8704139a592c0e0da5ef4d60387b912e3df53935d158fc4c6c90759dff306591

Analysis

max time kernel
146s
max time network
156s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
26-12-2024 02:44

Target

8704139a592c0e0da5ef4d60387b912e3df53935d158fc4c6c90759dff306591.apk
Size

760KB
MD5

b96a945c7d50db64fd5101d08a79c0af
SHA1

904e3e7ccf420a31d27a66034dd19467ade25d9b
SHA256

8704139a592c0e0da5ef4d60387b912e3df53935d158fc4c6c90759dff306591
SHA512

537cf7057abbbf4473633bbbe5ec7c627e57465cab2f7b9de1ee44242271bce4b7e32e5a57de8489b2d856cb7db4f7dd2d40fc4c820104b13f0b6b41c3311358
SSDEEP

12288:MYTKFRaa1a8Lrey/0ncrR15WmpYshXZPbGwidNpgcEM:MYTKKa1a2eymcrR15WmD9idNpp

Score

7^/10

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

Foreground Persistence

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	cmf0.c3b5bm90zq.patch

Requests enabling of the accessibility settings. 1 IoCs

description	ioc	Process
Intent action	android.settings.ACCESSIBILITY_SETTINGS	cmf0.c3b5bm90zq.patch

Tries to add a device administrator. 2 TTPs 1 IoCs

Device Administrator Permissions

Account Access Removal

description	ioc	Process
Intent action	android.app.action.ADD_DEVICE_ADMIN	cmf0.c3b5bm90zq.patch

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

Broadcast Receivers

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	cmf0.c3b5bm90zq.patch