DET0690 Detection of Uninstall Malicious Application
| Item | Value |
|---|---|
| ID | DET0690 |
| Version | 1.0 |
| Created | 21 October 2025 |
| Last Modified | 21 October 2025 |
Technique Detected: T1630.001 (Uninstall Malicious Application)
Analytics
Android
AN1801
Application vetting services could look for use of the accessibility service or features that typically require root access. The user can see a list of applications that can use accessibility services in the device settings.
Log Sources
| Data Component | Name | Channel |
|---|---|---|
| API Calls (DC0112) | Application Vetting | None |
| System Settings (DC0118) | User Interface | None |
Mutable Elements
| Field | Description |
|---|---|