Managed XDR

gilbert.strand.cursor.apk — malware analysis report

File info

Filename
gilbert.strand.cursor.apk
File type
Zip archive data
File size
3 MB
First seen
Last seen

Environment

droid7/x86 ru

Hashes

SHA1
0892191efe9849e1f990375682393725fd6c1ebe
SHA256
0a324f50b4b15cb8cd6f418dc321f6097355fae071e28f14e52c671cd8f89eee
MD5
3902450e051d78e7c367b786a9f12f4b

Signatures

Other

device_admin: Asks for device admin rights
is_device_admin: Check accessibility - device admin
dynamic_load: Uses undocumented methods to load apk/dex/classes
acquire: Acquires the wake lock
skip_main_activity: Abort loading MainActivity
super_user: Checks root access
wake_lock: Creates a new wake lock
reflection: Uses reflection
media_recorder: Using the MediaRecorder
register_receiver: Registers broadcast receiver
exit_system: Terminates current Java VM
read_or_write_global_settings: Read or write global settings
shared_prefs: Uses shared preferences
trowable: Throwable exceptions
start_activity: Starts activity
start_service: Starts service
change_screen_status: Display status is changed