Analysis
-
max time kernel
47s -
max time network
80s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
-
submitted
19-02-2025 10:37
General
-
Target
ready.apk
-
Size
692KB
-
MD5
30b0cbf2a67ee0f76b0fe6333fdd0024
-
SHA1
a5291b7858652fc4eff4d0d78a345fc1948b94c7
-
SHA256
2ca6730c055058ae82cf37d340e10ef30f17e9cba0f18d140ff291a20cf5fbc4
-
SHA512
2a2a8b7741e12ae5514447d9d2c8bedd3191be4f69635e105b0ac814071bd4001477aefef6423f52f7b34ca77fcadb7c423e124b11fe8ff2cd08a566ac021c36
-
SSDEEP
12288:POsQqQDH1aE3Wnb0Z1jX9WcTbs0jGaYPK3usT3cgtN0FfU6Rq21sgWLtWDdt:GsQqiaukb+jX9WUbpjGr6HT3SFfUGNx7
Score
7/10
Malware Config
Signatures
-
Makes use of the framework's Accessibility service 4 TTPs 1 IoCs
Retrieves information displayed on the phone screen using AccessibilityService.
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Requests enabling of the accessibility settings. 1 IoCs
-
Checks CPU information 2 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
-
com.appser.verapp1⤵
- Makes use of the framework's Accessibility service
- Obtains sensitive information copied to the device clipboard
- Requests enabling of the accessibility settings.
- Checks CPU information
- Checks memory information
Network
MITRE ATT&CK Mobile v15
Defense Evasion
Input Injection
1Virtualization/Sandbox Evasion
2System Checks
2Credential Access
Clipboard Data
1Input Capture
2GUI Input Capture
1Keylogging
1