Extracted

• • Target

    7784bde3480609ef5ea62846dc0e97800235bbf7340c5bc92c18cfcc3f0987a0.bin

  • Size

    760KB

  • MD5

    113a515dc171f995ab01edb7078b1bbb

  • SHA1

    6a9335bb0c3161b3e0b300462a35691dd3975b2e

  • SHA256

    7784bde3480609ef5ea62846dc0e97800235bbf7340c5bc92c18cfcc3f0987a0

  • SHA512

    4f308031300f121bb6322b1c0ca65de389a147d76e5b50c2b7082434b62a29cc63eb343d4e99584437460f19d51cb9b9c6e8865712583a205f80f69007de74f7

  • SSDEEP

    12288:57/So04BZRvSyqvR/wwqfb5WmpYshXZPbGwidNpg8:5RBZRzqvKwqfb5WmD9idNpP

  Score

  7^/10

  bankerdiscoveryevasionimpactpersistenceprivilege_escalation

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    bankerdiscovery

  • Makes use of the framework's foreground persistence service

    Application may abuse the framework's foreground service to continue running in the foreground.

    evasionpersistence

  • Requests enabling of the accessibility settings.

  • Tries to add a device administrator.

    privilege_escalationimpact
  behavioral1behavioral2behavioral3