General
-
Target
launcher.apk
-
Size
5.8MB
-
Sample
241124-x1bbla1kek
-
MD5
dba66cefaa7f8e94c31b81254312707e
-
SHA1
ba05375dc2de88d9706e28fb269bf0da7981af3c
-
SHA256
8637c0ac691cf39d388a802bdef4445ce06b7b65af62a0e5679010ad520a298e
-
SHA512
619aca90a837fcb6648f0c81db911c136deae6f1f15c1b36e16fe5b53454713c1951a8a5509ed359f6fc0bf350aab323993a0b10828b3234357eca7c369cd3d5
-
SSDEEP
98304:eirzuxPxzl0ZY5l7HIcMG+HgQ6gGnjNmzNaLERBAizB+j0m2FP44:FeR0ZYTzNMGU6g8jAzNaLERvp
Malware Config
Targets
-
-
Target
launcher.apk
-
Size
5.8MB
-
MD5
dba66cefaa7f8e94c31b81254312707e
-
SHA1
ba05375dc2de88d9706e28fb269bf0da7981af3c
-
SHA256
8637c0ac691cf39d388a802bdef4445ce06b7b65af62a0e5679010ad520a298e
-
SHA512
619aca90a837fcb6648f0c81db911c136deae6f1f15c1b36e16fe5b53454713c1951a8a5509ed359f6fc0bf350aab323993a0b10828b3234357eca7c369cd3d5
-
SSDEEP
98304:eirzuxPxzl0ZY5l7HIcMG+HgQ6gGnjNmzNaLERBAizB+j0m2FP44:FeR0ZYTzNMGU6g8jAzNaLERvp
Score7/10-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Acquires the wake lock
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Requests enabling of the accessibility settings.
-