Overview

overview

7

Static

static

6

48bba46a14...e4.apk

android-9-x86

7

48bba46a14...e4.apk

android-10-x64

7

48bba46a14...e4.apk

android-11-x64

7

i.apk

android-9-x86

7

i.apk

android-10-x64

7

i.apk

android-11-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    48bba46a14873a60c87c0782d52c75105a97b964d76aebd655f3017d038536e4.apk

  • Size

    10.2MB

  • Sample

    241010-bx3e1syhjr

  • MD5

    94860856a9e5d083297c38df70b2e788

  • SHA1

    502617ccf44d8becd07e0d847f628d2ce68affcd

  • SHA256

    48bba46a14873a60c87c0782d52c75105a97b964d76aebd655f3017d038536e4

  • SHA512

    4c7f9004c95c45d19177fa4affafb19dd7b0d31832fa199de7ccb7b1dc3273e35eb16ea486de5eb283b158cca5eaf4a0aeb3ab1185b9270e805af433a740284b

  • SSDEEP

    196608:kniN3TP0uiSUWAuBAJjmsURMvLUFIi+XtE9J+as6sQnr+SurRCBCM/L:kS9iSUKBomsJU/l5s+rEcH/L

Score
7/10
androidcollectioncredential_accessevasionimpactpersistence

Malware Config

Targets

    • Target

      48bba46a14873a60c87c0782d52c75105a97b964d76aebd655f3017d038536e4.apk

    • Size

      10.2MB

    • MD5

      94860856a9e5d083297c38df70b2e788

    • SHA1

      502617ccf44d8becd07e0d847f628d2ce68affcd

    • SHA256

      48bba46a14873a60c87c0782d52c75105a97b964d76aebd655f3017d038536e4

    • SHA512

      4c7f9004c95c45d19177fa4affafb19dd7b0d31832fa199de7ccb7b1dc3273e35eb16ea486de5eb283b158cca5eaf4a0aeb3ab1185b9270e805af433a740284b

    • SSDEEP

      196608:kniN3TP0uiSUWAuBAJjmsURMvLUFIi+XtE9J+as6sQnr+SurRCBCM/L:kS9iSUKBomsJU/l5s+rEcH/L

    Score
    7/10
    evasionimpact

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

      evasion
    behavioral1behavioral2behavioral3

    • Target

      i.apk

    • Size

      7.1MB

    • MD5

      0ea1827d432e1f7564cb1f19c9c103f1

    • SHA1

      93b37065c3c6fe2b26196c05f7caf85bba21ef68

    • SHA256

      3f5064669a60ae6a5bbabe7edb12e263bd4915bf2db1497d7ac35823114c938a

    • SHA512

      52134ec2c2c1e3e0ab458af4875d5a2715e128d350ced2f784caa2eaf7f4dca574c9e6b4b27598667607b6c81c0acb519128718a0b86bc04cd44c85c410ee448

    • SSDEEP

      98304:Y6i3HB8NCRrr9aFvuwIVuzOLMxjipCB+Tk1h2reR0YwVP4Q8nkC2+kPIqVjzCp64:li3HuERrr9fDSZjiocrkkP43MPIqi2+

    Score
    7/10
    collectioncredential_accessevasionimpactpersistence

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

      evasion

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

      collectionevasioncredential_access

    • Acquires the wake lock

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Performs UI accessibility actions on behalf of the user

      Application may abuse the accessibility service to prevent their removal.

      evasion
    behavioral4behavioral5behavioral6

MITRE ATT&CK Mobile v15

Tasks