I wonder if anyone is willing to share some experiences regarding how to analyse apk files with atd. I am new to the product, but have a system set up and is currently spending my time analysing random apk files that I download from the Internet.
Here are some reflections so far:
It seems that most files requires me to run in user-interactive mode to have a reliable result.
Running one file without interactive mode gives me a low threat level, while running the same file interactive and just seing the screen, not being able to do anything gives me a very high threat level
Some files that I upload are not analyzed by dynamic analysis (sandbox) even if they are not known. They seem to be analyzed when running interactive though.
Ideally I would like to be able to run tons of apk filen through this ATD, but if I will have to run all of them through user-interactiv analysis it will take to much time.
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.
Community Help Hub
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.