8a3179b917f4d796b30be0422f1f7af3fc375e0464a633bc6b586e4fecfe27b8

Analysis

max time kernel
2374850s
max time network
159s
platform
android_x64
resource
android-33-x64-arm64-20231215-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20231215-enlocale:en-usos:android-13-x64system
submitted
20/12/2023, 06:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8a3179b917f4d796b30be0422f1f7af3fc375e0464a633bc6b586e4fecfe27b8.apk
Size

19.3MB
MD5

3bf9ad6b82f880ad5bfeb1e8b44f2b6d
SHA1

6057f7ffc87fce6900ac800bd07098c0236ffff4
SHA256

8a3179b917f4d796b30be0422f1f7af3fc375e0464a633bc6b586e4fecfe27b8
SHA512

c56acbbfea6ff9782a49117d44f529fca6adcf9f292beade32b4c86b0dea334846f873000573a95d98a404f04a70dc8f24ed3fcc876d850e8e1fc91dbab1c953
SSDEEP

393216:PxpHQ0xKG0R74ePwELM76JJ/er1ITBLqaV3lnW1Uke/ZBjaE+BJr6W9jehzD8qn9:PxJQQu74HEI76LeSZXUWkeR8Eir6W9jk

Score

8^/10

evasion

Malware Config

Signatures

Requests cell location 2 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.livetv.stream.hd.free
Framework service call	com.android.internal.telephony.ITelephony.getAllCellInfo	com.livetv.stream.hd.free

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.livetv.stream.hd.free

Legitimate hosting services abused for malware hosting/C2 1 TTPs

Web Service
T1102
Reads information about phone network operator.
Checks the presence of a debugger
evasion

com.livetv.stream.hd.free
1⤵
- Requests cell location
- Acquires the wake lock
PID:4273

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.livetv.stream.hd.free/databases/vungle

Filesize
12KB

MD5
edb655088d1ed9f33f9d0d499b7a3ef5

SHA1
565c4f4e43179dbfc285cd6331dc8ac75a901af8

SHA256
bb9e45aad35b43e895393e7a66e4ead6a5f728f90b7627e3c741d391bf65d4f9

SHA512
98cbf923880de82921c38973fbc6d711dc39884428d1eb4ead33658a5a7f163734e5121823d5b043ca44554d19c5b6f966674ac7291513944a94cec97d5be599

Download Submit
/data/user/0/com.livetv.stream.hd.free/databases/vungle-journal

Filesize
8KB

MD5
e3139ba9e42f6580c085743488520f0a

SHA1
22d44e434cf7011923f4e759b907d8e5093dcd04

SHA256
3347dd7b428a459d16a3b85d5b251f6f8d846388621bb0dd0c254bedf5fd7482

SHA512
8e62ffb6a7320248849866b345c384eff93460c867b12402d02f2bc073810985c4e62ade2354027262f9abf5b4773b881cc1603ffc9f0e930c4ecf80d833cb1e

Download Submit
/data/user/0/com.livetv.stream.hd.free/databases/vungle-journal

Filesize
512B

MD5
a86e815324f9e79b8a18fc91dc875984

SHA1
d494c07df8aaefad558b3b6c4e5350681eb1e7a7

SHA256
f0951002e51285ff399a195b6abe2134fbb9292f9933193889244ce9d61fc27d

SHA512
835394c9c3edb92cbb4aeebeda2fd699c551e779b0cfd8d204b37411f90d1de0cf0024ece8a10a00f992f905c464e52322ad6f0f1f89757d15d6f21adf41f128

Download Submit
/data/user/0/com.livetv.stream.hd.free/databases/vungle-journal

Filesize
8KB

MD5
8a679f1b8b0804cf6d4504b38df8c62e

SHA1
eb9020f2b1bfa6b4aabe23ea8694df61fd89e765

SHA256
e34d36382b41a22b80e99aa7a90d9463f0434a6faaa0e3d791b89dd237dbd1cc

SHA512
3f16b66378f8b67513c991f1af49f275fcfb0c626bd892d7490b90184f719ba5d5349feb82acedacf9eaf2d940ca8f563f65b72b57641e34121a05f675de44eb

Download Submit
/data/user/0/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/65847DB803D6-0001-10B1-54118A149573BeginSession.cls_temp

Filesize
79B

MD5
687e2c190cbdf8fb79ee07d01b2a9718

SHA1
2e9d14d9ed09f6ca0564172b54d9aa45b6ea3708

SHA256
a46b386a0e367de3823d2699dea0b102cecf130709586d6dbc80b7291926258b

SHA512
63275497495335b14c063ade8ef1101df9416d0ccd5418a162e03581ed28f9c35bc783d0bf2fdf1fca2962d05647643bb7f31a7b6fc29dad961a966ce797307c

Download Submit
/data/user/0/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/65847DB803D6-0001-10B1-54118A149573SessionApp.cls_temp

Filesize
117B

MD5
bafe65740b5c50c21e415b0b127cbeb4

SHA1
a2271879cfccb28deffa2e23cd8e61bb7e27bcca

SHA256
6054ec451ef55b105b9bfc54f7e9baf93a041d8ba65e63c8b231230221588657

SHA512
3179b92b7c0bf3466ca010a7fa392f62fa19dced2cd24ec2e83e5bae2e3c569db4cb165ec1fdade9383d7c8fbfb391e75296df39d84f5874bfc42b80b66a1d76

Download Submit
/data/user/0/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/65847DB803D6-0001-10B1-54118A149573SessionDevice.cls_temp

Filesize
131B

MD5
6a6c53344c69cf6c26fdb2e9cc4f44a2

SHA1
f0c4b6f6deb856406dc52097aad1a8e7999f181d

SHA256
e73080fe48e24585cad63a9cc538553f7812bd4ef0fb541df791f9653bef482b

SHA512
23777ba2efc51ef3a1c6c231f21e963bde525386f3116669f5c8e2d79106f26dacce6edc9aaeaa9a9e884e18e0e65467462e83761f782c2c5b408c9170c36793

Download Submit
/data/user/0/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/65847DB803D6-0001-10B1-54118A149573SessionOS.cls_temp

Filesize
15B

MD5
f8b3ebea29c91d82f009e5a9c6d11060

SHA1
99d88c4b39d9143084e777b93d9692a59a3d087d

SHA256
b7869422f5dcf3f24ae91560cec05ebb39852ed45baf3a31176f9b90de87aafe

SHA512
6f89bfe6bc1c0a68bca73ef92c53e1a308fd63f2228a25a6e34d117fc5cd253209eed56fe08f51d5643343a152acfdbfbb1c5dcea224e2750aed46074af369de

Download Submit
/data/user/0/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
480B

MD5
4423f3c6e0b04dde1cdc6018bf4e7de2

SHA1
0950f48444f94f1781f52b34ce2acc030cde8208

SHA256
d4deaada4b79d9e7a63650106d042196cfe68675a7098141a65c9deb0b1de34e

SHA512
9b07ebffa6b0485a0e7b4cd2c9bcb4a763f082862ab84bb82b1fb842ca550f25d3dd0d182844055c2fa5e0c51b41141c6a7c78cd6c4f39335a1ed6633a3e1b1c

Download Submit
/data/user/0/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap

Filesize
1KB

MD5
2930f0f2835419f482a12c1a870f6c4e

SHA1
fb39a7f123433884a3c305a397ff6b54f4536ed4

SHA256
7782d08f0f663bc934103a6a992f5630e5b3a0a4cc1dbde58edfc7ff69250863

SHA512
a79d18904a9210f618b8b2a168f6f73110b09f16e6b7f21ef437b6931b285f0006a4b1312600d19b71734246537f64268874807e95b1e36c479aaf14e7fbcd38

Download Submit
/data/user/0/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/user/0/com.livetv.stream.hd.free/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics_to_send/sa_79b3fdfc-7239-4a87-a050-778066b548ad_1703181762284.tap

Filesize
377B

MD5
bc543b7f090ecf043e6b097cfd194e9f

SHA1
c7427cdea2e71437c522486357642d767afb993a

SHA256
6805e3e0b1e0a2833cc6773cde2656226eeae75065b95b46dfac823b8b9de6f5

SHA512
ec670639316fa5c39d20dbfd689c4e0717c847a209cdb9d9a57d77caa1c0183f8a59f409487bb82b474b42b24d4ea3dd300e6fde88725fbfd9ae0936fcfcdc2f

Download Submit
/data/user/0/com.livetv.stream.hd.free/files/shared_prefs_sdk_ad_prefs

Filesize
161B

MD5
02f47c98a76dfa5cf85c60ea3d09888c

SHA1
99e1111b0ddfc21580d09217ef46379533fa5f18

SHA256
378734426b72b33eab2ccb9f5b6e5d3b7923110037415a425df599a9bb1d7a83

SHA512
d901c89cbd0f520d305a4d8289e91855d3a7c289e215b43bbacca4644e5d55b5af30a355b0c604b9a7998566d04d88817eeef2d8297b6b8fa2abc8b0345de6ad

Download Submit