Extracted

• • Target

    ready.apk

  • Size

    3.7MB

  • MD5

    0ee6ae94c68ae5f5527d4996449773ed

  • SHA1

    a0142b65f0dc190a329cd87f8a2208766d3b2d01

  • SHA256

    83a46f88896f03ab8a43655336b0715a26ed263a65048c677634e4936ef16d9b

  • SHA512

    a4a6ae1ffd72a10f0b7cd49ba15025b535caa4790764dcbd61411f57760ee12b5d204da906e074b939cc11d1215a780e0625783971c54df54a57c41e2c093052

  • SSDEEP

    98304:/5HIg+EkiEdd6ujW5mmzRzBzkT20tkTcTZp:RztEzsRzo9f

  Score

  7^/10

  bankercollectioncredential_accessdefense_evasiondiscoveryevasionexecutionimpactpersistence

  • Loads dropped Dex/Jar

    Runs executable file dropped to the device during analysis.

    evasion

  • Makes use of the framework's Accessibility service

    Retrieves information displayed on the phone screen using AccessibilityService.

    collectiondefense_evasioncredential_access

  • Obtains sensitive information copied to the device clipboard

    Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

    collectioncredential_accessimpact

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

    bankerdiscovery

  • Acquires the wake lock

  • Makes use of the framework's foreground persistence service

    Application may abuse the framework's foreground service to continue running in the foreground.

    defense_evasionpersistence

  • Performs UI accessibility actions on behalf of the user

    Application may abuse the accessibility service to prevent their removal.

    evasion

  • Queries information about active data network

    discovery

  • Queries the mobile country code (MCC)

    discovery

  • Requests disabling of battery optimizations (often used to enable hiding in the background).

    defense_evasion

  • Requests enabling of the accessibility settings.

  behavioral1behavioral2behavioral3behavioral4