General
-
Target
Zoom.apk
-
Size
7.6MB
-
Sample
241007-h2ggnssfmk
-
MD5
99c318a3703f5c3d2fd9e2ed8b1a300d
-
SHA1
ff709762ad4840c068f56bc79e3bc4d0df48677c
-
SHA256
e6ddd9d37ec93fdfe467bb86219c1df30c81091843f042c59493a75b51abf300
-
SHA512
3bc02853a933dceeacaa367905a33021d7af8dc5572239fa5808684e37b710376fe9b4a9ced7f12c6bae0d9c057457fd649ac90436acf30486674feeb5291a45
-
SSDEEP
196608:Qo/MbB+7yvARBbHlkAPyU8YmpJfBs8ML4bGhK6dhqPh0+F4:QqMbyOARh6AbQJ68vKnd+6
Malware Config
Targets
-
-
Target
Zoom.apk
-
Size
7.6MB
-
MD5
99c318a3703f5c3d2fd9e2ed8b1a300d
-
SHA1
ff709762ad4840c068f56bc79e3bc4d0df48677c
-
SHA256
e6ddd9d37ec93fdfe467bb86219c1df30c81091843f042c59493a75b51abf300
-
SHA512
3bc02853a933dceeacaa367905a33021d7af8dc5572239fa5808684e37b710376fe9b4a9ced7f12c6bae0d9c057457fd649ac90436acf30486674feeb5291a45
-
SSDEEP
196608:Qo/MbB+7yvARBbHlkAPyU8YmpJfBs8ML4bGhK6dhqPh0+F4:QqMbyOARh6AbQJ68vKnd+6
Score4/10 -
-
-
Target
childapp.apk
-
Size
4.8MB
-
MD5
d79c7497682bdc2b12509aeeaa46ecfe
-
SHA1
d97d409466010c14df4864b62f48f69c5145ef59
-
SHA256
2cd0991af7769ce815552756235d2234dc767c43f8025bf1b0dd1484d696fecb
-
SHA512
2edc166b26521c85ffb57b7637b20a298528d034f702058e5c787c526b0f8673fcc180827c274c18256cd19b7c70db5ca19c71375961099682f1462ba7771cac
-
SSDEEP
98304:a+zBST6mzqXZ0tsCSH3X9+4julscxRG6fgU6N+yj:+1zO2sCmX9+4juecxrf0NZ
Score7/10-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Acquires the wake lock
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Requests enabling of the accessibility settings.
-