Extracted

• • Target

    ready.apk

  • Size

    3.8MB

  • MD5

    65d2487a271d425b5c0b12a11f6a0c9d

  • SHA1

    51d4133845836be6228f4961ba711113c8461ecb

  • SHA256

    7dc8ebd9035e77665645b9cadfd026a8fea47b7c1c0b525ac170286f5f04a8b3

  • SHA512

    7817720df7f21c001241e4f691f8648c10503ad3dcfb5060d6ae4a473a7bd382050a7a97b253e82b11ae87fc37a3284c01f3200390af6351cda4a07d35e041af

  • SSDEEP

    49152:wO3XRIciVl0XjkNmvnF6qvLaBRuH3YmzazdGGaQTOJpU3Yqs0cgNHNNRVikD9k:7XRiIAY7zeRuXYmzazB1TA0tNHNN79k

  Score

  7^/10

  bankercollectioncredential_accessdiscoveryevasionexecutionimpactpersistence

  • Makes use of the framework's Accessibility service

    Retrieves information displayed on the phone screen using AccessibilityService.

    collectionevasioncredential_access

  • Obtains sensitive information copied to the device clipboard

    Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    collectioncredential_accessimpact

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    bankerdiscovery

  • Acquires the wake lock

  • Makes use of the framework's foreground persistence service

    Application may abuse the framework's foreground service to continue running in the foreground.

    evasionpersistence

  • Performs UI accessibility actions on behalf of the user

    Application may abuse the accessibility service to prevent their removal.

    evasion

  • Queries information about active data network

    discovery

  • Requests disabling of battery optimizations (often used to enable hiding in the background).

    evasion

  • Requests enabling of the accessibility settings.

  behavioral1behavioral2