General

  • Target

    f9fa2307762c69e6875ea3aa1e1900e2d458dbf29b8dbe14e36b78b031f16415.bin

  • Size

    4.7MB

  • Sample

    241109-15yjgasndy

  • MD5

    bf202cbc9d97b6aeb809527d0f87e95d

  • SHA1

    c0c371d2481421dcb5350afef239f02eaac0a531

  • SHA256

    f9fa2307762c69e6875ea3aa1e1900e2d458dbf29b8dbe14e36b78b031f16415

  • SHA512

    3e1d3896c9c690c08c815602f5745d77d53811e4065fb6ac048443a32b0923815870835223ab673c2862c16ab551992a400d10b2139c8e3cba1a6faf1f5f22e9

  • SSDEEP

    98304:igRIuuDj3QZ0ZifjnkYiACMhB07/ap3AbY6yjm/O/xZtCBek41JOgruX:RnuQZ0YfUuhu7o6yZGekxgG

Malware Config

Targets

    • Target

      f9fa2307762c69e6875ea3aa1e1900e2d458dbf29b8dbe14e36b78b031f16415.bin

    • Size

      4.7MB

    • MD5

      bf202cbc9d97b6aeb809527d0f87e95d

    • SHA1

      c0c371d2481421dcb5350afef239f02eaac0a531

    • SHA256

      f9fa2307762c69e6875ea3aa1e1900e2d458dbf29b8dbe14e36b78b031f16415

    • SHA512

      3e1d3896c9c690c08c815602f5745d77d53811e4065fb6ac048443a32b0923815870835223ab673c2862c16ab551992a400d10b2139c8e3cba1a6faf1f5f22e9

    • SSDEEP

      98304:igRIuuDj3QZ0ZifjnkYiACMhB07/ap3AbY6yjm/O/xZtCBek41JOgruX:RnuQZ0YfUuhu7o6yZGekxgG

    • Removes its main activity from the application launcher

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

    • Obtains sensitive information copied to the device clipboard

      Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    • Performs UI accessibility actions on behalf of the user

      Application may abuse the accessibility service to prevent their removal.

    • Queries the mobile country code (MCC)

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

MITRE ATT&CK Mobile v15

Tasks