1eb0bc43e063c54475a610555bbdd641814bf14b60cd3117587d332cebd45b2f

Analysis

max time kernel
148s
max time network
138s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
01-02-2025 22:00

Target

1eb0bc43e063c54475a610555bbdd641814bf14b60cd3117587d332cebd45b2f.apk
Size

816KB
MD5

1cc330f916b5e9baf2f920f2716d0948
SHA1

83b9f24418122bf52016bc898f3774c3549452d2
SHA256

1eb0bc43e063c54475a610555bbdd641814bf14b60cd3117587d332cebd45b2f
SHA512

eea30c7755e9cc6f0a30c7c9a9178ec07b77cb83d9d8a655260e2999455285607d813752e33334c0e40f66c6808834c14530a1648185aaf5076edb1bfb441802
SSDEEP

12288:JMf2/9mziH2PIwT/2FsCmZIzXRFlH+62pC7pLRYLLLLJi+JvEchgsRa0wIJw:JMf2/9mz/wwTHCMIzXBHbV8vEchftw

Score

8^/10

Removes its main activity from the application launcher 1 TTPs 1 IoCs

Suppress Application Icon

pid	Process
5056	cmf0.c3b5bm90zq.patch.abcdef

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

Foreground Persistence

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	cmf0.c3b5bm90zq.patch.abcdef

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

Broadcast Receivers

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	cmf0.c3b5bm90zq.patch.abcdef