Extracted

• • Target

    ready.apk

  • Size

    6.2MB

  • MD5

    24de8a5126b73a9c564599af82f5ac89

  • SHA1

    24b35b63378887351be0dd582de1bf82db9e5c12

  • SHA256

    60bbc95a12a5a23a499d6059280e5f45a0b4fbc9f296471291cf18503984737c

  • SHA512

    af431a8141c87a5ed758b819d0ecfeedb3c01a898d82362d7e2bb481b623ccd7e9a550a79e32d33140164d5455a68015e0e9a9f46333d7e2ac87085ae1985daa

  • SSDEEP

    24576:mjL5wKvqLbcYBM/BQlu6kF4G3tSU0Uia2Ol94Y0cz+v:C6Kvq/cADc3sU0Ui25Y

  Score

  7^/10

  bankercollectioncredential_accessdiscoveryevasionexecutionimpactpersistenceprivilege_escalation

  • Loads dropped Dex/Jar

    Runs executable file dropped to the device during analysis.

    evasion

  • Makes use of the framework's Accessibility service

    Retrieves information displayed on the phone screen using AccessibilityService.

    collectionevasioncredential_access

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    bankerdiscovery

  • Acquires the wake lock

  • Makes use of the framework's foreground persistence service

    Application may abuse the framework's foreground service to continue running in the foreground.

    evasionpersistence

  • Performs UI accessibility actions on behalf of the user

    Application may abuse the accessibility service to prevent their removal.

    evasion

  • Requests disabling of battery optimizations (often used to enable hiding in the background).

    evasion

  • Tries to add a device administrator.

    privilege_escalationimpact
  behavioral1behavioral2behavioral3