8a3179b917f4d796b30be0422f1f7af3fc375e0464a633bc6b586e4fecfe27b8

Analysis

max time kernel
2494215s
max time network
151s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
20/12/2023, 06:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8a3179b917f4d796b30be0422f1f7af3fc375e0464a633bc6b586e4fecfe27b8.apk
Size

19.3MB
MD5

3bf9ad6b82f880ad5bfeb1e8b44f2b6d
SHA1

6057f7ffc87fce6900ac800bd07098c0236ffff4
SHA256

8a3179b917f4d796b30be0422f1f7af3fc375e0464a633bc6b586e4fecfe27b8
SHA512

c56acbbfea6ff9782a49117d44f529fca6adcf9f292beade32b4c86b0dea334846f873000573a95d98a404f04a70dc8f24ed3fcc876d850e8e1fc91dbab1c953
SSDEEP

393216:PxpHQ0xKG0R74ePwELM76JJ/er1ITBLqaV3lnW1Uke/ZBjaE+BJr6W9jehzD8qn9:PxJQQu74HEI76LeSZXUWkeR8Eir6W9jk

Score

8^/10

evasion

Malware Config

Signatures

Requests cell location 2 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.livetv.stream.hd.free
Framework service call	com.android.internal.telephony.ITelephony.getAllCellInfo	com.livetv.stream.hd.free

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.livetv.stream.hd.free

Legitimate hosting services abused for malware hosting/C2 1 TTPs

Web Service
T1102
Reads information about phone network operator.
Checks the presence of a debugger
evasion

com.livetv.stream.hd.free
1⤵
- Requests cell location
- Acquires the wake lock
PID:4247

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.livetv.stream.hd.free/databases/vungle

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.livetv.stream.hd.free/databases/vungle-journal

Filesize
512B

MD5
20d30a286555d0e5a7148eafd1d2de8c

SHA1
870233ce7d58323711c6ddd5b64cb0f5af85e89e

SHA256
9c232283f63b42a67b74a148a757f32d574b56cfebe6d1778ed3bb5096d5d813

SHA512
0d8923ca035c3b5819a22970528089f8f1c13e99833a8f8cf783611517727c813d3534c699b2835556147e655f7498055e0f29076381f81685496d8341611844

Download Submit
/data/data/com.livetv.stream.hd.free/databases/vungle-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.livetv.stream.hd.free/databases/vungle-wal

Filesize
16KB

MD5
25d3ce96d03c221de13466010d1c3fda

SHA1
0356fc921d33c4c824be90b2d7e5ea4792f12f3a

SHA256
3257d7829ae9d9c4790071b5a4a32f481dc5bfd2244e2bd2418a999bfc0fe9c7

SHA512
31817986234fb9ab4c7eb11edb9e7f6035fdec4db6efe05dd72c3341f42cf98baf7a718ea32139f686eb04136e80bb88ad3a492dff7b2da9ff636fc1ff3d786d

Download Submit
/data/data/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658650070221-0001-1097-6B05D253B687BeginSession.cls_temp

Filesize
79B

MD5
f5a0560faec371b881efd943c1133996

SHA1
f3787b9ba7560244de699e0e4109d05ddab61aca

SHA256
21a7a6490fe1d1a7fa1e34dcb717afe924e9892b5d7280b40f217fc6027c0e13

SHA512
1af065f75d57d2a0cf575018ee849a931f4ae251dbd886176d5620a6780311efa4477d89a9292d5dfa72982718e4e6a377e8cf1a4bb7690a4f3b5f8c357f34f5

Download Submit
/data/data/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658650070221-0001-1097-6B05D253B687SessionApp.cls_temp

Filesize
117B

MD5
1de59b16c532f7345121a56916285fe1

SHA1
4c5dc09b243caf0d99c0cdd8f0e056a5fd4b77f5

SHA256
ea5978bbbedb7bd8eb9bc3e6723b7ef067511b190e4ef3748f61f383818bb7ac

SHA512
43ee9c2506190e39c14c96738fe1c9bab1ad424ba301f174790e6388af03b3bae8ef273d0bffd842307d9e891c9b50d1e92aa540412efa50e56a53cb53d04752

Download Submit
/data/data/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658650070221-0001-1097-6B05D253B687SessionDevice.cls_temp

Filesize
131B

MD5
9031d338112ec0df7fb39e5128f9bbae

SHA1
4bbb187589acf8545f7c0a3a3c2fb00530a42e3f

SHA256
fd8da26f3e920672830b7dea8be3c1fb0e23820c7c8fc173dbbd3f2fba98e4ec

SHA512
fb63b5b93cb123a4a6d15d5bcc80f0aa63fd0a4662ae9711fec3f700c7da5c2be235b428b833e3e83835266d968b46e6b7807f8d62f05cad0c0df1e93883537b

Download Submit
/data/data/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/658650070221-0001-1097-6B05D253B687SessionOS.cls_temp

Filesize
14B

MD5
9b3d4522944ce6396563812bfdb92fa9

SHA1
6d2a6133c8f01938a48ccc77ef86ad8ca335c020

SHA256
d32805d685a3f50caa7f1c0bd7c8804c4d937a866513289f60e3184f7a591ed9

SHA512
091d87643712530bf9006135db42a5a50742bb5ca3026bcc5f2c1c17bf4fd984a8938d29263b0abde3d15cac196d2230902534e200b0b79485e3a1bd97d95727

Download Submit
/data/data/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
478B

MD5
24e4e084a00b9a4753f42ba97b2bcec1

SHA1
4ccc452ec2a098780edcf457cae03d96c6570e40

SHA256
fc038fc6ce1d08537dcd96d358bf95b2889e2785477e48e823615173ef4cb124

SHA512
70cc57ac379f4f0dbe4124d9210185dbff72edeb37c39b2ae3ba8e920e0b125bd38026e5dde0a86ccc4365da0f7f29660c8862c04d175a79eeed13ed9d0b4abb

Download Submit
/data/data/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
1KB

MD5
7365c07c603916eb6422a496c588952f

SHA1
0ec9dd2cc2730350c5a3d97d1f2f4ce434ab14c7

SHA256
80d32b20b1018dfb2ad0f182e099268b1abf1c95585a959293f434c09d7eacdf

SHA512
ba1789e7a40e36f9907a4565dd7837196ef9d65e13c0ea68dbd082de6c47b6c2eba31b533bab9d8392c954a07f7eff84a1255de9d52c78e233f49bda94bf6502

Download Submit
/data/data/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics_to_send/sa_4e384aed-00b4-4690-803e-7dff5250068f_1703301130709.tap

Filesize
380B

MD5
65b59dd025ce8f07e6b43e9bc2b70d69

SHA1
029701393f476b95ead8f1c6283cc74a6cc55355

SHA256
39310587ff20a9bfee7e7bbd2660ff3301b29a26cd190023e397d58c6a42a673

SHA512
204bf003b9e52e6de62bc9f10cc9937cfbda9abe04cc6e261374347f6fcb235261691289ced87fe8675da369c6d6550832af17549431353eae87ab81bf737d01

Download Submit
/data/data/com.livetv.stream.hd.free/files/StartappMetadata

Filesize
6KB

MD5
4b9f6e2fcf4ee7a0e71e1dcb062e53e3

SHA1
a9468680ab182f3609a68daab73ff49592a83f91

SHA256
6a36e25fefddda4406d8de8a1ad63e59473e8403a26de77142ca640e78f60c26

SHA512
0df43b6deb537c77a97478a9315d9818b45ede98de562960e739755e3ac60c172256ac76db546fcbdb5ee229a8402892c4c2d3de84e7cff6fad9a09c456fd992

Download Submit
/data/data/com.livetv.stream.hd.free/files/shared_prefs_sdk_ad_prefs

Filesize
161B

MD5
02f47c98a76dfa5cf85c60ea3d09888c

SHA1
99e1111b0ddfc21580d09217ef46379533fa5f18

SHA256
378734426b72b33eab2ccb9f5b6e5d3b7923110037415a425df599a9bb1d7a83

SHA512
d901c89cbd0f520d305a4d8289e91855d3a7c289e215b43bbacca4644e5d55b5af30a355b0c604b9a7998566d04d88817eeef2d8297b6b8fa2abc8b0345de6ad

Download Submit