Overview

overview

7

Static

static

6

doublelocker.apk

android-9-x86

7

doublelocker.apk

android-10-x64

7

doublelocker.apk

android-11-x64

7

Analysis

  • max time kernel
    46s
  • max time network
    51s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    09-10-2024 04:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    doublelocker.apk

  • Size

    359KB

  • MD5

    85cfbd81ff6729927c968fbbb2d1d84d

  • SHA1

    01d962f809ae061d1895cf71db9eeb07900929b8

  • SHA256

    79e602a062d05fbb1409afc16e6d41ac0645576b2b5c1899dc93e6852c30a71f

  • SHA512

    26b24f7ee92e1185aa9f1160582c60cde8a814732dc3d293085eb0bf14fa48efe47f182d40d2bdb06f83f62e505ef542d5a042f2d2fc037811d70eb3c5865c86

  • SSDEEP

    6144:y4qHaAiB3RywInnBfnn3wy+bl/i2PNSlotYLAynYa9Bv1Mcq:y96AG3RyFnnBfnAy+bFzNSqtYLAyYa9a

Score
7/10
collectioncredential_accessdiscoveryevasionimpactprivilege_escalation

Malware Config

Signatures

  • Makes use of the framework's Accessibility service 4 TTPs 1 IoCs

    Retrieves information displayed on the phone screen using AccessibilityService.

    collectionevasioncredential_access
  • Performs UI accessibility actions on behalf of the user 1 TTPs 34 IoCs

    Application may abuse the accessibility service to prevent their removal.

    evasion
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Requests enabling of the accessibility settings. 1 IoCs
  • Tries to add a device administrator. 2 TTPs 1 IoCs
    privilege_escalationimpact

Processes

  • owd.qusutsqfdo.mbpepvxhxly
    1⤵
    • Makes use of the framework's Accessibility service
    • Performs UI accessibility actions on behalf of the user
    • Queries information about active data network
    • Requests enabling of the accessibility settings.
    • Tries to add a device administrator.
    PID:4541

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/owd.qusutsqfdo.mbpepvxhxly/databases/init.db
    Filesize

    24KB

    MD5

    31e40df7a00ea58267c5d8214a556e97

    SHA1

    f1785c79f6c87494e7eb85b25e602f48bd081af1

    SHA256

    009b1bb7f5ca6a48a94b9ca7edfc75ad8352d5cecfffca7d5fb6740253f1865e

    SHA512

    a90bf64a11673e5fa9626e48227821583fb6350c734d751b0c4d2787676be702fb62ba09ede3d0fc920becbcec844b356241e9a28eb451efdb3dfab5c39f2aa5

    Download Submit

  • /data/user/0/owd.qusutsqfdo.mbpepvxhxly/databases/init.db-journal
    Filesize

    512B

    MD5

    0306d11d68efb569091931cbccf5479f

    SHA1

    60ac3b8f6fa1857edd2c1b379bf794b42d54dce5

    SHA256

    5b90bfb1fa74f437c6acd2059e9b229576ce5f48681a96f9766420e305c4b176

    SHA512

    697c172401740506ee770ddf340f8f7b759b28d0a0b3dff16c4ab35d3348d97134ad66177ae80be54b8ab741cab0ae3f8441eb05da786123f87278de94c8a2a2

    Download Submit

  • /data/user/0/owd.qusutsqfdo.mbpepvxhxly/databases/init.db-journal
    Filesize

    8KB

    MD5

    43fbf06fb23a45525fb56cd6ad9fa0f5

    SHA1

    0e43173eb9d2e5d9930d60cbb9fceeb72f86bad7

    SHA256

    fea99d33513ab69f07e7f6843599132964439702ef07f1a109c7bc4cd9b26464

    SHA512

    bd22192b9f731a1540b80c4cc9e7f3639c11a06f867357e27ad59f74bb1f94303893bed3a8fd0bcb5b96b19b352db2c79d45e04dd06b720978abb176e9a2fabb

    Download Submit

  • /data/user/0/owd.qusutsqfdo.mbpepvxhxly/databases/init.db-journal
    Filesize

    8KB

    MD5

    9105e709fec941f9f5829bf0d6fd703b

    SHA1

    f7c665adb80e220570ba4460a31e8745071feaed

    SHA256

    5da46f296384977e91a995f64bc4d4d0e62549c888958e00922489de06d4059d

    SHA512

    0ab21f1e660f8c0e5011f80b662e8c0139e5abb13866a596428557e7d06df52ba01290c44554052caaeb124ca4608b289af4593485e737a4288a0de38f20b3ef

    Download Submit