Overview

overview

10

Static

static

10

7c97317187...a1.apk

android-9-x86

7

7c97317187...a1.apk

android-10-x64

7

7c97317187...a1.apk

android-11-x64

7

Analysis

  • max time kernel
    146s
  • max time network
    152s
  • platform
    android-11_x64
  • resource
    android-x64-arm64-20240910-en
  • resource tags

    arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
  • submitted
    18-11-2024 22:04

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7c9731718738e645d8e81d394564f0c0a897545de64a83e0235d2b372eb9f6a1.apk

  • Size

    760KB

  • MD5

    e58b6ee37916d241e6cb232ff508a7b8

  • SHA1

    59fb5a9295abae874564ead095c59d37b8b9955e

  • SHA256

    7c9731718738e645d8e81d394564f0c0a897545de64a83e0235d2b372eb9f6a1

  • SHA512

    d36ca36f1d9579f3cf5e175537475c1b2ba95cffd554e30d033aac68f270e5d78b12c2b5ecc0885129e9fe8a3d49801cde1eb56aef3a1c9e619ecb3566b21a01

  • SSDEEP

    12288:6+yFUa1a8LdeS/wZAXUG5WmpYshXZPbGwidNpg/:6+Va1a6eS8AXUG5WmD9idNpI

Score
7/10
bankerdiscoveryevasionimpactpersistenceprivilege_escalation

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
    bankerdiscovery
  • Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

    Application may abuse the framework's foreground service to continue running in the foreground.

    evasionpersistence
  • Requests enabling of the accessibility settings. 1 IoCs
  • Tries to add a device administrator. 2 TTPs 1 IoCs
    privilege_escalationimpact

Processes

  • cmf0.c3b5bm90zq.patch
    1⤵
    • Makes use of the framework's foreground persistence service
    • Requests enabling of the accessibility settings.
    • Tries to add a device administrator.
    PID:4632

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads