General

  • Target

    ready.apk

  • Size

    43.3MB

  • Sample

    240810-pt66patene

  • MD5

    593817f929b0c9b90989053e89a1cfb2

  • SHA1

    ffef2aae0a827e1bb411119ad85e2492020ef493

  • SHA256

    65c50cc24e0fb8b38c7805fb3ce6a5c748a24400453b14875cf6cfab14884d96

  • SHA512

    6a28b181cd001247a3ff39e0cc67cb883f71944daaf3a6d34e1ddc16313944345158cceb76e84d62c8727e3347e55bad12443be2fcd0589dcbab0bb73a988cfb

  • SSDEEP

    786432:Q5iO1ZpFL5UYMylMBeTeLwPx//YTgjbrbP4Ep5TdGEaWs05FOvF0APm6KEO:s1tiYMylMBMx5YTgnP4Ep5hG0Ie6G

Malware Config

Targets

    • Target

      ready.apk

    • Size

      43.3MB

    • MD5

      593817f929b0c9b90989053e89a1cfb2

    • SHA1

      ffef2aae0a827e1bb411119ad85e2492020ef493

    • SHA256

      65c50cc24e0fb8b38c7805fb3ce6a5c748a24400453b14875cf6cfab14884d96

    • SHA512

      6a28b181cd001247a3ff39e0cc67cb883f71944daaf3a6d34e1ddc16313944345158cceb76e84d62c8727e3347e55bad12443be2fcd0589dcbab0bb73a988cfb

    • SSDEEP

      786432:Q5iO1ZpFL5UYMylMBeTeLwPx//YTgjbrbP4Ep5TdGEaWs05FOvF0APm6KEO:s1tiYMylMBMx5YTgnP4Ep5hG0Ie6G

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Acquires the wake lock

    • Legitimate hosting services abused for malware hosting/C2

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

    • Queries information about active data network

    • Queries the mobile country code (MCC)

    • Requests dangerous framework permissions

    • Tries to add a device administrator.

MITRE ATT&CK Enterprise v15

MITRE ATT&CK Mobile v15

Tasks