General
-
Target
Chrome.apk
-
Size
5.1MB
-
Sample
241021-wdp1sszdng
-
MD5
f5c44a7044572e39e8fb9fa8e1780924
-
SHA1
87486ddaf16cad28976840ddab1021d3b2035b24
-
SHA256
158bfa63e745e4d5b05f2c63fca5a002c3080843d0b814b6497b150e4bb5f43e
-
SHA512
665e602b4c1d3f7dc503c602579bc3957df83d5c9008ab16fc84fdcdab357648f8bc5cea07793851c57ab7f82fdb8bfe7f9d8e977c4e9759e7be47db1e6e9da0
-
SSDEEP
98304:3/hC2sNAKHdW7C2AdkJk0niOxLVtBxN7HU3lvLNalYsYTbuoGObH:3//7C2GkfhpNN7H+xalFubH
Static task
static1
Behavioral task
behavioral1
Sample
Chrome.apk
Resource
android-x64-arm64-20240624-en
Malware Config
Targets
-
-
Target
Chrome.apk
-
Size
5.1MB
-
MD5
f5c44a7044572e39e8fb9fa8e1780924
-
SHA1
87486ddaf16cad28976840ddab1021d3b2035b24
-
SHA256
158bfa63e745e4d5b05f2c63fca5a002c3080843d0b814b6497b150e4bb5f43e
-
SHA512
665e602b4c1d3f7dc503c602579bc3957df83d5c9008ab16fc84fdcdab357648f8bc5cea07793851c57ab7f82fdb8bfe7f9d8e977c4e9759e7be47db1e6e9da0
-
SSDEEP
98304:3/hC2sNAKHdW7C2AdkJk0niOxLVtBxN7HU3lvLNalYsYTbuoGObH:3//7C2GkfhpNN7H+xalFubH
-
TgToxic payload
-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Acquires the wake lock
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Performs UI accessibility actions on behalf of the user
Application may abuse the accessibility service to prevent their removal.
-
Queries information about active data network
-
Requests disabling of battery optimizations (often used to enable hiding in the background).
-
MITRE ATT&CK Mobile v15
Defense Evasion
Download New Code at Runtime
1Foreground Persistence
1Hide Artifacts
1User Evasion
1Impair Defenses
1Prevent Application Removal
1Input Injection
1Virtualization/Sandbox Evasion
2System Checks
2Credential Access
Clipboard Data
1Input Capture
2GUI Input Capture
1Keylogging
1Discovery
Process Discovery
1System Information Discovery
2System Network Connections Discovery
1