General
-
Target
launcher.apk
-
Size
5.8MB
-
Sample
241124-x83qtavqfy
-
MD5
a2f936d440254b8bd80edad327264b9b
-
SHA1
4ce2ae6f324d439c52166a88497cdcfd18780747
-
SHA256
68b44fbe1a238f4d7e2f836d6d0914c90891c0dad7208f18f57785787b2d3095
-
SHA512
f89060c0bcd91945fa38f86f9e848a3d96f0a52a4cf3eb5fffbc9d6ab98b844a01f0335d19d4e76c9c0ce0df0453813d3c9a78edf2e2b53b0f6c4f0100054f72
-
SSDEEP
98304:qgAJ4gOas4qOUSHRl5QNMTgGnpGmzmaLEk3TyzBI/0me1Yul:qgAJROaLyNMTg8pxzmaLEkpO
Malware Config
Targets
-
-
Target
launcher.apk
-
Size
5.8MB
-
MD5
a2f936d440254b8bd80edad327264b9b
-
SHA1
4ce2ae6f324d439c52166a88497cdcfd18780747
-
SHA256
68b44fbe1a238f4d7e2f836d6d0914c90891c0dad7208f18f57785787b2d3095
-
SHA512
f89060c0bcd91945fa38f86f9e848a3d96f0a52a4cf3eb5fffbc9d6ab98b844a01f0335d19d4e76c9c0ce0df0453813d3c9a78edf2e2b53b0f6c4f0100054f72
-
SSDEEP
98304:qgAJ4gOas4qOUSHRl5QNMTgGnpGmzmaLEk3TyzBI/0me1Yul:qgAJROaLyNMTg8pxzmaLEkpO
Score7/10-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Acquires the wake lock
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Requests enabling of the accessibility settings.
-