bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151

Resubmissions

04/10/2022, 09:59

221004-lz275saec6 8

26/09/2022, 05:56

17/09/2022, 08:02

06/09/2022, 18:32

06/09/2022, 18:14

Analysis

max time kernel
2019596s
max time network
132s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
26/09/2022, 05:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151.apk
Size

4.1MB
MD5

cc551ea1e9bb262a25f25a2f15412905
SHA1

5856d942486d0ef997527591c7ae58b6d6a4bf07
SHA256

bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151
SHA512

8b511c9e9cfd784a0537027c738ae6d4c722f0358814b4fb8089c8302a07320e49990183fd5f6b9006e99e5c1622a17d5f7ef21613c7075761d3386e3cc44f62
SSDEEP

98304:Jeq7CtjZunGGO2mASwWX47tll0FCYHBjnDSY6vkyFmwnM/yd2ofrHS:5ytun3O2mAJRll0F/hLGkyFm//T

Score

8^/10

evasion

Malware Config

Signatures

Makes use of the framework's Accessibility service. 3 IoCs

description	ioc	Process
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfosByText	com.ohalqpdj.discopet
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfosByViewId	com.ohalqpdj.discopet
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId	com.ohalqpdj.discopet

Requests enabling of the accessibility settings. 1 IoCs

description	ioc	Process
Intent action	android.settings.ACCESSIBILITY_SETTINGS	com.ohalqpdj.discopet

Requests disabling of battery optimizations (often used to enable hiding in the background). 1 IoCs

evasion

description	ioc	Process
Intent action	android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS	com.ohalqpdj.discopet

Removes a system notification. 1 IoCs

evasion

description	ioc	Process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	com.ohalqpdj.discopet

com.ohalqpdj.discopet
1⤵
- Makes use of the framework's Accessibility service.
- Requests enabling of the accessibility settings.
- Requests disabling of battery optimizations (often used to enable hiding in the background).
- Removes a system notification.
PID:4141

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.ohalqpdj.discopet/app_webview/GPUCache/index

Filesize
20B

MD5
93027d42b314432c4216e6cfca48b384

SHA1
43448dd8102979c3926828182579691945eedd4e

SHA256
3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

SHA512
a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/GPUCache/index-dir/temp-index

Filesize
48B

MD5
e7ce076179ebaeee889581da8bf5a866

SHA1
a70438923af0177bc19948fa113acd2b29858b9e

SHA256
2a47c0fbf318b1c5f5cd481e874f4ce88e447b8521bd2b59775021b30abb3191

SHA512
f9f7085ef80b96959c1749e6dc2aa28489d29b7bbefa500c4ac9dc07dccc2e294a9d4dbde70711f281746a19e134c41dec1860817a0838e6cfb043c906c706de

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/GPUCache/index-dir/temp-index

Filesize
48B

MD5
71c0108e0b947358de126ac825f56e96

SHA1
dd2e50e98bb043ac4040a2e8b44b59701c0d81bb

SHA256
9343e998ea6c6e32886e045ee648b091f814a47b935c38f3dcea801e4a0b4877

SHA512
48201d1bc16edf7c2395528b4a01670ec61a892386686eeae680e928148e6dc0f7023e98f3a222e36e3468e0d70bb3db5eee42b7f3664e9bb5c34a56aaf2c95b

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/Web Data

Filesize
104KB

MD5
dc79f9ce5f3ab5270b33e61119dfc959

SHA1
1844bf222a5144b513dcf2fb50a18c011701c647

SHA256
47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65

SHA512
18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/Web Data-journal

Filesize
1KB

MD5
b5c92e6ce84c097c4670ce1569f0a2ee

SHA1
bbd6b4348c7ec14cd57150a27ad8ad545b8dcb31

SHA256
30482b731b9f1c167ac97a61f7ccbb33616f9cbd47f48dbedadda38a26ca6349

SHA512
1114bc75cf8136a3b2a588d9af1f75d6d5debb756be127ea2a361a8a77172269a0162a1a4435cc6b672aa1f94310f435f3c7b01ef4202d7cfbbd1a5b79b05711

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/metrics_guid

Filesize
36B

MD5
ab0c1b4dc053910c777d80c5c2cc0f40

SHA1
0ca03ecf0290acf34de262cf057759d1650e01aa

SHA256
cbdd9f3cf567023bb0d95b41fae17f4e75fa367b65bb501b699dde2b34125c3f

SHA512
4ed09060311e283e5a00b1e990f033a760964d284c185f69b6776639c184b9615cc173172ce83e8f4d19e9159530868cc4aa54458da2e71dbe97e56445525be6

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db

Filesize
28KB

MD5
fcf93bdae07d244d30cab01c9d2fef11

SHA1
460a4fa13a3e64e7c582623706206d9e7f2f7819

SHA256
e1ee2827510da396e81bb60f5c300dd4ecf46294cd0d5dfeb6553b048ee26e6f

SHA512
94b655bb03e171e1fd51904455032c647c16408d6b266f10a76eade5bc41dbc5b43d12456355a1d909de2e18192b859bcb69ed1e3297721d97da080621fae210

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-journal

Filesize
524B

MD5
6e926a73f23489d9e106716daf329d69

SHA1
7518b57d67398ae4d923cc83e16416cdc45895b8

SHA256
93167e2fd731c218b5164cd71157ad132e6ec85bccff3161501207cff21abea8

SHA512
260aa8f34b891cd6ad0af42475b3478cebc521e48ee7bcfa1687e5e1a91982784ea8354e7fa1336df5ed83be6f369124faf43d1d7df053abb74291fb836219c8

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
44KB

MD5
ddfaf80bb7d677a7e6eb85daa8c8beec

SHA1
f9c20ce5007ae1d9531f5d976acf763a450ad75f

SHA256
03402920ed880e6123d3329e7e74ae118416f38f78532b5dfcf79dd9cfdb2afa

SHA512
24f79b7a9fbec2b71bbdb1b6aa5dc0c4db7410bbc0fc56fb550302d94d43f7d3a99b41e4650f2d522a1a971b73bd86cbbeb660727db9ac4620fc703e46dbc32b

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
24KB

MD5
15febd5dc5dc5fff6130fa28a3b08032

SHA1
5db4d3761a4a6a612cb55a5599988e1f02a8ee77

SHA256
7e840ac7fc3b5fbf6695967520c0909a3c60a66ea9823a40223ac5faaa9df0b2

SHA512
f705f635ee6800584d09e71b89f708ed27cf6dbc555d01b34e47491f3e08f022ff2319be4ffed1a02cd14b10e86d59ea749324b48159b1556c3369ec31f1a3a3

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
24KB

MD5
411b797df3f879b3f462fb5101dabd5d

SHA1
e4a2d73c8fc62e7ea1e88fdf558755916a33cdbb

SHA256
ae606ce9fcb5a527d4c6e80a1f18a3b20e9073dd5dfde4cf9b2ea85270568cf6

SHA512
7359a3ce9e948c8dc614ceb27690397441a68b25bc6cbd07bc3c98e4a3a5a00f7956406af9470a02f0535ad9ef6063ff10a9a2c56e0aa663f6aec284455082b5

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
20KB

MD5
1b0f6e4a70e7e2740a37347ec94b5ebe

SHA1
9840b97659f7a7df72b4a7301bc880c711ddfc42

SHA256
59a9fa4e28e382f1e18b7ddf9deac179ae91daf02c532e37feb8e66d41936872

SHA512
437d5f256ecffc13e6a5a82cdd3a05ab671d70a714e1634e6ead2dfc70a1d1d284634d16c6cda91566400f2390d35fe2fd0371fdaa9e6d06e2ca0835a84a81cd

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
20KB

MD5
bd32558567597950f5c72ded87b905ad

SHA1
452338c9a2c651e3ef4cebe87ab219990cdef88f

SHA256
7077ea0906bbf9273bec8189412e5b73346378cacd889153a7b2a125f59a5168

SHA512
eb31a652e6228f029a50454846754a505d95dcaa250d6040f12bd83cd878b2adc4d9a7d7a4bfadafbe43bbde9edcdb697b91f12c069e3c4bbc416a884aff7067

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
20KB

MD5
c93431595a47850762eb25f51da5cbd9

SHA1
9508bdbeb632915680e5ad8cf077e7a7305ff293

SHA256
adcbef3bf2efb7f78d1bc362d9ab8788190a76cd857d2fdf211af885ebfeaae4

SHA512
904f9264fe35b81de309a8b503d413cc3539b63c8aa393af8e5bf934f5a47c75447bcb2d41ab7164f3220034e4d7efdb2b073ef0291a2c44ec8ae51ca3de2612

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
24KB

MD5
a8c4938114be91649691140e00d030b6

SHA1
487a34011feafa869e567aea7c15df816f6712f8

SHA256
8946e226e5371f820a992895b39654450c73ab07ae4bd7f74ca7bad394cbb365

SHA512
7abf47f62316525cc710289ed54be40b9f1fcc379b6b204c7c5f99e783b57b963f9fb40bf52403327c7f22ccbcf25f8c79ddd91546426fa9c93d95d0da842336

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
40KB

MD5
56109c89baed3371868260ab63590181

SHA1
d822c77ad2facf18cc3e62e00d51c38b703bbfce

SHA256
073eda1e4ef1bafa1513ee500de56b4df881d112d4112862812a1eea336e1618

SHA512
7770d2b881cf23548553d0491cd13e6e60825671cc712e709ca00d506f1f28a3170febbb52f36eb56917283e383ad6d60d2653abb2bab57329fbc6adc68a10f9

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
20KB

MD5
b95a541f80cbe4f4c7e3940c18929c17

SHA1
042171befab0f19fc095bcff35cf3497d3f9f354

SHA256
3b2f6a425efd24d19bf50fd9b08d8accd4a9b04078ff8505f4d7a243d1646b6c

SHA512
e5fdb681dd8d2c2d7f28816f1cc4d92a0106bcc63afeece88a0f6c156a5639da3fd1de26544ee009431030dff741188f2d086b3c9a5554a067617355d386c397

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
24KB

MD5
179c181fefca932860711e3eafa1e38f

SHA1
6da0f5469b29d67371f7144177f3899b09daf05d

SHA256
d1d450a1f22e24449dc9bfd9b43788789fb7203a490c73538832f282e0bea2f1

SHA512
44dd6bb5f3aec458585f87935e5f4fa9d5e87b20198f49e987363a2ff90d57eafb3033c281922e463d9183378b45bf730fca13771fbd8db888974e921864c232

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-wal

Filesize
20KB

MD5
ed14a2d55c3f0a429b3b497f0eccfb50

SHA1
0cf2f806a6ce8df0ce722e6a9e08aed06bb3154f

SHA256
822b7ff64e09b597a6bdc6897523d66964a2686ccd84ca12912413feffb399cd

SHA512
d27ee83a7145a3e98a1ffe4353c37daca5755a549592531e4b3f3c14f15dbb6dfc60387fa6ab6038d8364248461cee677227b0d7385c456c0707f4b07134be37

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
21223e9184445fe043476484cd8cb1f9

SHA1
2b4813f849121d60ba35eb0889080668bb62c778

SHA256
bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

SHA512
be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/preferences.xml

Filesize
152B

MD5
441ada047324154ad92aa5c8d81230b6

SHA1
d530bac9cf8ad4ea3d3d15be3b8446104e1dace6

SHA256
7c57a774c405fed3aafd8e4e5fe4c0ebb222e566c358f6b0732936a40d2e358a

SHA512
1b8731fb613317470e3cddadd8d2a546168bb7f6d87a4829d08f9310a4f1b60310a9a383016c5493548eb9b49abf362feca2c31b61e6bac71f3995edf281a1d5

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/preferences.xml

Filesize
398B

MD5
2bd5bea5a2dddf6b85bf65b22ba669ab

SHA1
86a35479039791ecc73677952b3f72e9847a4cab

SHA256
a29a01214d8e170666949178c642fde469e8a2f8afac253f526f64159d8d7a22

SHA512
38467b8ecda0fb9a16e2f6e430292557839ad7dc0430daab02bb97cc6fc66060f22a21eaf108ca35104a0571abfbd13f9b834ce973b05300bb55d4bb16baf1e6

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads