agent_smith | 6c7ad16ddf81769322390bb88cf24079188ca85d999f58a61da4506dbd307a46

Analysis

max time kernel
3762966s
max time network
136s
platform
android_x86
resource
android-x86-arm-20220310-en
submitted
20-05-2022 05:21

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6c7ad16ddf81769322390bb88cf24079188ca85d999f58a61da4506dbd307a46.apk
Size

291KB
MD5

0deaa330e86fbe7421cc579cf454f53e
SHA1

fcc130f37edd4f1fe8c60b68672c6cb58243cddf
SHA256

6c7ad16ddf81769322390bb88cf24079188ca85d999f58a61da4506dbd307a46
SHA512

f105bda1ff0a2828b009cc5e74c4986cd0a199f8e586f3d1c1f9151e0c75a288c0074618f20931ad2868ad217e89b41bdbedea49db464400aab9c1fbf7515fac

Score

10^/10

agent_smith adware evasion

Malware Config

Signatures

Agent smith
Agent smith is a modular adware that installs malicious ADs into legitimate applications.
adware agent_smith
Reads information about phone network operator.
Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
evasion

Processes:

com.ylisten.mtinyapple

description ioc process

Framework API call android.hardware.SensorManager.registerListener com.ylisten.mtinyapple

description	ioc	process
Framework API call	android.hardware.SensorManager.registerListener	com.ylisten.mtinyapple

com.ylisten.mtinyapple
1⤵
- Listens for changes in the sensor environment (might be used to detect emulation).
PID:5146

com.ylisten.mtinyapple:remote
1⤵
PID:5187

.x
1⤵
PID:5249

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.ylisten.mtinyapple/files/com.ylisten.mtinyapple_ic.jar
Filesize
21KB

MD5
baa6c2e617cf078af55f93b8c6892864

SHA1
ebc5fd019a7e985d661c42e0c7e38501ca7c4046

SHA256
0e80f9711450da54f7e7650848370f5276319c1627fcc33e2388214e0318d75d

SHA512
aa22f1016c029fb3a06502d3eb90e8c3d061756add78a34fc9e69c3d8e6e3cbd3aa7f55544618f248980180e8077d486e868cc70a3a701ec9b3388a9cef9dcfc

Download Submit
/data/user/0/com.ylisten.mtinyapple/files/com.ylisten.mtinyapple_ic.jar.x86.flock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.ylisten.mtinyapple/files/oat/x86/com.ylisten.mtinyapple_ic.odex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.ylisten.mtinyapple/files/oat/x86/com.ylisten.mtinyapple_ic.vdex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.ylisten.mtinyapple/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNjUzMDMwMjcxOTQ1
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.ylisten.mtinyapple/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNjUzMDMwMjcyNjE3
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.ylisten.mtinyapple/files/umeng_it.cache
Filesize
415B

MD5
5a7eace1169ebcedebf2837cd225be48

SHA1
e121a42ecd5179c0bad923e2e49dfd3f0685b7db

SHA256
41b0003ddaa0f468354d3762b6312716688194621a75101721a769eeeb0fe302

SHA512
659e17aa5c12cc7dfbd649971d798135a84ea7d6293fce0bccfd1aa0cea3b940db232f52b21a4fbcfec9158a0ef37936729aedf83a414a4d3ce62c177ec23d69

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/PersistedMapTagLastSeenMap.xml
Filesize
123B

MD5
d05a0562b839ebf2ad3b4e252755bd82

SHA1
ead16f3b88a9be591bbb1e94b3cb9bc9a0af45e8

SHA256
7188b9936471810196b3f01e1e61ac8e6f2f39264af1ddb1590e6ff7b0e1f2b7

SHA512
bd4fb858480e8782b16b235cc7a4c7dc9b4f1335431974c8c76276b8f7c11a8096e3c246ef19a3b62a357d73735ddf3f6c867957318b5f96b651fc4b35d52b21

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/PersistedSetToDoSet.xml
Filesize
108B

MD5
cc19f0efaf01829518e05f5ebd4b1073

SHA1
31cb16a290bcd3a777a27eaad2a005f74bbf29d8

SHA256
51bc46c9d289974164ff10b230a33cb8791f013059ca1be2120e49acdd3c120c

SHA512
deade5cdfcfa6116d32da149c01cbc095cd3cd427da2ca64b64fc1d247b160ad9bcd1b4c89fe5f1e5d8cbe338bf1993891000002a0f02aab433321cd04d8d873

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/_umeng_common_config.xml
Filesize
119B

MD5
3d457f58fefd9d9a56a2b6fa97c01ece

SHA1
d4a649d81f001e127157c7f3ba5f7a5f45645228

SHA256
4e8dc7051d244746da9fb5ad6529e0679bae2f455b9960538ef540588badefb0

SHA512
b2e1d912a12c7ea69d8a6594cdee87af5cb842e1a2f0c93a3d002f90a52275bf266dabb8c5f405c5cafc1b87bfcaf6651a48d330a208c004c93b1bccf15c04d0

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/_umeng_common_config.xml
Filesize
179B

MD5
6fb320bd0c34a47cbe6bcb63580861b8

SHA1
d18f5dc2c2d240354b3290446594cc3656b1f083

SHA256
69649e9b3ec6171cbf163ddad1c42bc72073374020b97caae54ed5a38821b4ce

SHA512
06d9b86a82525a7102b1a2bb0977013e993159e2255df4ec5524ad9a4550ae13f403d65c5f9ad87c8be083152df382ab6c82b6b3e96076b7545415b6462698f8

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/_umeng_common_config.xml
Filesize
244B

MD5
e77124936894253eb372be8058445e25

SHA1
de67dc1eeedc9a36914ecc2538914ec595a4338a

SHA256
02b082fbc588e8d7c3c39b3b6da4f51d559bcdd0c87399321f3bff76b589e208

SHA512
d2bf7e0681d0527778259838f9dfafc6c531310ff166aaac12f21621911d9fd99adb540f46518380964b08d8c3df4eff2b53be4dce98348c7005677fd35c5db2

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/config.xml
Filesize
145B

MD5
2092931640834d68461acd143a42af10

SHA1
e4f84bd709e8a17db67cd67d9c0c072706ac1ccb

SHA256
8549807b06f84b300811d47f10a7333a26474ff11349da5068a793d8b42b49a8

SHA512
2ef64d977742e0fcedca7e71b71cae16f4999e693913073b051c9f85c79b008de3e9e28703d1b22eff96ae3e9b5da825896b889de07a23c8dab3659dce1127e1

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/remote_umeng_common_config.xml
Filesize
119B

MD5
3d457f58fefd9d9a56a2b6fa97c01ece

SHA1
d4a649d81f001e127157c7f3ba5f7a5f45645228

SHA256
4e8dc7051d244746da9fb5ad6529e0679bae2f455b9960538ef540588badefb0

SHA512
b2e1d912a12c7ea69d8a6594cdee87af5cb842e1a2f0c93a3d002f90a52275bf266dabb8c5f405c5cafc1b87bfcaf6651a48d330a208c004c93b1bccf15c04d0

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/remote_umeng_common_config.xml
Filesize
179B

MD5
6fb320bd0c34a47cbe6bcb63580861b8

SHA1
d18f5dc2c2d240354b3290446594cc3656b1f083

SHA256
69649e9b3ec6171cbf163ddad1c42bc72073374020b97caae54ed5a38821b4ce

SHA512
06d9b86a82525a7102b1a2bb0977013e993159e2255df4ec5524ad9a4550ae13f403d65c5f9ad87c8be083152df382ab6c82b6b3e96076b7545415b6462698f8

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/remote_umeng_common_config.xml
Filesize
244B

MD5
e77124936894253eb372be8058445e25

SHA1
de67dc1eeedc9a36914ecc2538914ec595a4338a

SHA256
02b082fbc588e8d7c3c39b3b6da4f51d559bcdd0c87399321f3bff76b589e208

SHA512
d2bf7e0681d0527778259838f9dfafc6c531310ff166aaac12f21621911d9fd99adb540f46518380964b08d8c3df4eff2b53be4dce98348c7005677fd35c5db2

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/umeng_common_config.xml
Filesize
119B

MD5
3d457f58fefd9d9a56a2b6fa97c01ece

SHA1
d4a649d81f001e127157c7f3ba5f7a5f45645228

SHA256
4e8dc7051d244746da9fb5ad6529e0679bae2f455b9960538ef540588badefb0

SHA512
b2e1d912a12c7ea69d8a6594cdee87af5cb842e1a2f0c93a3d002f90a52275bf266dabb8c5f405c5cafc1b87bfcaf6651a48d330a208c004c93b1bccf15c04d0

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/umeng_common_config.xml
Filesize
179B

MD5
6fb320bd0c34a47cbe6bcb63580861b8

SHA1
d18f5dc2c2d240354b3290446594cc3656b1f083

SHA256
69649e9b3ec6171cbf163ddad1c42bc72073374020b97caae54ed5a38821b4ce

SHA512
06d9b86a82525a7102b1a2bb0977013e993159e2255df4ec5524ad9a4550ae13f403d65c5f9ad87c8be083152df382ab6c82b6b3e96076b7545415b6462698f8

Download Submit
/data/user/0/com.ylisten.mtinyapple/shared_prefs/umeng_common_config.xml
Filesize
244B

MD5
e77124936894253eb372be8058445e25

SHA1
de67dc1eeedc9a36914ecc2538914ec595a4338a

SHA256
02b082fbc588e8d7c3c39b3b6da4f51d559bcdd0c87399321f3bff76b589e208

SHA512
d2bf7e0681d0527778259838f9dfafc6c531310ff166aaac12f21621911d9fd99adb540f46518380964b08d8c3df4eff2b53be4dce98348c7005677fd35c5db2

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads