDPIpzuGVB39

Malware Config

Targets

    • Target

      ready.apk

    • Size

      9.3MB

    • MD5

      c72e0fa80d59f65a0151f17d986ca893

    • SHA1

      26fc2eb0199a01eaa652492a0e7ea86d690160cf

    • SHA256

      c78b51c1d2fe480e5a9b5de7229d8e0c61e9182bc39844fad500613e10be6485

    • SHA512

      e56607c7601f59da4b51c86d206041332b4b01155b89f4cf29b5d2141a2706e2a51806dbf2a6c57c09631c08842c6b16b7d63421a98269aeb8e1271a0644b457

    • SSDEEP

      98304:+Wjtrircw5Tj0qogxvFXhhf0NBowQWU4IumzrzBMTUXVC0tUysW9:jotj0t4zhcIwDPIpzuGVB39

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    • Acquires the wake lock

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Requests enabling of the accessibility settings.

MITRE ATT&CK Mobile v15

Tasks