General
-
Target
1df3b0c3862095759d7269ec9e9e43f87bda156ce6e8e350f65e42f191af025e.apk
-
Size
4.5MB
-
Sample
250107-h6kd5azqas
-
MD5
d9fb4a620b5019a01c41ee3b6f74e8a5
-
SHA1
80bd6e20ff8197c0368a220d17997d26b5aa2520
-
SHA256
1df3b0c3862095759d7269ec9e9e43f87bda156ce6e8e350f65e42f191af025e
-
SHA512
fc9094eb1ea0a79256fbb9a86ef117ed2ed7d564754b63af01e04522f0077a1db16b2c2294a7047ee6571094b3097cfa56726b112c9b4da6e7e1b8e8c8fd4325
-
SSDEEP
98304:O+HwUzBLTAmzz60tlltJPHaSztGTY5zx5LseF5nz+S+jSVE:OsP/zNlltJvVztB50s1z7+jME
Malware Config
Targets
-
-
Target
1df3b0c3862095759d7269ec9e9e43f87bda156ce6e8e350f65e42f191af025e.apk
-
Size
4.5MB
-
MD5
d9fb4a620b5019a01c41ee3b6f74e8a5
-
SHA1
80bd6e20ff8197c0368a220d17997d26b5aa2520
-
SHA256
1df3b0c3862095759d7269ec9e9e43f87bda156ce6e8e350f65e42f191af025e
-
SHA512
fc9094eb1ea0a79256fbb9a86ef117ed2ed7d564754b63af01e04522f0077a1db16b2c2294a7047ee6571094b3097cfa56726b112c9b4da6e7e1b8e8c8fd4325
-
SSDEEP
98304:O+HwUzBLTAmzz60tlltJPHaSztGTY5zx5LseF5nz+S+jSVE:OsP/zNlltJvVztB50s1z7+jME
Score7/10-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Makes use of the framework's Accessibility service
Retrieves information displayed on the phone screen using AccessibilityService.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Acquires the wake lock
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Requests enabling of the accessibility settings.
-
MITRE ATT&CK Mobile v15
Persistence
Event Triggered Execution
1Broadcast Receivers
1Foreground Persistence
1Scheduled Task/Job
1Defense Evasion
Download New Code at Runtime
1Foreground Persistence
1Input Injection
1