0a1fb555f9c4b7bfd66752589c66da8faf6dc0bcd178580484fb665333880e5e | Triage

Analysis

max time kernel
4087119s
max time network
308s
platform
android_x86
resource
android-x86-arm-20230621-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20230621-enlocale:en-usos:android-9-x86system
submitted
14-08-2023 10:29

Sharing

Report Analysis Logs

General

Target

server.apk
Size

867KB
MD5

a57e7515830dd0fea459bea488294849
SHA1

750c8f63111ae99fba3e65b21027b5ab2c97f259
SHA256

0a1fb555f9c4b7bfd66752589c66da8faf6dc0bcd178580484fb665333880e5e
SHA512

c9f0809be0f1eb8fcc82aa7a57293affe206e32e7079d249787671e0512304c74ff8e126f124cfc6b2c283c6d3ca1cba3ee5331cc9b9bd946049ae29cc2587b1
SSDEEP

12288:DE/NwrslMF3AiHDrFYqlcXT/f7LXLaD26C9XgqRCIlNE8Z6GvhZd:q2rsleAiHFYqij/DLbaDnG5Zp

Score

7^/10

Malware Config

Signatures

Acquires the wake lock. 1 IoCs

Processes:

yps.eton.application

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock yps.eton.application
Tries to add a device administrator. 1 IoCs

Processes:

yps.eton.application

description ioc process

Intent action android.app.action.ADD_DEVICE_ADMIN yps.eton.application
Reads information about phone network operator.

yps.eton.application
1⤵
- Acquires the wake lock.
- Tries to add a device administrator.
PID:4066
- su
  2⤵
  PID:4162

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/yps.eton.application/files/config2023-08-14.log

Filesize
158B

MD5
0ca90102b9b21970bea696ef921c01d2

SHA1
9809424d34df5e76f1bd0be1377099cb559bb99e

SHA256
73279d07303c3ca36f110c47e93d7e15c9c6cd4b5f78c538c504580a42e26856

SHA512
da53d400d957df69af21afe0ffa2e889534761c15c51ae2b2d70add8f40d51bc71c10f9feeedb87e81cf82e9178547e252516265e6c21adcd1715802741b02f1

Download Submit