Overview

overview

10

Static

static

10

launcher.apk

android-11-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    launcher.apk

  • Size

    5.8MB

  • Sample

    241124-x6mxksvpdw

  • MD5

    65635fb39660436ad3b7961d7825c511

  • SHA1

    3d2894a74e6a5d6a5d8ef057738f5c601dc5cbdc

  • SHA256

    bdbd5808368922e89a14318417fe893076a0b37914a264ddcbdd3d7d2e45ac15

  • SHA512

    d5924c9d55368a1247bd246621254f20eca2623be6470b50e2156ae2c9aaad593ac784071db3ad6c4dead80dc2740b8bb1217672d5a685388c934656e6027099

  • SSDEEP

    98304:bJ/v1eHdwEHJ/VGu5aSXTnzggGnW+mzOaLE83LyzB4v0mOVw6f:Jv4mEHJ/PTzgg8WZzOaLE8pM

Score
10/10
spynoteandroidbankercollectioncredential_accessdiscoveryevasionexecutionpersistence

Malware Config

Targets

    • Target

      launcher.apk

    • Size

      5.8MB

    • MD5

      65635fb39660436ad3b7961d7825c511

    • SHA1

      3d2894a74e6a5d6a5d8ef057738f5c601dc5cbdc

    • SHA256

      bdbd5808368922e89a14318417fe893076a0b37914a264ddcbdd3d7d2e45ac15

    • SHA512

      d5924c9d55368a1247bd246621254f20eca2623be6470b50e2156ae2c9aaad593ac784071db3ad6c4dead80dc2740b8bb1217672d5a685388c934656e6027099

    • SSDEEP

      98304:bJ/v1eHdwEHJ/VGu5aSXTnzggGnW+mzOaLE83LyzB4v0mOVw6f:Jv4mEHJ/PTzgg8WZzOaLE8pM

    Score
    7/10
    bankercollectioncredential_accessdiscoveryevasionexecutionpersistence

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

      collectionevasioncredential_access

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

      bankerdiscovery

    • Acquires the wake lock

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence

    • Requests enabling of the accessibility settings.

    behavioral1

MITRE ATT&CK Mobile v15

Tasks