6f3594271b0bcc10a325a14abf1550d32b49c975dc73f61e2a2547a88b7a953d

Analysis

max time kernel
3789139s
max time network
131s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
03/05/2023, 13:37

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

app2.apk
Size

8.5MB
MD5

0b55e403927eb9b3de0f3a6807cb2033
SHA1

c0c112967bddb9b0bfbb150fe529eaee66749c1d
SHA256

6f3594271b0bcc10a325a14abf1550d32b49c975dc73f61e2a2547a88b7a953d
SHA512

1e179cea2eb5225745a43e0b203a60d73e66f5c05e82931695d5537acce64b418f25c81ff91cbae670635cb60d4e0f74fbcd07adf049c86d5fc56f518aa53ab8
SSDEEP

196608:CfnwFvKZphVU3ApvZ7Jj2pdZlxdSCyLb+kS5Agifjup7o9M0oFUsuV:K5ZppvZJjelGfosk0xsuV

Score

6^/10

evasion

Malware Config

Signatures

Legitimate hosting services abused for malware hosting/C2 1 TTPs

Web Service
T1102

Requests disabling of battery optimizations (often used to enable hiding in the background). 1 IoCs

evasion

description	ioc	Process
Intent action	android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS	oycq7bm.bqq0ku.ls09l0f9

Removes a system notification. 1 IoCs

evasion

description	ioc	Process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	oycq7bm.bqq0ku.ls09l0f9

oycq7bm.bqq0ku.ls09l0f9
1⤵
- Requests disabling of battery optimizations (often used to enable hiding in the background).
- Removes a system notification.
PID:4139

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

T1102

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/oycq7bm.bqq0ku.ls09l0f9/app_webview/Cookies

Filesize
64KB

MD5
cb7543c4df600f2af58097cce0e334ba

SHA1
83cc92f38c27fdb4fa519b1ce2f37912f24af1f0

SHA256
64c022ae708f94ffde986e105d88f708884de325720bfb9925c4160a6d417233

SHA512
ad51cad0472327bd68aa2d791341cfafed58971752352537bb603ed18b15a3f9185e9150983a28ecd09606e8dcaef6d1c9d93213dd246ef7720f39842eb3d980

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/app_webview/Cookies-journal

Filesize
1KB

MD5
a6ab67c4a81d00adff82bc6e751fcbfe

SHA1
b3b53372f35c8c9cf2982e6b7fd7f5446669c289

SHA256
f39fe7beca66cad3f2c83b4badebc5b091e709dd59804581bc2a63910b8b204e

SHA512
9cba603f7bb59ef20a5ec9cca71b085e134f032fb340947ff8ce4e29409f68bb11cbda8058bb4e7b5d57bb4d3954924d893e40eedf9bcdd3b17820a84f366240

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/app_webview/GPUCache/index

Filesize
20B

MD5
93027d42b314432c4216e6cfca48b384

SHA1
43448dd8102979c3926828182579691945eedd4e

SHA256
3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

SHA512
a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/app_webview/GPUCache/index-dir/temp-index

Filesize
48B

MD5
d3e21a48f230b8143ec517ca611a007f

SHA1
57eb28f46dc72baccd1f117fde010934a284241f

SHA256
7196cc016e1a73807ed17f8eb50f92160361e9b772ad569749fd58347661a225

SHA512
589a3b3aef1d92f11c1f791e6fee7c14bf49a3af132cf889025e7173adff4aed348979bbc0e07b087b94286462b7cf81dc863918717c1d4bf54f2901a860dbb0

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/app_webview/Web Data

Filesize
104KB

MD5
dc79f9ce5f3ab5270b33e61119dfc959

SHA1
1844bf222a5144b513dcf2fb50a18c011701c647

SHA256
47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65

SHA512
18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/app_webview/Web Data-journal

Filesize
1KB

MD5
f8251c7fe5e5572c86e0a1006ea6186e

SHA1
144dd996022bb0bc3a5b2963db5fd9174b16897a

SHA256
a4db0bd985bb10a7120072b3d0dd9d359b9230538a71d0e732171f6f919566a5

SHA512
9a901f6b0758c554f1f69023e257f1937801bcb687d0342c2b9e763ed5ea2f69a3f2a59bc4a71fdd045e648064ce46ac49dd42336f9d2844e51fab989ac055dd

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/app_webview/metrics_guid

Filesize
36B

MD5
d9369b1685144aee1c532e736362db14

SHA1
bd87ed918d3a48301c35832d4bc5caf6e71bd104

SHA256
d4b9181bffc667a349ddf5b988fe5e3232f92518dc66f04af463c06e92929506

SHA512
551fbaadd211995eff546e213bf2f1d89ef81dfaebce97cca5d4ccfa34b8b84172187ab590d25080160db54cc8979918d475e0833e6e225bf5759f7919044e34

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/cache/org.chromium.android_webview/89df2e394475fdff_0

Filesize
136B

MD5
cc9ed83d145370c6d194bc8a661312f9

SHA1
2ef96831d6f1958368e7a91af9d9712468dcecaa

SHA256
eb96a05613b68016326753776974c77a63095b522dbea8c607a4396856829ec3

SHA512
b1dc910b4f5d5ce16ef129fd82bf37bff7c81a8aba2d3c89aec789f94d8af06bb1ca9384020e1c12c8ee59a74ebcd55c2574c66c68e7d1e219211ccd6ec63089

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/cache/org.chromium.android_webview/index

Filesize
20B

MD5
93027d42b314432c4216e6cfca48b384

SHA1
43448dd8102979c3926828182579691945eedd4e

SHA256
3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

SHA512
a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/cache/org.chromium.android_webview/index-dir/temp-index

Filesize
48B

MD5
e207ca532e8caafe3c067e47e33b4087

SHA1
c62eacbb5b7f7bb21fff303cf6768bbf71190c94

SHA256
8cab7164847c09c472a11268bee0b4f241c6e6e1088d8e2f4765363d168da34f

SHA512
bbe5ae0bed1bdc47c3e5867d71bb82d940522d50e968cd0ca18d5319902b5917766457842f621959e00aa14b9b5c62d2a01eee4e7d7245bbcdb1374e1401548d

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/cache/org.chromium.android_webview/index-dir/temp-index

Filesize
48B

MD5
dda967fbf5196fe01b1ebd1c57cb9be1

SHA1
4ccfb9c201f6add9d244c835426c4cc4a030e924

SHA256
4d080d65c29a6f775056ef051e3906875dec0c943c0ff23f83488f86e9e5df96

SHA512
62cbe4394ea7dd370c0fb72a9cdae6af20033954d1e3bf4ebfb5ccf5ba16d33176883f254941c9d70052fa1a960b1a9e8984bb4de20696c9deca580fa75b6f8f

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/databases/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/databases/androidx.work.workdb-journal

Filesize
524B

MD5
17459a5c390e271d686c42d8b83606db

SHA1
63579b33b85b4cea304999073a5ad24ce9227abe

SHA256
a1debd1d96008cba134b0434fa10088d034b184b50609325f54556c8c6852e4b

SHA512
51accdd79e276c220f6471458a3713e2e5baf8ae2ce16142312b6fb9291ec5423868218716eb62525326e5a193dcfc4528525e443b2e61732036052c81b32bbf

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/databases/androidx.work.workdb-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/databases/androidx.work.workdb-wal

Filesize
88KB

MD5
1f4953b292ca85d9ce71321fea927602

SHA1
ad74833a9b170487a02b57855fda8247259c326b

SHA256
43f37c540df037eba7c7ce9716613b1f21e44bd67c6b333f27c6de8e72f3dd22

SHA512
b577e4accc6dab683a6fc5194c49a30b1176479fc7101b5a5fbadc94b3a2bc9b093f91561c1fd9ab4ea2f4b6ebf40adbd036956252b40a11606892d0a653be9f

Download Submit
/data/user/0/oycq7bm.bqq0ku.ls09l0f9/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
21223e9184445fe043476484cd8cb1f9

SHA1
2b4813f849121d60ba35eb0889080668bb62c778

SHA256
bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

SHA512
be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v6

Replay Monitor

Loading Replay Monitor...

Downloads