Analysis
-
max time kernel
148s -
max time network
128s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
24-11-2024 22:05
Behavioral task
behavioral1
Sample
0e5c0c939bbc967c0ed8a2b2e412845861ef3bfdfe7c7652335b7703b9015154.apk
Resource
android-x86-arm-20240910-en
Behavioral task
behavioral2
Sample
0e5c0c939bbc967c0ed8a2b2e412845861ef3bfdfe7c7652335b7703b9015154.apk
Resource
android-x64-20240910-en
Behavioral task
behavioral3
Sample
0e5c0c939bbc967c0ed8a2b2e412845861ef3bfdfe7c7652335b7703b9015154.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
0e5c0c939bbc967c0ed8a2b2e412845861ef3bfdfe7c7652335b7703b9015154.apk
-
Size
758KB
-
MD5
822bf2c0c7da52ca023af9f839c70f07
-
SHA1
8b0ebe4f3429c2f96b769a4c7629fe39a0037c87
-
SHA256
0e5c0c939bbc967c0ed8a2b2e412845861ef3bfdfe7c7652335b7703b9015154
-
SHA512
95c9582b0688bdfff6e0ddb15b3d6b4ec2268905472cd41db83dad888975560ce62fffe1b8231718852e99745b389085b310f90c5f19f9491aebcc4cb8ce3306
-
SSDEEP
12288:CsHa1a8LVeWNQjo1cFcS5WmpYshXZPbGwidNpg4:fHa1aKe6mo+Fh5WmD9idNpP
Malware Config
Signatures
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs
Application may abuse the framework's foreground service to continue running in the foreground.
description ioc Process Framework service call android.app.IActivityManager.setServiceForeground cmf0.c3b5bm90zq.patch