Overview

overview

10

Static

static

10

Wizard (3).apk

android-9-x86

7

Wizard (3).apk

android-10-x64

7

Wizard (3).apk

android-11-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Wizard (3).apk

  • Size

    4.4MB

  • Sample

    250116-ngtt6axqbt

  • MD5

    003bbc400fc420307858bae7dd751aae

  • SHA1

    0919f82b8e0b613d6fd783df0afe98807b9dc269

  • SHA256

    991785b7cebd464daa49a268ffa692d01c332a20efb74e07f7aa0a832e2efd04

  • SHA512

    21b4287cc6887e2a177e5d9422b1d66d586dbeffd6c57fa7fb4a50d3e15661503a8174ca9a5aeed8c8dd20973238ba88b8fe94e562394889f404addea224bddd

  • SSDEEP

    98304:NrhXzBCTLmzT30to7G1RskuL8/sMCM3J3gUVm0daNxjvcMZD7YZkI:0azso7dkC8/si3J33INxrXZQZj

Score
10/10
spynoteandroidcollectioncredential_accessevasionexecutionpersistence

Malware Config

Targets

    • Target

      Wizard (3).apk

    • Size

      4.4MB

    • MD5

      003bbc400fc420307858bae7dd751aae

    • SHA1

      0919f82b8e0b613d6fd783df0afe98807b9dc269

    • SHA256

      991785b7cebd464daa49a268ffa692d01c332a20efb74e07f7aa0a832e2efd04

    • SHA512

      21b4287cc6887e2a177e5d9422b1d66d586dbeffd6c57fa7fb4a50d3e15661503a8174ca9a5aeed8c8dd20973238ba88b8fe94e562394889f404addea224bddd

    • SSDEEP

      98304:NrhXzBCTLmzT30to7G1RskuL8/sMCM3J3gUVm0daNxjvcMZD7YZkI:0azso7dkC8/si3J33INxrXZQZj

    Score
    7/10
    collectioncredential_accessevasionexecutionpersistence

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

      collectionevasioncredential_access

    • Acquires the wake lock

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      evasionpersistence
    behavioral1behavioral2behavioral3

MITRE ATT&CK Mobile v15

Tasks