a1a72ac4b99544e0c3850167d8c82e711fd0b815c1ec0769c3251f255b67fdc0

Analysis

max time kernel
227215s
platform
android_x86
resource
android-x86-arm
submitted
15-06-2021 01:33

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

at-t-mobile-transfer_3.15.1(2010021746).apk
Size

25.2MB
MD5

4dd44482ec5d71f9943c16ce757411a4
SHA1

167205417eea9b40e07751678bc17de0f0080899
SHA256

a1a72ac4b99544e0c3850167d8c82e711fd0b815c1ec0769c3251f255b67fdc0
SHA512

2bdb3e500d0c13dbdc46f6ac5c399824b563ca4d72594c01cebd0acc13a9b52f09436e53a1686f8307bb1a405cad2d2908b3630cd3e39c3f90258c0c3d474778

Score

6^/10

obfuscation

Malware Config

Signatures

Reads name of network operator 1 IoCs
Uses Android APIs to discover system information.

Processes:

com.att.mobiletransfer

description ioc process

Framework API call android.telephony.TelephonyManager.getNetworkOperator com.att.mobiletransfer

description	ioc	process
Framework API call	android.telephony.TelephonyManager.getNetworkOperator	com.att.mobiletransfer

Uses reflection 6 IoCs

obfuscation

Processes:

com.att.mobiletransfer

description	pid	process
Invokes method dalvik.system.CloseGuard.get	4745	com.att.mobiletransfer
Invokes method dalvik.system.CloseGuard.open	4745	com.att.mobiletransfer
Invokes method android.net.wifi.WifiManager.isWifiApEnabled	4745	com.att.mobiletransfer
Invokes method android.net.wifi.WifiManager.isWifiApEnabled	4745	com.att.mobiletransfer
Invokes method android.net.wifi.WifiManager.isWifiApEnabled	4745	com.att.mobiletransfer
Invokes method android.net.wifi.WifiManager.isWifiApEnabled	4745	com.att.mobiletransfer

com.att.mobiletransfer
1⤵
- Reads name of network operator
- Uses reflection
PID:4745

com.att.mobiletransfer
2⤵
PID:4965

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.att.mobiletransfer/databases/collection.db

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/com.att.mobiletransfer/databases/collection.db-journal

MD5
6e12b6ac1d8278b70ed0d9d843495f91

SHA1
6a97de243f4ab2d6171d32e3fa9c169c7430d0e6

SHA256
c17520dfd4c618efa526fed545caff776c6ee16b69cadff424bf27bb9176d763

SHA512
cff508287998cb0ec9f487b3ad26f839160bb3d4160ab5dc1aea82eef92d7fc8dada4ecc6da9300b5c1ed9edd3124fbad5232ec19cfa4dccbcae9a15a1a6fbd7

Download Submit
/data/user/0/com.att.mobiletransfer/databases/collection.db-shm

MD5
101c0854060f0ab36854fb7cca80b4a3

SHA1
d2d967534b314107d6374d507320b73ec61385e4

SHA256
d2b5adac8ee094b754c945309c01c5a5eb74eb31fb7ae630328ccfdf3c8a6eb5

SHA512
6c1095cc6cba4994c82c336ecd3824c13409d1b4abea1b7836d825486e82778bc40ba84220ac2ee16e8236013af01628909fc467865877a3981af6323e5a5e78

Download Submit
/data/user/0/com.att.mobiletransfer/databases/collection.db-wal

MD5
40da4fb3a476898a8f3865b6f5fb8c86

SHA1
24fed3271efc7d019945b73107ea2e8b84ac2d0e

SHA256
83fdbcc887e38f74c51317dcb67332c1a97323b5918b250a0c91f5e6acd37374

SHA512
ecfb1ba06f9cf33e2d08892409a33c8504316a1024dc684c8232432f35451a85ef8f5247841a1befac30881742ab2b6b33d33c7166e2cb5e569ee0783cf44233

Download Submit
/data/user/0/com.att.mobiletransfer/databases/com.google.android.datatransport.events

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/com.att.mobiletransfer/databases/com.google.android.datatransport.events-journal

MD5
cf8affd63e6eae43bfd9ed21ca447302

SHA1
01678d0d5d547971593df614787957bbb3c2fe7d

SHA256
094f082b02908f9270b06a095b003d4f1909df0fb3f4e9bc0cca0f722dd492f5

SHA512
e1ca6beddc45046a35810a1287419ac2bd08c1026c5659854234515429f7e5c50fff7e95ce391cb09c20bc1d282821817c4c91c7e3ad00cf026b3bdd2971b1bf

Download Submit
/data/user/0/com.att.mobiletransfer/databases/com.google.android.datatransport.events-shm

MD5
22c44ab526e8230ed25ee2e8e3c5a097

SHA1
1e223503c4fc2f8709477a34ed4f1c070be06c18

SHA256
75f25efbeb8860ba480b4375315a990c7d9d9479412be52e559762623ca5dd53

SHA512
b6c44c41b8a68bebf7c551dbad7fe46fce3a7defecf5a760dd2e274584cf6c988876abe9a08d46de7c4eb25b18609b42a36957e9128cf5c05e8a82c797294dc0

Download Submit
/data/user/0/com.att.mobiletransfer/databases/com.google.android.datatransport.events-wal

MD5
bc3fd330729d85b36173b5efa1085004

SHA1
8c3f6b31a960873225ad1cda86e28711f8154fec

SHA256
2c966da5710b2602c21d183bdc3e2ca21caec7953f9b83626c7f3f214078c398

SHA512
43d5c5e0a1c79322f9131bcb508d908a6c7d8321bbdbed5de47cd0453c8d6c3a0d22072b3ac39fd9480a65a520b5d03f368d699a0c3c24247b094dab96672bcb

Download Submit
/data/user/0/com.att.mobiletransfer/databases/my_inventory.db

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/com.att.mobiletransfer/databases/my_inventory.db-journal

MD5
d6efaead17ac3ad622de0ba376b2326b

SHA1
2b37b299c8e84666c1c21d096c9d51be252256eb

SHA256
8a6b27fa4aff3222dc1adc9218d1ac529f16db4775c9774c654f73d2e07ead06

SHA512
b73050d5f77125cdf8ba7d49785c8587a7be00b6d8b007ccb65052a26381f55c7ff5f324bbe1df08cbb101bbecf3fafbb826eb4e462e5b4554ac22b8406d1737

Download Submit
/data/user/0/com.att.mobiletransfer/databases/my_inventory.db-shm

MD5
22c44ab526e8230ed25ee2e8e3c5a097

SHA1
1e223503c4fc2f8709477a34ed4f1c070be06c18

SHA256
75f25efbeb8860ba480b4375315a990c7d9d9479412be52e559762623ca5dd53

SHA512
b6c44c41b8a68bebf7c551dbad7fe46fce3a7defecf5a760dd2e274584cf6c988876abe9a08d46de7c4eb25b18609b42a36957e9128cf5c05e8a82c797294dc0

Download Submit
/data/user/0/com.att.mobiletransfer/databases/my_inventory.db-wal

MD5
674a8ced4dc603ac4e37bfc89df50d75

SHA1
e934b426905089379ccf80c1a8d58b93eae82cd0

SHA256
385427e8a8a51b74058f4dd055667ece36704868641f3b692326652fa3a1124d

SHA512
4c9febb63dbbec3ee958fc892fd2bd8ed4ae7f9e883ec69c7dd87c709a06bad052cb4eac8597a2de402d603debaec6953816550bb31e4d50ceb6a0beabff5faa

Download Submit
/data/user/0/com.att.mobiletransfer/files/.com.google.firebase.crashlytics/60C812BD015D-0001-1289-000939617D99BeginSession.cls_temp

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.att.mobiletransfer/files/.com.google.firebase.crashlytics/60C812BD015D-0001-1289-000939617D99SessionApp.cls_temp

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.att.mobiletransfer/files/.com.google.firebase.crashlytics/60C812BD015D-0001-1289-000939617D99SessionDevice.cls_temp

MD5
3f02ecce88097bc1b561ad362016c907

SHA1
937db253e4baabd99ec9a4012f86a494de17bc89

SHA256
8acaf3633624cb686c0fcf2f1667e37c153849c40c25362cf05d644d145a1942

SHA512
8425efde5facf972bfe61039c8c3dfea401a716bfd5707de57d24cb2c12cd9b58daf2545b8f116bc72bd30b352d22deedac15d26a4ffa0b8784090ffddc64d6e

Download Submit
/data/user/0/com.att.mobiletransfer/files/.com.google.firebase.crashlytics/60C812BD015D-0001-1289-000939617D99SessionOS.cls_temp

MD5
9b3d4522944ce6396563812bfdb92fa9

SHA1
6d2a6133c8f01938a48ccc77ef86ad8ca335c020

SHA256
d32805d685a3f50caa7f1c0bd7c8804c4d937a866513289f60e3184f7a591ed9

SHA512
091d87643712530bf9006135db42a5a50742bb5ca3026bcc5f2c1c17bf4fd984a8938d29263b0abde3d15cac196d2230902534e200b0b79485e3a1bd97d95727

Download Submit
/data/user/0/com.att.mobiletransfer/files/.com.google.firebase.crashlytics/initialization_marker

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.att.mobiletransfer/files/.com.google.firebase.crashlytics/report-persistence/sessions/60C812BD015D00011289000939617D99/report

MD5
dc57107e186680caaad1313b66c82021

SHA1
ef204f1efce12df2929f8f95154e5d3166fa3a17

SHA256
a06b9d3370fcffbc0cbba99916b4ad88aab805ac13428796109f040fb4d5ddbe

SHA512
10d6fad71688d16df44d0b3d729bad19a29a805b3573eb15db706093e13a5491314c6ace9876555e0ad523bb6b07edcf346112f89dd792d9da66ab642d77b37b

Download Submit
/data/user/0/com.att.mobiletransfer/no_backup/androidx.work.workdb

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/com.att.mobiletransfer/no_backup/androidx.work.workdb-journal

MD5
7f5cf6f46f7a0b36f35dc6343252f925

SHA1
ccb41691285e08df048a0d076f8b371a4345f2b5

SHA256
b6792bd3956260c8e50489e0a74cd673089f6d8a671e1749ad37faf034e57fb4

SHA512
59802dd9bc9704cddcd81a816eae0f3c769a498c54c7b20329d2167d7bce8c494599809b1e971f3966f1c20188720796035726ee899b7005044fccea39fcc5eb

Download Submit
/data/user/0/com.att.mobiletransfer/no_backup/androidx.work.workdb-shm

MD5
22c44ab526e8230ed25ee2e8e3c5a097

SHA1
1e223503c4fc2f8709477a34ed4f1c070be06c18

SHA256
75f25efbeb8860ba480b4375315a990c7d9d9479412be52e559762623ca5dd53

SHA512
b6c44c41b8a68bebf7c551dbad7fe46fce3a7defecf5a760dd2e274584cf6c988876abe9a08d46de7c4eb25b18609b42a36957e9128cf5c05e8a82c797294dc0

Download Submit
/data/user/0/com.att.mobiletransfer/no_backup/androidx.work.workdb-wal

MD5
564467d4a12036d0f44f55598905528a

SHA1
546b1890e58be2ba3ecf033ef530c2d274dd030c

SHA256
fdfbf46d6e6b114e4fc73733ec733880fb8f4afb18de51af63fca9e58cd38d97

SHA512
c8d8a52b862b8a9dbc0b17ed663c8f59cec31d501aa2513abfa50e274cffa1510204140efcd2b8c6ef4002d468471880d99d6bdef1e899d4b5dea4de2228fc0f

Download Submit
/data/user/0/com.att.mobiletransfer/no_backup/com.google.InstanceId.properties

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.att.mobiletransfer/no_backup/com.google.android.gms.appid-no-backup

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.att.mobiletransfer/shared_prefs/AT&T Mobile Transfer.xml

MD5
f664760b453c18b6f603c3f2f413bcd6

SHA1
a8f549fe7dd5addd2f6c1bbd9435740b8e44d1b6

SHA256
2ba4337e67c2b2e295facb328afda9b1ef6dd90d907ba57222b38a94986cd4fc

SHA512
a16822465cd489be75bdbe38ec786f832e596e08baab96ba95e7b2ca01a6407370c104c60ac759cc87946959787d63c855e5d906a77de4e43bef28b93bd05dfa

Download Submit
/data/user/0/com.att.mobiletransfer/shared_prefs/AT&T Mobile Transfer.xml

MD5
c26b386ac8a22dbac737b2dbd63ef2d9

SHA1
e7025164c71df9db7c6ea697d54b95d3ca9e02ce

SHA256
32833f604edda1671e0d0528d5e0c537c72b1b59d79904efc955e37cf9309b40

SHA512
705857b70df22405624895ecf7b25cc9b2d2b28975fefba35712cd6342010ef40d7ac94e125d93163d0b96bc15a23e593502147a34a7c2790f0654d4b386aae0

Download Submit
/data/user/0/com.att.mobiletransfer/shared_prefs/AT&T Mobile Transfer.xml

MD5
ab87d54561055784fdc505f2634dab9e

SHA1
5edf0ea52dd9971c217ff207cf810bcb892c5958

SHA256
c20e5cb12afba54fa85b62ac0e75f08c886ffabdb3ba2f4ac04980d5f8cc13f1

SHA512
6cc1be4bb6b16ac4795e06075f11580ef37abbeada3b44d6d0d2484b6cb09278949b67cdd8586301212b05e5bcccdea90c2f1495ecd03989760b6f8e621b816b

Download Submit
/data/user/0/com.att.mobiletransfer/shared_prefs/AT&T Mobile Transfer.xml

MD5
8ae47977ff782e0535163e7a4e3d8051

SHA1
dd8d64d81fe3053a07b33505451308b4a768742a

SHA256
4cc964fa70961781b3f9b9a6422370e4ecdeaeb65b69d4a033cc50e4792ec344

SHA512
ca33e25914157826e49b27a96350d80ca8afe877aeaa5e63ab2269aeea4d36052b40328888a3a51b0a40db651681d71aa7744ef1d3c2cdd5cb6e306a1d803027

Download Submit
/data/user/0/com.att.mobiletransfer/shared_prefs/AT&T Mobile Transfer.xml

MD5
aff4d015420c159146b986f29264daa2

SHA1
4534196a2ebfb0412834c459168a6ea7f66df487

SHA256
9dd304ed6bc143c37bb1b5d23af783bc4a24f02c174ada29e6c8280c5762d8dd

SHA512
0480c4464e9bc9eda532625c406c926292ca65b9fd7a39af43218fe0b38605d9a5b97d1fc565ee7776966bd1e686474bd6906f8cb5ad5e800a76931038b37725

Download Submit
/data/user/0/com.att.mobiletransfer/shared_prefs/COUNTLY_STORE.xml

MD5
78bebc1fdd370a6dc36eb1ddbbfbf711

SHA1
33faeba80f1823c5d6911f1abbab1477a64e9bd9

SHA256
1215dd43d6eeaaccebbb3c5d10a180e984a955c32a35947af3b20d3d1b93ca04

SHA512
e0cddf88a91ff84b375d55fdc0f5c8241d4a6dcf96a67bec5d40904044b4f780c1d7d44d2b71aa295be5e98562b5818a38822a5dc83bda96847a9f4f3e11526e

Download Submit
/data/user/0/com.att.mobiletransfer/shared_prefs/accountstoolsmctprefsfile.xml

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.att.mobiletransfer/shared_prefs/com.google.android.gms.appid.xml

MD5
f8ce3e34ff932d699c242d41ba2bbe3b

SHA1
93e2df82f2e739073df3ad10a33c268aaf44e343

SHA256
e5915ad41e078ffa01869ae935637e02a4d3112b2b8b1d826f5183d6838d8189

SHA512
c4055698101125e4f8e97d3a416ef597fcc2b0931fa9cb67b0be047741fc3767eae664db51f4f485ad8b39fa204f3128fcf53c54fd6498b389ad1cbc29673de5

Download Submit
/data/user/0/com.att.mobiletransfer/shared_prefs/com.google.firebase.crashlytics.xml

MD5
1c8a418114d6cf156cc6857e82df03d5

SHA1
d60700011153d65a77d9feb49f169612060b1946

SHA256
5f590ff9c132ad1ed6f8c4b9c4cb8de827ee835251a1b0028e2e3f6e12e1925e

SHA512
60ca783269a895c97f03969ac818bee5130c5871447f62e4deac954a59325c2e812605fa2eb782d0fd60b0915e22b72fffe83c1bf3e373f91c6ce636a7ad5c88

Download Submit
/data/user/0/com.att.mobiletransfer/shared_prefs/com.google.firebase.crashlytics.xml

MD5
38857e7e69235676706ebc3ad65baf80

SHA1
c203172274f452a6becb47d529bc444ea8dd3a81

SHA256
677c9fbc10e650ff9c9aac07b27ac730c096653584f65463c0475b50aa456d03

SHA512
7714417510e6e5433b628d2ddb088d47ef20e61e90853ede1ded0c57254f71f8dcb594e2a4abadfb5f29fff6e7f59a790468db4290d0b375593b4a8b760f83f1

Download Submit
/data/user/0/com.att.mobiletransfer/shared_prefs/openudid_prefs.xml

MD5
6759ff9c50fec25a9cd8f91c8f2141ec

SHA1
3141ea09fb3a3294200c1a4c5767bdfdf72f4647

SHA256
79bed53f7ea4b63cba2bc1d95c16920023645b8069c13a5445d166daab80c239

SHA512
df56ea41540794ad3ba758276f8f8f6685af72bd3515926b11adb398f96d516b1f61ea3550e3fe61ede32653e2d3ea947c40bc62cd3511006e3ca32540d48f16

Download Submit