General
-
Target
c12b1c7dae3b90df8b7e0c422b559d1fb06c428cf8cac1885f3ad0b2d973458c.zip
-
Size
9.4MB
-
Sample
241019-cxfrpa1gqf
-
MD5
390ce77fc9e26f35f7875e53ade1b040
-
SHA1
4fe32061a3d08d8ecea3ea66ca9105271b60027e
-
SHA256
c12b1c7dae3b90df8b7e0c422b559d1fb06c428cf8cac1885f3ad0b2d973458c
-
SHA512
f5cc625bd1cf44e95218e5b944eee52cdcc19c9aed2b2039b1260025b533ebc199b7a0e54d57086250256128c2ec5c5588d17076e608a1ab26f8d2b414d499c7
-
SSDEEP
98304:Prv1eM3oIkOOxtxFgqfd+6WSOPEKJbZmzZzB2T00tZL9X5:zv1PoIJmFgMpWnRszCnV
Behavioral task
behavioral1
Sample
c12b1c7dae3b90df8b7e0c422b559d1fb06c428cf8cac1885f3ad0b2d973458c.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
c12b1c7dae3b90df8b7e0c422b559d1fb06c428cf8cac1885f3ad0b2d973458c.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
c12b1c7dae3b90df8b7e0c422b559d1fb06c428cf8cac1885f3ad0b2d973458c.apk
Resource
android-x64-arm64-20240910-en
Malware Config
Targets
-
-
Target
c12b1c7dae3b90df8b7e0c422b559d1fb06c428cf8cac1885f3ad0b2d973458c.zip
-
Size
9.4MB
-
MD5
390ce77fc9e26f35f7875e53ade1b040
-
SHA1
4fe32061a3d08d8ecea3ea66ca9105271b60027e
-
SHA256
c12b1c7dae3b90df8b7e0c422b559d1fb06c428cf8cac1885f3ad0b2d973458c
-
SHA512
f5cc625bd1cf44e95218e5b944eee52cdcc19c9aed2b2039b1260025b533ebc199b7a0e54d57086250256128c2ec5c5588d17076e608a1ab26f8d2b414d499c7
-
SSDEEP
98304:Prv1eM3oIkOOxtxFgqfd+6WSOPEKJbZmzZzB2T00tZL9X5:zv1PoIJmFgMpWnRszCnV
-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Acquires the wake lock
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Queries information about active data network
-
Queries the mobile country code (MCC)
-
Tries to add a device administrator.
-
MITRE ATT&CK Mobile v15
Persistence
Event Triggered Execution
1Broadcast Receivers
1Foreground Persistence
1Scheduled Task/Job
1Privilege Escalation
Abuse Elevation Control Mechanism
1Device Administrator Permissions
1Defense Evasion
Foreground Persistence
1Input Injection
1Virtualization/Sandbox Evasion
2System Checks
2Credential Access
Clipboard Data
1Input Capture
2GUI Input Capture
1Keylogging
1Discovery
System Information Discovery
2System Network Configuration Discovery
1System Network Connections Discovery
1