General
-
Target
launcher (2).apk
-
Size
6.0MB
-
Sample
250101-tz7rmavnfj
-
MD5
ffcf6d60e5fb5cdc1af999956121faba
-
SHA1
a4433ee41ddcbdb8b3b58d30df26887251fd87b6
-
SHA256
ae2cb4eea3cf583de4652c081015a016a35af3470fc0925730630d9a2f5b4149
-
SHA512
e334752e0d767f32aeb4df47013b64ce47891ade737112cf40756332071272939377bcc891bf88c36c2944c9ec0d943b231c262552a4f4d47bc832209cf2da5d
-
SSDEEP
196608:MldryUHWdO8kJhg5jg8mPzcaLECQBgBuBdh:Q3HUO8jVg8oNvQikXh
Malware Config
Targets
-
-
Target
launcher (2).apk
-
Size
6.0MB
-
MD5
ffcf6d60e5fb5cdc1af999956121faba
-
SHA1
a4433ee41ddcbdb8b3b58d30df26887251fd87b6
-
SHA256
ae2cb4eea3cf583de4652c081015a016a35af3470fc0925730630d9a2f5b4149
-
SHA512
e334752e0d767f32aeb4df47013b64ce47891ade737112cf40756332071272939377bcc891bf88c36c2944c9ec0d943b231c262552a4f4d47bc832209cf2da5d
-
SSDEEP
196608:MldryUHWdO8kJhg5jg8mPzcaLECQBgBuBdh:Q3HUO8jVg8oNvQikXh
Score7/10-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Acquires the wake lock
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Requests enabling of the accessibility settings.
-