Overview

overview

10

Static

static

10

dcdf640e0e...c1.apk

android-9-x86

7

dcdf640e0e...c1.apk

android-10-x64

7

dcdf640e0e...c1.apk

android-11-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dcdf640e0eef93ff9708e73c461d98f30433770edd2a92f603c8e66f23cf77c1.zip

  • Size

    3.6MB

  • Sample

    241106-ex2ehatncs

  • MD5

    82758e87968e6c0815854a5303a9e0cc

  • SHA1

    d47edd06bbd43acdd6eb8b79f3c99914b5a6323d

  • SHA256

    14755f01cbbd82957b10c53ccd04c4be26f11fad36a9648d6e6126ee4dd82685

  • SHA512

    a63d6748e8e23b65679f78001b0c6201c1b93ba998e1317eb401c35a33a7ca12162acded668554890dafcc1890612652f7928b8d2f28711af3831133b0242f35

  • SSDEEP

    98304:AR679SlhqhTaZMB+rcOs7AK4/b3qdyNmRr1z1Esjmpe:t7IuhOrSp4/b3z8RJusD

Score
10/10
spynoteandroidcollectioncredential_accessevasionexecutionpersistence

Malware Config

Targets

    • Target

      dcdf640e0eef93ff9708e73c461d98f30433770edd2a92f603c8e66f23cf77c1

    • Size

      4.4MB

    • MD5

      bb08e80aec323b4d48fdab77cdb55e64

    • SHA1

      4dfe47e30c12aa55916710595af5b4d9a566f7b8

    • SHA256

      dcdf640e0eef93ff9708e73c461d98f30433770edd2a92f603c8e66f23cf77c1

    • SHA512

      7fb11906ecb30b9965d2e62ec285375c2512c6b9d9258dd6f551bf963eeb91221f57249a19ae4fa72e00a7af8d35697ed332f4cb7bde18922b12df0f70df1e86

    • SSDEEP

      98304:h+MmeDlnUvhrY8dvHgaffSm1jns0s1vYaMeZCmzVzBCTK0tIVwb3:HlnUvNYUvA3mdnPqYmtzyp93

    Score
    7/10
    collectioncredential_accessevasionexecutionpersistence

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

      collectionevasioncredential_access

    • Acquires the wake lock

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence
    behavioral1behavioral2behavioral3

MITRE ATT&CK Mobile v15

Tasks