8b8c9670671e0045bc181e931a3385d15d8ec514de7d2129e29fbc6a9e17f731

Analysis

max time kernel
146s
max time network
151s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
31/03/2025, 22:03

Target

8b8c9670671e0045bc181e931a3385d15d8ec514de7d2129e29fbc6a9e17f731.apk
Size

760KB
MD5

866b12c7ff897384cb5b44d7c175129e
SHA1

ae6610cf8b6b10180bae51212157b13d157e6269
SHA256

8b8c9670671e0045bc181e931a3385d15d8ec514de7d2129e29fbc6a9e17f731
SHA512

c2ec57806babbb504d24f36abc875caf21945257dc7c206734a99eac1d2829bc9020434f2fbb927c57683e900eb14e8c483518db3750510b2e6bbbe5c061212c
SSDEEP

12288:rKvEym5ajFjxfIN0uY5WmpYshXZPbGwidNpgrb:wEymkFjyN0uY5WmD9idNpc

Score

7^/10

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

Foreground Persistence

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	cmf0.c3b5bm90zq.patch

Requests enabling of the accessibility settings. 1 IoCs

description	ioc	Process
Intent action	android.settings.ACCESSIBILITY_SETTINGS	cmf0.c3b5bm90zq.patch

Tries to add a device administrator. 2 TTPs 1 IoCs

Device Administrator Permissions

Account Access Removal

description	ioc	Process
Intent action	android.app.action.ADD_DEVICE_ADMIN	cmf0.c3b5bm90zq.patch

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

Broadcast Receivers

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	cmf0.c3b5bm90zq.patch