Overview

overview

10

Static

static

10

ready.apk

android-13-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ready.apk

  • Size

    9.3MB

  • Sample

    241206-yf1anatndz

  • MD5

    42ab457eb1233fd161f2a0b1cec5ce9b

  • SHA1

    8182b8e41d738f140d3b2d118d5357bb91da88eb

  • SHA256

    eb94a5d3e88728af8ac28f39da4e38568f700ba293140509e26468ac41965b17

  • SHA512

    2f922490baf5535fd0950f2acad6cc9d7a2763f248a66982b9678547b87dc6a32e761f86ae40a6c47bfdf5627f80b7afb2c4cc69ef4521132eeebea9636a6b22

  • SSDEEP

    98304:YcgIs3Tm3zOcSiRSM6oeWmz3zBITU0tIW9ik:YcgIG4aMhehzqHp

Score
10/10
spynoteandroidcollectioncredential_accessevasionexecutionpersistence

Malware Config

Targets

    • Target

      ready.apk

    • Size

      9.3MB

    • MD5

      42ab457eb1233fd161f2a0b1cec5ce9b

    • SHA1

      8182b8e41d738f140d3b2d118d5357bb91da88eb

    • SHA256

      eb94a5d3e88728af8ac28f39da4e38568f700ba293140509e26468ac41965b17

    • SHA512

      2f922490baf5535fd0950f2acad6cc9d7a2763f248a66982b9678547b87dc6a32e761f86ae40a6c47bfdf5627f80b7afb2c4cc69ef4521132eeebea9636a6b22

    • SSDEEP

      98304:YcgIs3Tm3zOcSiRSM6oeWmz3zBITU0tIW9ik:YcgIG4aMhehzqHp

    Score
    7/10
    collectioncredential_accessevasionexecutionpersistence

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

      collectionevasioncredential_access

    • Acquires the wake lock

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence
    behavioral1

MITRE ATT&CK Mobile v15

Tasks