bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151

Resubmissions

04-10-2022 09:59

221004-lz275saec6 8

26-09-2022 05:56

17-09-2022 08:02

06-09-2022 18:32

06-09-2022 18:14

Analysis

max time kernel
1249568s
max time network
142s
platform
android_x64
resource
android-x64-arm64-20220823-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
submitted
17-09-2022 08:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151.apk
Size

4.1MB
MD5

cc551ea1e9bb262a25f25a2f15412905
SHA1

5856d942486d0ef997527591c7ae58b6d6a4bf07
SHA256

bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151
SHA512

8b511c9e9cfd784a0537027c738ae6d4c722f0358814b4fb8089c8302a07320e49990183fd5f6b9006e99e5c1622a17d5f7ef21613c7075761d3386e3cc44f62
SSDEEP

98304:Jeq7CtjZunGGO2mASwWX47tll0FCYHBjnDSY6vkyFmwnM/yd2ofrHS:5ytun3O2mAJRll0F/hLGkyFm//T

Score

8^/10

evasion

Malware Config

Signatures

Makes use of the framework's Accessibility service. 3 IoCs

description	ioc	Process
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId	com.ohalqpdj.discopet
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfosByText	com.ohalqpdj.discopet
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfosByViewId	com.ohalqpdj.discopet

Requests disabling of battery optimizations (often used to enable hiding in the background). 1 IoCs

evasion

description	ioc	Process
Intent action	android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS	com.ohalqpdj.discopet

Removes a system notification. 1 IoCs

evasion

description	ioc	Process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	com.ohalqpdj.discopet

com.ohalqpdj.discopet
1⤵
- Makes use of the framework's Accessibility service.
- Requests disabling of battery optimizations (often used to enable hiding in the background).
- Removes a system notification.
PID:4546

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.ohalqpdj.discopet/app_webview/Default/GPUCache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/Default/GPUCache/index-dir/temp-index

Filesize
96B

MD5
b05d958b103f4871cb82ed12f5a40821

SHA1
e83b9c98486a9e4d0665b269a2cad82bf5734178

SHA256
a27bfc9c1dd4c373be6b73321168ba06c66e880ab20d2c08172b4a900dde2f22

SHA512
385555c6dd54cbe5908784c7d037ce677db2651ef0920b1e0e78713ae900e69ce522c364092eb1b2b3930b247e3a742824dc484a8b61f02858ac1e6bfe198245

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/Default/Web Data

Filesize
120KB

MD5
a48cd9324b1f8754b07f00d863b840f3

SHA1
11c6614775b35a58f440971dfc87c8aaac6d6173

SHA256
8859a216183793485d4699bf69d7ed96904679834188d07b9a70424d47eb1420

SHA512
35fa712f0af4a5eeed7e00e4e59ed5027dc6609d268462fe79d92043be9ae0c5961ce9e1d2f64b1a196c9b6aa6242b8b83817b3ee4c1058596c58a99c45478b1

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/Default/Web Data-journal

Filesize
2KB

MD5
ab1ded3a7b6e3d518ffacb22fd636d01

SHA1
f363e8df7d374bb7864a33fb4ed5fe4e48cf424a

SHA256
728bd311be300df7f914366fc70bfcda1d236c37e755909f178949290808ec44

SHA512
16351c905c3519f5f076007fc978304d3ea5b355f4714b62309a94930706bc134ddaa33ae85fe1db0ba13abd909fe4263a68474f04a8d1c80fcb1129cbadb827

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/webview_data.lock

Filesize
27B

MD5
c9da6739ff92d791742a594f82e41b2e

SHA1
fe0e78b46ca752ebfc1655863bc625d5c1e73aa4

SHA256
af77fa07314686e36a88089570a0da0dd5a118e9020d660354a9743a29e234a8

SHA512
08d383afba8aea4aa414d546b9f7b64cdaee201b45f0b03c0ea155d11447055e23f10836f30cec3597851930d88127c1e9cabd08a0d62fe9b1ac800308397591

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/Crashpad/settings.dat

Filesize
40B

MD5
47f1b8a9fa99794ed65464b7168fc9b7

SHA1
36f69d4d422b5eab5bbbefe0667508984c670d80

SHA256
adb22b9487cd08abcbc1db85c7f159052df19b5aed5568cbefe845a103377a8c

SHA512
f1a8a5fac4b1a2b23d778a447a3613ad8e43aea5986e3f700de3bb5106689b600ce6f67b6f38e54c0544150a7199ca3e9657ca975ed3296605a09d5cd50314be

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/Default/HTTP Cache/Code Cache/js/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/Default/HTTP Cache/Code Cache/js/index-dir/temp-index

Filesize
96B

MD5
0a90fde1928c69869ba00d3876f03b8b

SHA1
588840072e498519c98507e444667189d69cfdf4

SHA256
5205be9022008e17ce7b817e8c7dd005174e60f46c782864061d060891371ba0

SHA512
dd2a7e7873efbc7de4268fa0871d1686665d6f49ff533b628c1f45af27e5efcd153ef608e2ddf0aec6b87364c7783c30c3db682ecb5a5ce2f6121485a6167a23

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index-dir/temp-index

Filesize
96B

MD5
f427cbcb6f8f5ab3ea9a3e15fcb15de2

SHA1
732bb3467a1258c581efd9d30a72efd1c9c676ef

SHA256
3c69e5dbd2ea545bdccd528e4abd0fc9609c3727d5324049bceea0e9fa79fb8b

SHA512
b9e3995d409e8422a1536c0e7475e3adee0c8771590e4ac52d44d8266e35670f1162b85c2aa6f8faec2116396764190d8ce0c188888e8394daf8bab1872bbf05

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/font_unique_name_table.pb

Filesize
57KB

MD5
f080fa2a56ab5479d58063e5ea871447

SHA1
4b3fd57a98916fa5784305b76ba30af26b5253d9

SHA256
0aa374bc456330fd1b5daf18d25b4bb8e2df1998dfa85466f2c31843ff56e815

SHA512
8aee3186a95b389d39882620b7c4199a29aa50580aa98a381b2931a934de6406943c89d4d00ebeabff21e2b03b4a4adcc01e37e32a2335c4838be24bdbf61936

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db

Filesize
104KB

MD5
2073116e511e55529b4c2de6f03ec2a7

SHA1
63b1c97d1cad167e4b5352dbd986d34c6d68403a

SHA256
0472b411f6d1c27501d6bec63c5bb0fd4260ea9208ec0577edc6e0c10b656289

SHA512
a40c87a6b527646f339cf01cbb0c29e43069a79c17ac70dedbd794e3e6d794276bdcc56452b4517d880a08a2c94aa559c6ce7d395a59e768579e5a7ec8e99188

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-journal

Filesize
1KB

MD5
afd2769aa1a91b412e437debd4d62552

SHA1
be739221504d36fa421b0e64089545d546d6857b

SHA256
0d12c6d34050388ee56c4bbe6f83ee0d1b14aaaa35f0ec0ed76dfdd8c58645ed

SHA512
7d06c487beaea7e5684dc5cf7952ca65358d677754965de80274c5e089a2d27a8ab338c87c520a878beccb71c5776ba016d308db3a8c319770496cd9f11d61af

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
97ccd9a2b2063143df56b6937f961ca4

SHA1
5e78a91ae5df289ce83443cb7d5589dd3504fb5d

SHA256
248ff7928128015b1cfe3e6517c8f9b8c9511bfb8c8baf44fc1370640eac61fd

SHA512
86c05a5bb3d7eedea390664796966e9e5a5bf846c85808da54407788a76b3ee25b91428242a1e76d8765bfe51e1ba3636617fbab6e7dbb39fcc433e07c3fcd3b

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/preferences.xml

Filesize
152B

MD5
b408071d1af0a16980dc8dcc2098394c

SHA1
a34e426455dd35cea42ad0e9da0bee7cc2917191

SHA256
39ce0b8ffb45724e4330abc42168821ae5b159506bd41fca83117a36a929f1ea

SHA512
2e5b8cc921a99c5d4eb986e275026f8ce6ae50814427af78a41a52e5652aff61d444eb6d0f33e5f19133d8c2132d2c86fe855b1789fca5f635e60003b3cd175e

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/preferences.xml

Filesize
398B

MD5
bd7d22b765a4bc18a6b43892d45d25d2

SHA1
bfb5f22e116d7bd7e635bd549c51041447da117e

SHA256
d3b1de698cbb081fde064f0433b50a458df0edabdd7da5150bdd121d9e8c91d4

SHA512
98f9fa5ad542737a946770cb1d1a4e3afb103b91a2459a900644637a2f469ebd35d8482b8cc4bcbc3afb5e3eb3ed15071a424f9d33f3af824f7e7d6d9c969191

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads