Heuristic match: "Name: res/drawable-xxxhdpi/abc_scrubber_control_to_pressed_mtrl_005.pn" Heuristic match: "Name: res/drawable-xxxhdpi/abc_scrubber_control_to_pressed_mtrl_000.pn" Heuristic match: "Name: res/drawable-xxhdpi/quantum_ic_pause_circle_filled_grey600_36.pn" Heuristic match: "Name: res/drawable-xxhdpi/abc_textfield_search_default_mtrl_alpha.9.pn" Heuristic match: "Name: res/drawable-mdpi/abc_textfield_search_activated_mtrl_alpha.9.pn" Heuristic match: "Name: res/drawable-hdpi/abc_textfield_search_activated_mtrl_alpha.9.pn" "firebase-encoders-json.properties" has type "ASCII text" "firebase-datatransport.properties" has type "ASCII text" "firebase-crashlytics.properties" has type "ASCII text" "firebase-crash.properties" has type "ASCII text" "firebase-core.properties" has type "ASCII text" "firebase-config.properties" has type "ASCII text" ![]() "firebase-components.properties" has type "ASCII text" "firebase-common.properties" has type "ASCII text" "firebase-auth-interop.properties" has type "ASCII text" "firebase-analytics.properties" has type "ASCII text" "firebase-abt.properties" has type "ASCII text" "androidsupportmultidexversion.txt" has type "ASCII text" "MANIFEST.MF" has type "ASCII text with CRLF line terminators" ![]() "BNDLTOOL.SF" has type "ASCII text with CRLF line terminators" ![]() "AndroidManifest.xml" has type "Android binary XML" On Android, applications can use standard APIs to gather a list of network connections to and from the device.Īdversaries may use Valid Accounts to log into a computer using the Remote Desktop Protocol (RDP).Īdversaries may target user email to collect sensitive information.įound a potential E-Mail address in binary/memoryĪdversaries may use a non-application layer protocol for communication between host and C2 server or among infected hosts within a network.įound invoke in "" to ".get"įound invoke in "$a.smali" to ".invoke"įound invoke in ".smali" to ".get"įound invoke in ".j.smali" to ".invoke"įound invoke in "$n.smali" to ".invoke"įound invoke in "0.smali" to ".invoke"įound invoke in "0.smali" to ".get"įound invoke in "1.smali" to ".invoke"įound invoke in "0.smali" to ".invoke"įound invoke in "0.smali" to ".invoke" Has the ability to access external storage On Android, command line tools or the Java file APIs can be used to enumerate file system contents. Has the ability to query the phone location (GPS) Possibly tries to implement anti-virtualization techniquesĪn adversary could use a malicious or exploited application to surreptitiously track the device's physical location through use of standard operating system APIs. Has the ability to execute code after rebootĪdversaries may employ various means to detect and avoid virtualization and analysis environments. An intent is a message passed between Android application or system components.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |