Overview

overview

10

Static

static

10

0e5c0c939b...54.apk

android-9-x86

7

0e5c0c939b...54.apk

android-10-x64

7

0e5c0c939b...54.apk

android-11-x64

7

Analysis

  • max time kernel
    148s
  • max time network
    128s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    24-11-2024 22:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0e5c0c939bbc967c0ed8a2b2e412845861ef3bfdfe7c7652335b7703b9015154.apk

  • Size

    758KB

  • MD5

    822bf2c0c7da52ca023af9f839c70f07

  • SHA1

    8b0ebe4f3429c2f96b769a4c7629fe39a0037c87

  • SHA256

    0e5c0c939bbc967c0ed8a2b2e412845861ef3bfdfe7c7652335b7703b9015154

  • SHA512

    95c9582b0688bdfff6e0ddb15b3d6b4ec2268905472cd41db83dad888975560ce62fffe1b8231718852e99745b389085b310f90c5f19f9491aebcc4cb8ce3306

  • SSDEEP

    12288:CsHa1a8LVeWNQjo1cFcS5WmpYshXZPbGwidNpg4:fHa1aKe6mo+Fh5WmD9idNpP

Score
7/10
bankerdiscoveryevasionpersistence

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
    bankerdiscovery
  • Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

    Application may abuse the framework's foreground service to continue running in the foreground.

    evasionpersistence

Processes

  • cmf0.c3b5bm90zq.patch
    1⤵
    • Makes use of the framework's foreground persistence service
    PID:4485

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads