Analysis
-
max time kernel
47s -
max time network
132s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
-
submitted
19-02-2025 10:23
General
-
Target
ready.apk
-
Size
692KB
-
MD5
5016bd2701cdbe14a39b3a27395c97c4
-
SHA1
2d996cae86c9a36d7ff4ad75af73bdfc05b10a58
-
SHA256
af8d8233db16b4f3a6adbd7aef5300bde76dda74ccb610f5a1fc3f1dddc82ccb
-
SHA512
012ce5e15c8bd9f24c29fff033d8823e2ef511bed238285bbba841d3be16701145c01fddd8ae71217943e2b7a4af35b6e19928e72e077ea093e59a1c78b53311
-
SSDEEP
12288:cJFRKK4blrTQ9oQhKOUJQSPsKlXEHusT3cgtN0FDb6Rq21pgyBtWDzs:cRQFQYHJQDKREHHT3SFDbGNKhzs
Score
7/10
Malware Config
Signatures
-
Makes use of the framework's Accessibility service 4 TTPs 1 IoCs
Retrieves information displayed on the phone screen using AccessibilityService.
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Requests enabling of the accessibility settings. 1 IoCs
-
Checks CPU information 2 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
-
com.appser.verapp1⤵
- Makes use of the framework's Accessibility service
- Obtains sensitive information copied to the device clipboard
- Requests enabling of the accessibility settings.
- Checks CPU information
- Checks memory information
Network
MITRE ATT&CK Mobile v15
Defense Evasion
Input Injection
1Virtualization/Sandbox Evasion
2System Checks
2Credential Access
Clipboard Data
1Input Capture
2GUI Input Capture
1Keylogging
1