fedbc9f8756e2ae8979417c02c39e027a7605acbdb0ea670805718a583116e09

Analysis

max time kernel
147s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
06-01-2025 22:01

Target

fedbc9f8756e2ae8979417c02c39e027a7605acbdb0ea670805718a583116e09.apk
Size

860KB
MD5

f1073fd30704e7877c609182cb8b2562
SHA1

a65fa2e2e43901808a993d8ce85d23e8de15bfc2
SHA256

fedbc9f8756e2ae8979417c02c39e027a7605acbdb0ea670805718a583116e09
SHA512

068165e98c0f8b416e1271b572e735265e737297c265df4b0a051c54414f58eed8733c6f259a13258ec5e2c45dd712aa7718995852ca513bea2fe5cd433c2ada
SSDEEP

12288:U5/F4a1a8LrecfBgBSQFB7LSionR5WmpYshXZPbGwidNpgUw:Aya1a2ecpQSqYnR5WmD9idNpu

Score

7^/10

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

Foreground Persistence

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	cmf0.c3b5bm90zq.patch

Requests enabling of the accessibility settings. 1 IoCs

description	ioc	Process
Intent action	android.settings.ACCESSIBILITY_SETTINGS	cmf0.c3b5bm90zq.patch

Tries to add a device administrator. 2 TTPs 1 IoCs

Device Administrator Permissions

Account Access Removal

description	ioc	Process
Intent action	android.app.action.ADD_DEVICE_ADMIN	cmf0.c3b5bm90zq.patch

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

Broadcast Receivers

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	cmf0.c3b5bm90zq.patch