62edd681bc2ca0192ad1290ff14a65a507418df74e07ebcc2222432847b1ee24

Analysis

max time kernel
126s
max time network
136s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
30-06-2024 22:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

62edd681bc2ca0192ad1290ff14a65a507418df74e07ebcc2222432847b1ee24.apk
Size

1.8MB
MD5

1c12d0bca98b75364a883aad0e537be2
SHA1

599d2ec3e9716e182e930c91d685c83ab911cfd5
SHA256

62edd681bc2ca0192ad1290ff14a65a507418df74e07ebcc2222432847b1ee24
SHA512

0685c3391e9dc7d503ce43fabbe4a9883a2416a62c35e8d38ddcd086078a62da2b05aba3009c23292831a89a4094daeb1fafe9297cddbfbef85f9be5044e04ce
SSDEEP

49152:UY1K80SgiuWt0QAUAyD5SRtIlzFvb0Auh:YZS3t0n94SMlzFIAk

Score

7^/10

collection credential_access evasion

Malware Config

Signatures

Makes use of the framework's Accessibility service 4 TTPs 2 IoCs

Retrieves information displayed on the phone screen using AccessibilityService.

collection evasion credential_access

Processes:

org.zzzz.aaa

description	ioc	process
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId	org.zzzz.aaa
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfosByText	org.zzzz.aaa

org.zzzz.aaa
1⤵
- Makes use of the framework's Accessibility service
PID:4968

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/org.zzzz.aaa/files/profileInstalled
Filesize
24B

MD5
d501a5136d9cd2005a698fa183e249cd

SHA1
b0f9e1900fac835ccc1dd9202126e86dd369d886

SHA256
ec406fe0068c158fc8c3071786f07500531964c927875fb5ef4ebea459bd9d48

SHA512
d6a10f3648436024316dfc2a1c791fd2b05dd21edbabdc68f9fc8f64ef9c68556ae33e38021049d371600f3526109d02dd2992eb13ac6d3f66970cbba92f87c9

Download Submit
/data/data/org.zzzz.aaa/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat
Filesize
8B

MD5
6deab50e7be593cfaa17c3e07c28f6b2

SHA1
a6ea8cb30db314a26fb29b922b429415d4b67013

SHA256
2ed3ec110a7b2b991255cf7dea50770ef56ba522caedc3881982b2318e3ed6f6

SHA512
e2913a7d882e6edcf7aa8c8161e8ddf3aa60fc921bb5a54568c95a81951af21fb3501ed67a6260b07d8eb3da51a93197b9e1361e210f17d55f675bdd8cb9a886

Download Submit
/data/misc/profiles/cur/0/org.zzzz.aaa/primary.prof
Filesize
1KB

MD5
185e15460b52cadea98c630f25a806d5

SHA1
2425571ee6b4bc8935986dd144ff1ab93eaea513

SHA256
c1880c0160d9d693ce0e561ffc732a839b68af08b7ae1ac07f9bce2be6c4c019

SHA512
18ab22132d95c9f99c2071e9de6a17591270c5caf4e0b12415740b26c227f291ff0a440a3583b25272e87b1c21a9ed9e9fd90bb04db2515420562a525c5a9c05

Download Submit
/data/misc/profiles/cur/0/org.zzzz.aaa/primary.prof
Filesize
2KB

MD5
4ef4dd448806686b1ab67b2e590d5d3b

SHA1
7c1a443dbc7cd4c2b71b83f8742e8828acbc8b71

SHA256
913d26ca73941331ad50fc85619b94ac7cff5924f364789acccb6476aca6d411

SHA512
611e3eb4d0855b383463b157a78787ca41eaf33d8ae05f11e0d6017a8d37003f86be91ca39c3ef3feaf57cd46b584244aa79e1ce4380d40ef42681c49c11ef54

Download Submit