8c2e3c0c7fd591f1377e9318fbcfbcae85db4875a2f405b99da46edf9b70eefc

Analysis

max time kernel
3577738s
max time network
131s
platform
android_x64
resource
android-x64-20220823-en
resource tags

androidarch:x64arch:x86image:android-x64-20220823-enlocale:en-usos:android-10-x64system
submitted
21-01-2023 16:50

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Phone Cleaner Lite_2.1.1.apk
Size

3.9MB
MD5

017613c945f5b8f07ea88dce7629a1ff
SHA1

5da104368c047b40ba07aace5bf21f38ed10aec7
SHA256

8c2e3c0c7fd591f1377e9318fbcfbcae85db4875a2f405b99da46edf9b70eefc
SHA512

7708f0ed3bb2a8f09be525519ef30c6d47b406088fb1e2906852028b490777efce8cdf4765546c6f35870b544e6349f2d87254a55f8c100b5c665abdc823cbad
SSDEEP

98304:ZalsueP6Gt15eSye4RHIKWLdNA3u/l7JMTndWvfrBwJ:ysuXy1wq4RHInLM+/l7I2w

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.skyclean.clearlite/[email protected]	4743	com.skyclean.clearlite

Legitimate hosting services abused for malware hosting/C2 1 TTPs

Web Service
T1102
Reads information about phone network operator.

com.skyclean.clearlite
1⤵
- Loads dropped Dex/Jar
PID:4743

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

T1102

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.skyclean.clearlite/[email protected]

Filesize
13KB

MD5
665767f2c11ef8f609ed38bf23d5db97

SHA1
cf7ee39599a508e83a9dc49e55c48bc8c2846591

SHA256
dca2d34d6881cfa25c089d49e7f0e4b4fed7851e8443eae4ac3ddf9b4fa5107b

SHA512
4353f7c251a065fbd28ee71b1d0193b2cd2e8f57d2ef6e2bc6a1b7be65fb01f4415b14a8303970f183ee02635b97b0a3f26df22fa5ee58f722ec7895db907511

Download Submit
/data/user/0/com.skyclean.clearlite/app_webview/GPUCache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.skyclean.clearlite/app_webview/GPUCache/index-dir/temp-index

Filesize
96B

MD5
1e971ccaac615eb0afdee5e3645d1c52

SHA1
130a07234cb1df015063c879444fa4f233df5744

SHA256
9aceb609be63adfedb4164068610209faddea182a07ddce33db854ba7be48e81

SHA512
54a52e718a2ccb53337c42a855e03c14bdc63fb8915218bcb86f47749784815d09e064fb8de8e07cf65b98e8a8d13672cf894aa322c66a745853c4888dd812f6

Download Submit
/data/user/0/com.skyclean.clearlite/app_webview/Web Data

Filesize
112KB

MD5
b663831f8cc130493476d94f2d7a5330

SHA1
043a1956ab8e40821d67043f8a9110a8eb36fb93

SHA256
c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7

SHA512
e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

Download Submit
/data/user/0/com.skyclean.clearlite/app_webview/Web Data-journal

Filesize
1KB

MD5
a8358e7e843785e88ce984124ff14f84

SHA1
cf844d4944711af4cd0d6c54d982f86ea2a23cf5

SHA256
234af5f90d59f068cad6f9d3e4dee34f185bdc6483b9305437e492c848d51cf7

SHA512
b4504033619dd0dfb2b327ca9bc39dd68b4db13248df290091ea10412d4977957e6f10e236aee09c1a82e2bcc1724ae9b8c7a01b9245eab881c34f41ae3d65ac

Download Submit
/data/user/0/com.skyclean.clearlite/app_webview/metrics_guid

Filesize
36B

MD5
d43b35533381202af40951d9d696e557

SHA1
9895fb8d8012af64d93fb74cd81b28be5684f933

SHA256
cc5d7b58afcf730bf2fa7a1207b9ef5e309a38b33b1b8e1a700347431efe740f

SHA512
250bb9a86ed171f0c78fb95c91a1a9d02707a06f1c13e7a4bb15b72b43c719072b4987f9206fc7ea5d78cc7eae490ef8342fce5c7e62c17094a93b025f72b06e

Download Submit
/data/user/0/com.skyclean.clearlite/cache/WebView/Crashpad/settings.dat

Filesize
40B

MD5
16352c74796ed5932853e2beefddf847

SHA1
88dc55039a5089eb6f5a740727d962839cafc4a4

SHA256
37a388a5b03ac9e543a02f214e2e98a967876c0304558b628a38c51d596ed19d

SHA512
54db29fae932e57d4d98676894e09b24d8c00fe92cef96843f0a869e5c057404273f1ee0379254784a87b924d1628703db40179847910ae1b16ccb54de025b16

Download Submit
/data/user/0/com.skyclean.clearlite/cache/org.chromium.android_webview/Code Cache/js/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.skyclean.clearlite/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index

Filesize
96B

MD5
a0812469ae2dfab658ff5fec6b918a58

SHA1
5a3a4b7bcd5dfb44803e0675750eb534a68f1a49

SHA256
edde377ccd727132627c083cd25f3528abce3e01aef667aef92beb7b84e42ba0

SHA512
da01c7acfae37ffdcae31f8b56eed8313dfef82fd46205dd8af1e2bab6dbeaff8f9dce4cb6045d52b323b643e72a5c00af094f21fa297ce4eb58a200919f54b1

Download Submit
/data/user/0/com.skyclean.clearlite/files/UnityAdsStorage-private-data.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
/data/user/0/com.skyclean.clearlite/files/UnityAdsStorage-public-data.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
/data/user/0/com.skyclean.clearlite/oat/x86_64/[email protected]

Filesize
254B

MD5
431f731f08aa007dce8c530282ead547

SHA1
0874f4037c8354aba47176819b8937751f9795e7

SHA256
6bee8b5bccef26485d19352bf27dcde3bbf9aaf24b7e0732b8a57dd07ed11148

SHA512
08b38e4780f641e880cc2fc95a83f1b9dda0005bf8d795304e0fcab2e5adbea106dadc3d1f8b23bbae3f962783d1f3f5fe292a52ee774e3ca546a448dfe0018c

Download Submit
/data/user/0/com.skyclean.clearlite/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
6ef709b8536878951e87c29a1518fc2b

SHA1
24376c70b00152501b3d98df61fa7db435339172

SHA256
10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6

SHA512
96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

Download Submit
/storage/emulated/0/Android/data/com.skyclean.clearlite/cache/UnityAdsCache/UnityAdsCache-cc9949eae18bf78ece3b992abc5bc8119b88b52139869a23ddb831934bb841e4.mp4

Filesize
1.7MB

MD5
ba6b46d9695a3f2c1661637e2c8e8631

SHA1
f58501db55752c9e71380d227f731dbff6d04dc6

SHA256
98b0f14b824b63c25b79da1e04a5f900bb90be3a348ff78cdac75865ae9c647b

SHA512
28fafb22649f2a975b06f193429ee2dcbfb09084f8c725dd0ee10d92ed8a6b787dc4f588752accfd6a4a4edb102279fa2c343be1c2b8c3ba33f57f3baf80b3d5

Download Submit
/storage/emulated/0/Android/data/com.skyclean.clearlite/cache/UnityAdsCache/UnityAdsTest.txt

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/storage/emulated/0/Android/data/com.skyclean.clearlite/cache/UnityAdsCache/UnityAdsTest.txt

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/storage/emulated/0/Android/data/com.skyclean.clearlite/cache/UnityAdsCache/UnityAdsWebApp.html

Filesize
1.8MB

MD5
6e932cff883464988485f22f1b7280de

SHA1
392b18b6b6172edbb1ae57456054a34479947e1c

SHA256
a1508dd6363c9eda0757890b6f6d800a01a9520354074da1eb15b5142ecbe354

SHA512
9de1d67b4c66ce102139e0d8b1b1e110426ec590e9e62e20b56de46adafe70474df2e062381a4b0185800b0208306678c6282237935885d5a5414d9021e36b43

Download Submit