8ef5fde27bfffcf02fb982c5a4d2a791af1156d15ac0dfe3379b9e0b363a869a

Analysis

max time kernel
3186468s
max time network
152s
platform
android_x64
resource
android-x64-20231023.1-en
resource tags

androidarch:x64arch:x86image:android-x64-20231023.1-enlocale:en-usos:android-10-x64system
submitted
11/11/2023, 10:28

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

NEAS.8ef5fde27bfffcf02fb982c5a4d2a791af1156d15ac0dfe3379b9e0b363a869a.apk
Size

2.6MB
MD5

fee597bf57d2f085927511a8df00b503
SHA1

1668ec731191027dce4ca08e76bab25e1e051f43
SHA256

8ef5fde27bfffcf02fb982c5a4d2a791af1156d15ac0dfe3379b9e0b363a869a
SHA512

32c8156231788fe95bd2e5ab0ecbd025fc126a168d545462b46e91de15ec423f89039209aae646812910543d411021d0180e68de274bdf236f8c4927d3f8e828
SSDEEP

49152:QE7/Q767Bd2KFzGu/IVvKUdmfRBYhwn91bkDaglsDMdcO0RlgpSEkWZlEpD:QUQ767B8KFzGqIVvKdffnrkDagy4d8ln

Score

7^/10

evasion

Malware Config

Signatures

Acquires the wake lock. 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	vip.app.com

Reads information about phone network operator.

Removes a system notification. 1 IoCs

evasion

description	ioc	Process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	vip.app.com

vip.app.com
1⤵
- Acquires the wake lock.
- Removes a system notification.
PID:5064
- ping -c 2 -W 10 -v google.com
  2⤵
  PID:5274

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/vip.app.com/cache/1

Filesize
345B

MD5
589700204247c76bbb6a30f647f25033

SHA1
e43ee7b217658fe34035040fa103e6aadabead03

SHA256
888e4533e6ea033100159045f82e1ff09ec63574cb0fcfab469f094bb586d6ca

SHA512
27ad3e030c9eb1fff780cd3ade74733e764df8e7fff46d3fd53e7e1fb68d93d84d344756d0806930a82dcb20e10214be14090b4c714f99a17f9a75732042b368

Download Submit
/data/data/vip.app.com/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
cfc503a8d31398835fa4cb484631f4f7

SHA1
277c23ef2c2d2402aaff91509385e80c8cf88570

SHA256
d0b005f228950ac40b99c99443a4da7c5a15c73695cd3543add832795f86e490

SHA512
5b63267868947e3d98b5b3423238fac2b5b17ea1c6e48de885b04213e2ed5cffecb0055d977ed59ff7fd1d6c0b93d1026a6ba14e39702fc87f576b1e9730ab16

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e6114a3fc43acaca24975a7bd28e8af1

SHA1
9e2e67b0b9788669a3d048d5648ca5fd804bbe62

SHA256
972bd8b7034b9a53fbcf54f2bc2333535df974a9895cb3c8c3e3055e6b232848

SHA512
6a9b9a1ebed7ce11e5f5fb9c02df721eeca8825855dc110184aac836c62cc4bff22544d692b5c0541987c098ffd765bd2818afc31caa9a8e67e18ce90e283514

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
9186e99da287862869adcc5600bc80ef

SHA1
4adcbe1c8b56ab0a19f3f88ef38f6b1a7679cab7

SHA256
570c154b857a13b180219fc130187eed3938163b2b488af51a3cbec7cc58cb25

SHA512
a8e83b35fe003fbaef86e1af671255b3e132feb7224c0d2e4b4905603f8780ae03136c28837cfb18cda8c5b926710f61d7b141b94827e2d6854775e9ae5198bc

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
bbc2e456ad572986c1110de1563c80b7

SHA1
9c1f94bf65f05838a695647c48de3a2e1d17d32b

SHA256
d49eea30b920b8689d61ddaf19176045934298e8a48c3ef202bc32cf7fc7ee37

SHA512
822b414fbb65cd5d69760a966033a784babe49bbcb55cba08ebfb94d330823c6f95b1b4920a2e1b8a63edd21a74326f86e659af897635d1a6b8dfc7449444920

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
adf6082723784327d7d1b34adf974e7d

SHA1
b1502f70eb881a1dfe41139cb719fefb877ee37c

SHA256
252defb835b04f4af7c59bde7bd119664e901928f1373171a287897e729cb2a9

SHA512
762f146c452e590e0e3015a080e9821b5488551b9cca7a212ceb11a853ddf6b1894c99d09ba20e6691f5078aaa8e17a6ed66dbbe541eaee152978fab6884e27b

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
472f6db7e3b860c9f4fbc4354ed27891

SHA1
34b1e0e2726e250c6cb966901a241200527a0d56

SHA256
0e35ad0691b6b9e64224be7fd5601b407bd159d81b93d398961a21608bc4389f

SHA512
64304a1a48e00d52651fa7af2060413261da004593d984b1da0d0a57507bbf409ce81908fc08b104f172373858f7b374b2769c15f31b58e52f702acf3ad246e0

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
318121e66cf13ae88e43511ab233b6a8

SHA1
2a339721af20ac1590745c6cebb1697138a64232

SHA256
f18e6a34ec0868ca01876169b33ee7c721f272b272ad14644d04357dc1e90ae0

SHA512
32e539076d4d0f51f18cdbd1d180c6d27c2a2efab313615f4d389aad392b58e5b6bd81962ed7fcce507d9bf6cf6f287a126da16429cd0de7c8251aaa71ece76d

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
b072af0add997afa3cbe4fd09e951242

SHA1
6a4bfcf24bc60c07b9aabc215aa1d67e041108c0

SHA256
602ccf6e5804bf9feb7a4ec5667b4941ffbfca76ff7884b8bb69417f12c0f104

SHA512
dc25ae1db6bb036a88327e7988c4695f300f93e522018c7ddf7833477cf75f6445ec12fa1cb32838910e840fb871dcf0cf9585673a9f95a56d3b818c6eb7e2c8

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
fb2eac8a53c8624292fbde26a640dd10

SHA1
b697665c64fb222822d034c0206d5fc238b9fee3

SHA256
a40904ca48051f5ed2fce920c73a640cb44f6555a6434b0896336941e2690e15

SHA512
26a56b68ca3af7a0f2cc07eeb4a114c1b47bf53211cf332a2c75c4dbf28d2741e5be6f3e7e911f5af54d6efbb481fe579ea56fd644de0281754afb4a24b387e4

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
f79529f7943ab627602c7bee271e2971

SHA1
b9623ab34c66f76f39571718764c838c0ed67f76

SHA256
bc6cc345851a7294dc3476c54eeae7330761a296eb3862ff0f9ee1fbe2ef0be1

SHA512
6e3666460127ca1c9983665f967ef66610afac227b3f6107aa476ffe1ca2c510b21f4b58060318abbb85ea07cad87f42f36e2c856a00e6bf8c35177a51b44309

Download Submit
/data/data/vip.app.com/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
b1324e90a108c0467fe80565927404a8

SHA1
af7918f5a4629dfc9885ae8fb7730678502b723e

SHA256
fa462bb75761a59ac42f73f5e06a1bd9fc992d4a518e3a7d1f5c74ea6d000e50

SHA512
43f591359f201ddd1d371ef84a3f662946ecc322db0fa7ead90290591a25e6884fdb9ba5b36991d0627503fb4add5225dd6ec7ff8ce697363ea2814a32e287e3

Download Submit
/data/data/vip.app.com/files/PersistedInstallation8654978947193247332tmp

Filesize
90B

MD5
867a39537bb87e2a67bb940eae7daa84

SHA1
327ca0ac66a769102e17acc0e7d7cd207ca73558

SHA256
e8146ba90dc5c1c7995ce8287c4570016f88e0fd0cc1caa07469187182425a8e

SHA512
c8b1b43929648b1380300db86664921f925226be824b47386b6cf26024f00a81b2c55199e673c5d008804659b64b27f39f9f2609ee0f86dee68ef6eef4a3c566

Download Submit
/data/data/vip.app.com/files/starter.txt

Filesize
4B

MD5
b326b5062b2f0e69046810717534cb09

SHA1
5ffe533b830f08a0326348a9160afafc8ada44db

SHA256
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b

SHA512
9120cd5faef07a08e971ff024a3fcbea1e3a6b44142a6d82ca28c6c42e4f852595bcf53d81d776f10541045abdb7c37950629415d0dc66c8d86c64a5606d32de

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads