Overview

overview

10

Static

static

10

LrdEncryptedChats.apk

android-13-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    LrdEncryptedChats.apk

  • Size

    4.5MB

  • Sample

    250211-vq3a8atmhn

  • MD5

    fa0060ce4d8a116e11bf4724e0deb120

  • SHA1

    63b66eb3bb2db4b2210db157b18f1fa7aecf7b68

  • SHA256

    de821771e3f32f6e4aec2dc2343f18319dd0ea7baf8fcd8864929be92840cf22

  • SHA512

    d581b192fb1f41d4296c9b8dfda69d89d4bc3cdc9acf4b96ba77a3ec9e210fe10a12a96e9b5e080b90b5385e9001fe1667d69b784388ef0b2dceb67015bd5927

  • SSDEEP

    98304:pSup95BD9tt9TZHwsC29Og5wTyNsmzRzBkT70twVNwIWPgJ:pVZvZQdsGW7zEkszBJ

Score
10/10
spynoteandroidcollectioncredential_accessdefense_evasionexecutionpersistence

Malware Config

Targets

    • Target

      LrdEncryptedChats.apk

    • Size

      4.5MB

    • MD5

      fa0060ce4d8a116e11bf4724e0deb120

    • SHA1

      63b66eb3bb2db4b2210db157b18f1fa7aecf7b68

    • SHA256

      de821771e3f32f6e4aec2dc2343f18319dd0ea7baf8fcd8864929be92840cf22

    • SHA512

      d581b192fb1f41d4296c9b8dfda69d89d4bc3cdc9acf4b96ba77a3ec9e210fe10a12a96e9b5e080b90b5385e9001fe1667d69b784388ef0b2dceb67015bd5927

    • SSDEEP

      98304:pSup95BD9tt9TZHwsC29Og5wTyNsmzRzBkT70twVNwIWPgJ:pVZvZQdsGW7zEkszBJ

    Score
    7/10
    collectioncredential_accessdefense_evasionexecutionpersistence

    • Makes use of the framework's Accessibility service

      Retrieves information displayed on the phone screen using AccessibilityService.

      collectiondefense_evasioncredential_access

    • Acquires the wake lock

    • Makes use of the framework's foreground persistence service

      Application may abuse the framework's foreground service to continue running in the foreground.

      defense_evasionpersistence

    • Requests enabling of the accessibility settings.

    behavioral1

MITRE ATT&CK Mobile v15

Tasks