bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151

Resubmissions

04-10-2022 09:59

221004-lz275saec6 8

26-09-2022 05:56

17-09-2022 08:02

06-09-2022 18:32

06-09-2022 18:14

Analysis

max time kernel
2019624s
max time network
145s
platform
android_x64
resource
android-x64-arm64-20220823-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
submitted
26-09-2022 05:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151.apk
Size

4.1MB
MD5

cc551ea1e9bb262a25f25a2f15412905
SHA1

5856d942486d0ef997527591c7ae58b6d6a4bf07
SHA256

bf3fcdba7148627abfed402d038c99d3b2e60cd87cd04fe22b6ea3aac5ac9151
SHA512

8b511c9e9cfd784a0537027c738ae6d4c722f0358814b4fb8089c8302a07320e49990183fd5f6b9006e99e5c1622a17d5f7ef21613c7075761d3386e3cc44f62
SSDEEP

98304:Jeq7CtjZunGGO2mASwWX47tll0FCYHBjnDSY6vkyFmwnM/yd2ofrHS:5ytun3O2mAJRll0F/hLGkyFm//T

Score

8^/10

evasion

Malware Config

Signatures

Makes use of the framework's Accessibility service. 3 IoCs

description	ioc	Process
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId	com.ohalqpdj.discopet
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfosByText	com.ohalqpdj.discopet
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfosByViewId	com.ohalqpdj.discopet

Requests disabling of battery optimizations (often used to enable hiding in the background). 1 IoCs

evasion

description	ioc	Process
Intent action	android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS	com.ohalqpdj.discopet

Removes a system notification. 1 IoCs

evasion

description	ioc	Process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	com.ohalqpdj.discopet

com.ohalqpdj.discopet
1⤵
- Makes use of the framework's Accessibility service.
- Requests disabling of battery optimizations (often used to enable hiding in the background).
- Removes a system notification.
PID:4273

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.ohalqpdj.discopet/app_webview/Default/GPUCache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/Default/GPUCache/index-dir/temp-index

Filesize
96B

MD5
5f9b0293fa7fbaf4cbdf749fd9cf5fa4

SHA1
2b90b46f887359ea47e1f74067cfe6fb367bd698

SHA256
a5b84cb1af4e4f291b7fa6599b9346897b5fb9169aaf4de24a13fbabf25778f0

SHA512
d9e85b21a51b2e98cb2dd893145634618451c2c3f312a01564be88edd3ecf068d1ac48ed26700aef4dc82e7d1ef6afe8dcb97a99ac3019535aea92b6a3fef7bd

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/Default/Web Data

Filesize
120KB

MD5
a48cd9324b1f8754b07f00d863b840f3

SHA1
11c6614775b35a58f440971dfc87c8aaac6d6173

SHA256
8859a216183793485d4699bf69d7ed96904679834188d07b9a70424d47eb1420

SHA512
35fa712f0af4a5eeed7e00e4e59ed5027dc6609d268462fe79d92043be9ae0c5961ce9e1d2f64b1a196c9b6aa6242b8b83817b3ee4c1058596c58a99c45478b1

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/Default/Web Data-journal

Filesize
2KB

MD5
9053f8a700dad373fd9113ca4769c4df

SHA1
9076550d0e281cc53a87e65572917ff47685f654

SHA256
aa1d04ed376f38c77cff62821757119e002b822a61e149cfd8e5088058c8c7ea

SHA512
7cca76687f96c8a34166e7500d037560c385442c9157f365e937c3ca4b81be96f86917a2711971ede6f27d7fdb27315ce3b33156f322be770fb8e7c7bece035d

Download Submit
/data/user/0/com.ohalqpdj.discopet/app_webview/webview_data.lock

Filesize
27B

MD5
80112782832f60cb45f7a40f9ca1709e

SHA1
bd6d69e4cd41c5119fd631b283871721a98bca9c

SHA256
85f445165b00984a2977ccd3bb76640728b2013647c8573901286ac9a3e75e44

SHA512
75866a0bd6c3057af86c66f86e12bf24b9c49bd676d854cfa9f5f47da5e79952360566dac6360fe1aa5e0c306c8d4845c6e6d07502bff278803fca54a533209b

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/Crashpad/settings.dat

Filesize
40B

MD5
c5d36121308208b37a7d2a25c274277c

SHA1
ed52073122b982bc9884209d68d2987222a7bd09

SHA256
91117478c395684bf81fe83bef4d8a577f8e0f0e3aca74fc8e6765c2c42ee867

SHA512
2a0e0a3e229ee7fa090b770faaa0f91368a874b027415422e62af8e3f838a9f04fb23936ce09ae321785aa32093d1aadc770cf2ab6f9835a27c106bfc0df0463

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/Default/HTTP Cache/Code Cache/js/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/Default/HTTP Cache/Code Cache/js/index-dir/temp-index

Filesize
96B

MD5
f931c3619e1a4170106951537c7fa7b8

SHA1
18aa98e24ceb4aafac6e0aa6645b7e45256026e8

SHA256
cb822c06a9878aeb0268f72da6d9b0b6012de135dce04e4104da079bff76e176

SHA512
cd9eac76a025e8d16e348591d1f8e318d72d68465c148b137f1c998e77b949b1937fc84843f161fd317ee37c537cd54efada8e59b2069acb3f137538c6a540f9

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index-dir/temp-index

Filesize
96B

MD5
85bbba6e433fe36af1bbb9771d2dd22f

SHA1
ff520f7eaea295bd037c77bc5ebb47c422b320fb

SHA256
09a2a1a6c5a60b263f6ee7d10bc5a500443d76185d27403e9d5abe7aabd4d797

SHA512
dc535586d11b10df9626f4abc2699cdcda042b389918056651ddddd97c7f79731232dd379f3fb779d910268da84f5eae15c014473417e7037ce70ecfee7a24a7

Download Submit
/data/user/0/com.ohalqpdj.discopet/cache/WebView/font_unique_name_table.pb

Filesize
57KB

MD5
f080fa2a56ab5479d58063e5ea871447

SHA1
4b3fd57a98916fa5784305b76ba30af26b5253d9

SHA256
0aa374bc456330fd1b5daf18d25b4bb8e2df1998dfa85466f2c31843ff56e815

SHA512
8aee3186a95b389d39882620b7c4199a29aa50580aa98a381b2931a934de6406943c89d4d00ebeabff21e2b03b4a4adcc01e37e32a2335c4838be24bdbf61936

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db

Filesize
104KB

MD5
8fa8abd63692a21a8a0bde0e3b990e25

SHA1
5014ad59bae25a15dd884dce2020ef6b2a3dfefb

SHA256
34f0d016e3907432058ef15dca69754a679f0ff4dd42cfee1a5d53cc555f3432

SHA512
f9d2d8146f44820cbb591d1f8e9af302a09c1596c33fafdc81a61b65219147c6f0509719d1d71094bacccfb7bed81d018d3506308d40c0fbf89a376ec82d08e5

Download Submit
/data/user/0/com.ohalqpdj.discopet/databases/database.db-journal

Filesize
1KB

MD5
d2b5883c1417cb092dd133abfa069b6f

SHA1
9fe2f083c8789c456a43fd6c03e6e43fe85fded6

SHA256
5e085d07bd5a79a4b7590a0153c0cc005b8d0067307097217a76c01f18992ce0

SHA512
9919ba4cc5d48d60acbe4efb31ac40711683338a0f8ded4a5d3294be64d736e506affc345ac98e3d8ad3d01ccc106befaf61cad32755875f44b3e1f5c8775631

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
97ccd9a2b2063143df56b6937f961ca4

SHA1
5e78a91ae5df289ce83443cb7d5589dd3504fb5d

SHA256
248ff7928128015b1cfe3e6517c8f9b8c9511bfb8c8baf44fc1370640eac61fd

SHA512
86c05a5bb3d7eedea390664796966e9e5a5bf846c85808da54407788a76b3ee25b91428242a1e76d8765bfe51e1ba3636617fbab6e7dbb39fcc433e07c3fcd3b

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/preferences.xml

Filesize
152B

MD5
645c3ea9660313587cd1b8b9da351f6a

SHA1
5ad4057455892f113a53163ea8b4ef959b6124e4

SHA256
a08c004e9482c42cd8b465b52300a7ee38482060393d5f11bd3827d0d510f292

SHA512
e48867ce1d01d856c3ab03688dd97ae177b349bafff8072986ab4de95e147332f9612af28194b6b88d3757fc5ec4bddabd296df884746edfdef1b40018d2eafb

Download Submit
/data/user/0/com.ohalqpdj.discopet/shared_prefs/preferences.xml

Filesize
398B

MD5
da12da7dfe21031df81711714bcd4111

SHA1
dc072dd347150d977efa9754dadc9bdc9807bdcd

SHA256
682f96f8bf4576a8051783867cd2bdbb485e091bb5812438d7d8e523eb91da80

SHA512
f67d5727c3ee7185a5436bbacb0671a879df84348a7fa598377a8f62904207195ccf99d7c6e4515ca47a9635f0c5ce868660002ae10e72b3c049b2e4bae96357

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads