General
-
Target
GLTools.apk
-
Size
22.8MB
-
Sample
240701-hc4wns1grk
-
MD5
8f6f9fe8ee494c98437a11d143a8e67d
-
SHA1
850e8818929525a5bcf178a322824b56ca7db82a
-
SHA256
23ac2751dc37f07078dafc79b381ba9e686ed8d18e70719e9a4786b9c38dc5a5
-
SHA512
d1c8c553518a811bd7b9767d64428a96615c0ff6fb628ef09e95400da61184d7b5c76a1e92e6ecc81a9820e5400b703929101be019ba21cdd7ef3211b9c93a6b
-
SSDEEP
393216:jSBurJP2vsEKD3LO1HGJxEUD0XQdeayzt6toOWTw/to9EduT2:vJ2Vs0mJFIWeaw8toOWTw/tSZi
Malware Config
Targets
-
-
Target
GLTools.apk
-
Size
22.8MB
-
MD5
8f6f9fe8ee494c98437a11d143a8e67d
-
SHA1
850e8818929525a5bcf178a322824b56ca7db82a
-
SHA256
23ac2751dc37f07078dafc79b381ba9e686ed8d18e70719e9a4786b9c38dc5a5
-
SHA512
d1c8c553518a811bd7b9767d64428a96615c0ff6fb628ef09e95400da61184d7b5c76a1e92e6ecc81a9820e5400b703929101be019ba21cdd7ef3211b9c93a6b
-
SSDEEP
393216:jSBurJP2vsEKD3LO1HGJxEUD0XQdeayzt6toOWTw/to9EduT2:vJ2Vs0mJFIWeaw8toOWTw/tSZi
Score8/10-
Checks if the Android device is rooted.
-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about active data network
-
Reads information about phone network operator.
-