Extracted

• • Target

    ready.apk

  • Size

    3.6MB

  • MD5

    4808782d6d09ecb08dbd1dee07c652ff

  • SHA1

    2d5c7e98593e02996c5db00444ac678bb9463289

  • SHA256

    240640989e284dc9ebfed246b9db717654a1798b1fe1da775b57f10dd13157bb

  • SHA512

    4e8ea03bdcfff3deb571eb266bd103f4d7123631991c5f2cb64cb9dc0d1ce9828f75c3559a27ba9fd2a937cf6ddabee34996e8341d33dd5233d34c43154037e8

  • SSDEEP

    98304:Y+/42pk+ftZFLZ99Ow7d2iHkbknSmzHzBfTN0thJ:rk+1ZFLZ7Oedi6zBC3

  Score

  7^/10

  bankercollectioncredential_accessdiscoveryevasionexecutionpersistence

  • Loads dropped Dex/Jar

    Runs executable file dropped to the device during analysis.

    evasion

  • Makes use of the framework's Accessibility service

    Retrieves information displayed on the phone screen using AccessibilityService.

    collectionevasioncredential_access

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    bankerdiscovery

  • Acquires the wake lock

  • Checks the application is allowed to request package installs through the package installer

    Checks the application is allowed to install additional applications (Might try to install applications from unknown sources).

    evasion

  • Makes use of the framework's foreground persistence service

    Application may abuse the framework's foreground service to continue running in the foreground.

    evasionpersistence

  • Requests disabling of battery optimizations (often used to enable hiding in the background).

    evasion

  • Requests enabling of the accessibility settings.

  behavioral1