478b44e3615102769dbf4bbe727003be3113139b1554d3c9bd46d9ef60323eb6

Analysis

max time kernel
151s
max time network
162s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
09-02-2024 09:00

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

478b44e3615102769dbf4bbe727003be3113139b1554d3c9bd46d9ef60323eb6.apk
Size

10.7MB
MD5

33f6f371f32b69b59cb949e0077511ed
SHA1

0c72cb9102071a9de16ede7701e567f8c64d7c2b
SHA256

478b44e3615102769dbf4bbe727003be3113139b1554d3c9bd46d9ef60323eb6
SHA512

a92bfd80f1a4256ea2334a91e3fe35680dc83304a867c7319b963059ed6d525754cdbea8a73bb6a22df9cfcfaf47110c42959b77343742819a3daf0faae25880
SSDEEP

196608:zh+5cu64PQvuEa1VGq6kvBNsOf3wR8RlO+7gfZ+lBjBGYXUxhnOpfFDHOM:zCL7oxhqlwo3wMlOSW+lhkpheFDt

Score

8^/10

Malware Config

Signatures

Makes use of the framework's Accessibility service 2 IoCs

Retrieves information displayed on the phone screen using AccessibilityService.

Processes:

com.e_mining.cloud_miner.e_miner

description	ioc	process
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId	com.e_mining.cloud_miner.e_miner
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfosByViewId	com.e_mining.cloud_miner.e_miner

Acquires the wake lock 1 IoCs

Processes:

com.e_mining.cloud_miner.e_miner

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.e_mining.cloud_miner.e_miner

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.e_mining.cloud_miner.e_miner

com.e_mining.cloud_miner.e_miner
1⤵
- Makes use of the framework's Accessibility service
- Acquires the wake lock
PID:5104

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.e_mining.cloud_miner.e_miner/databases/OneSignal.db
Filesize
12KB

MD5
163b0e3f017becbc89b9d7f330b78f09

SHA1
1ef9cd8ac8655190468d0ccece0a4738634ab0f9

SHA256
cf01452c3b494692386f6c5faac340eb3eb894bd416391002d56645aa8a9ea36

SHA512
6a85a30d16fa58a4fbbb05d469778ee69ca79deaa74316ccb5be3ee07fdf78dde22e95db3edb1b88b18478e8747047445f85baaf9556b9a1e55d9a02a80baffd

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/OneSignal.db-journal
Filesize
512B

MD5
b084d0c9167ccaad523aa2d10a223ab8

SHA1
089536c407c74acab9aa26578f949fd24dea3d4b

SHA256
cda7541045bcf34b297c4f050b95c3033112aa0484dd5a081411b16179c1982f

SHA512
1d923789c4d72ae72d6c62309028684fdb6e433cd02352a4e9a992a581aaff3230c2f407b48312b839b573ee8c33e5620bdb93d23a115740cb94ebf66b05d66e

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/com.google.android.datatransport.events
Filesize
56KB

MD5
64fdf73171043487a3bf656f8b59f962

SHA1
a5d14af4a26374dbc6cee1b25cef4eb7882fbe66

SHA256
03b679e365f1978b682da2b714dbc0ea0202bb9323b6f46dcad8048edc80d5f2

SHA512
9c43e1c9132ca91c57751dbb6bd2ee51d7f79731ca6d18876cf0331de1b89aed9cac47d5f9242df1feffa9c8f20a90956d45753244a2610ab610e556f52624bd

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/com.google.android.datatransport.events-journal
Filesize
512B

MD5
050ae039c51b35c21dc8a73b2222cecf

SHA1
9e5d899702586abb49d392d10d958a6f6495e2ba

SHA256
e6a3e40d3d0a09fd83833e297dbb6e166ea9cbd91612bb0177f8038786fb6dfc

SHA512
5c3d832b617e3766a7a594cbbd015e13deb24055af19d75895cd6349e89e9375009e5f2f33cb1c3a141c6f8d718e8e1ac42c4c30aafad9fb16ae8ef198e77dc9

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/com.google.android.datatransport.events-journal
Filesize
8KB

MD5
57acf50c042ca2db369b8c4034e91de3

SHA1
c3acfa8011d655834dc45616e9972bb89d4d23c8

SHA256
71b02578540129aab401967ac2268a7ab0def25bd23343a9279de626a9fba2bc

SHA512
6a61a7f6822f48f2d750490c72dfcdcd690802ff39e1b3fa951ee6543ff9f1042a71e7febdee2f79d4b284efa9500ff6014bd54e64a1b682bfe8220d9f71e03a

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/com.google.android.datatransport.events-journal
Filesize
8KB

MD5
0de5d4c0e92dc7663d1337d36a2806af

SHA1
8657f785ade8fb7603efbd291753797e8ff61756

SHA256
8469cc801f8664e0ced6da6eb701b66bf595503f937cd15b821bd98a8b2384e7

SHA512
597ba55c5f2b00fa36d05fb7642f9e5bac34d68e09f5d774bd4c413c6fb833e59c7178959a235be3599f67b6d6e9442a4c626b281c6ccc14dcea4e416a59caaf

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db
Filesize
16KB

MD5
27c85a8ed2d14f930e90007ffe27bef8

SHA1
e3c4509d9247f1af9f792c86b3b6dd80ca78f2ca

SHA256
9ed0841edfa135d12ac50f341d056a3620b64c81570f57af1e3469156095e52e

SHA512
017c198a1e968c4b57142d021fe18e0ba80c3461cbff7044b511f60ffa8462a037a4c69ad1a7f68c8ab11f9ab56685d45242509dfc8613e5ac12a999ecc10ad7

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db
Filesize
16KB

MD5
afbf7314d16f40420d242fd037847f00

SHA1
f034afd2f4ec9c7dca352d76a9784b2a2ac0c865

SHA256
6060b1228c3a90692fc998c15a405024004f724138497789216922150e2ea847

SHA512
4ace282208e22638d55305408eed9e6706f6bcce45d016ef1c6e92baca065d2a4711f42a64a4348821a654ccd972356dcbc9a3c22be5a2a01bb4f6b91399810f

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db
Filesize
16KB

MD5
6dd7e834212e8e4b1269e0cfd8090378

SHA1
1001a77451bb650b8cd9121ac5641c73d921f517

SHA256
f747705c659072cb4e8061bf3e66752741b53ba3072ca10b39284797a08fd33e

SHA512
6f6ebcdf7eb19560a8555c5865ba38f6aee2d213ea25a5b1aa52b57df0241c68a71b88766393fd192cd577a42d768a49d8b5d96005d74972d550e23723ef4a34

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db
Filesize
16KB

MD5
e6a40082e80bcb470c374b2d126b5b99

SHA1
ee19b44412adcf9bca3ba8a21a6ee090e1d355a2

SHA256
faa4058d88b3528d9c4d1b1abe8996bd234591aa18a884570bbac369ebd1d928

SHA512
9baa6da2ebba25c3eaeff4f73852d1fe8d7a6f20cf0c34ff1a61f7350a91e7ac5f269e15ed5ac9e3331a5bcb59e38ee656839fb553899b3ef1287d1001153d3e

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db
Filesize
16KB

MD5
fab2bfa5e91b9dff59380a59649e6a50

SHA1
b6fcdfa00978655ceb157b544afc120c51e12299

SHA256
8378727841dd42c98f5b5a9c3f9a1407c5db1d94ac3fc98014aebcd349bb194c

SHA512
24e04020b0bad2e35b0110f72043858d92ea8d2a458f2c2052923377d778ea7a288ab5d5b6615b0f38349284f64bc8d68774d567e00e55e5f6b79c2ccfdc3e93

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db
Filesize
16KB

MD5
f955b75c6565409b9d642d3928f92580

SHA1
b3624f2c3806110bc044886097e866d6b24310c6

SHA256
bdf464e73660b7d80e9977049cc893065773eea32ef96dbacea7d30010e0e2c1

SHA512
008c84843d7491eb2273f3e7f521c4ec00e77a1685660677ee368326a5fd2aa793113087b385fd91e5e8cc73d36962eb4a734702a24a571e4963bd0583073963

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db-journal
Filesize
512B

MD5
acb72db87bcfb5a36e11ca8880b394f3

SHA1
63f9b0bfc7cc4c555bb4c0048cc278ca934533c7

SHA256
ef0e3a277f5504941b531f392b477a55ac73dde869eba49b78f339eb48163117

SHA512
897bf73eaa414502b5e24f3ab72c49125ad54bdd9c6db580e282f6bc3655ac6fdf7ad093d2df47dd77dd6e94b1ad659f43c3f9ebba2f37794bbdeb728e5c8615

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db-journal
Filesize
8KB

MD5
ff2102155b6990e84fb1ec6c0031929a

SHA1
e7aa6a325c013878c95be97fc403c4313a2627d3

SHA256
57dde3cd4e1b351052c63b85008f5745ec93e3ab30bfc9354a6a5e5668234dfc

SHA512
33b3714258e4a079fd3452fe2c319186c52bcb925fe279226149c50ad283ee248bdc9471537124e18632ff60edd94ce64aade571be612a2ee71e75b83fa351f4

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db-journal
Filesize
4KB

MD5
2597119b09e2b636bac4febe95d821a9

SHA1
9e4618746d398f6cb97b57d64d9c369a3bd1d0a0

SHA256
b0d03b86514fd06d72c6aef364be8ca9dbe59b3575854a574c477923975abc6c

SHA512
5477db73f52d64f9ebed8b35e57c9b753bdbb327188203e0a84b2193394ac0c3506619af63d66ccecc0a5eb920333b5b9a3371a7d6f5f2592ce6aa20a01d5344

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db-journal
Filesize
8KB

MD5
58ffd2aea1f4e42657eb95e683d144dc

SHA1
ad793bb19ae1c588e69f56154c4e0b207bdd007e

SHA256
49f156aad4526d18979b9c44f34e842c02ce9fc7acb9bdafc9aadb12d9bbd49c

SHA512
daaf50055ea05ef3dd1ab08e37d37cbe12cd36daa3d0170fd8d0533c152c202dcfcc7a1ab58f93be8cae56c35862633d5d640d8425b45b624d8dc7fab3fb7d55

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db-journal
Filesize
8KB

MD5
e25e75094cd5daaf111478ce04ab961c

SHA1
8a3587ef9df69738279611306cd671e42cab47cc

SHA256
4ef3793e2e131fb3e731391d09379305803eb2f1244e18de33249bd7b8bb07da

SHA512
0e68d32e8d71a5e554bb5d1a69b07e53cfde644cff4294e77ab821fff39211c735a95032f0a2ef171a4d6c1ccd2ed5b1b5594715907f2c655ef31c2756539d1f

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/databases/google_app_measurement_local.db-journal
Filesize
8KB

MD5
028c4e7fb4b29a0078616f0916cd5e56

SHA1
6c1cfdcb1127e7f225f9b8d156c1c34ace797925

SHA256
d1c2f9a702049367a1e7f17cab30e53d5772156a51ad1ae4f3722395521820b2

SHA512
b5b96255a91d59baf85d458b937fa69457d76270e70929fb510c869e791de69ed0cd1f552d4aca53062e1530ab3cfce80a9c383073215abfd1988f5406dc8e7a

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/files/PersistedInstallation30909794906494562tmp
Filesize
90B

MD5
b49733630765468fb7f7ae2a308663d6

SHA1
403715403292e25adfbf147a836f6a80b8f6bc34

SHA256
d3bccd763d57a9cd7f9c4a3fd61173f9712340f997b37851337a673ec29b7265

SHA512
e855e75dea1d42389099647f4a3b77b84085f0e2ce71bb2fb8f895e50d4b2bfdab35164d5e47be4e1d4057c90a0110477043eb077f01341794264f834da695a6

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/files/PersistedInstallation384221804173468507tmp
Filesize
569B

MD5
7c64f5c9481b094ec3c74a95566ab4dd

SHA1
88f77345eb1ad18a216298b60f1609ce078681a2

SHA256
bb2a19403d4314ba97eddd9fe65758ac372f65d469b9fd18f500c00ad647b844

SHA512
a620c2215871dceca7f00f00d658e3fdd9034e251273ee1fed94c33f690222fb5fcffb4852fde6e4c05d16a344a1e7233c3071c626af565198401779845b6724

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/files/PersistedInstallation5949831531589149101tmp
Filesize
90B

MD5
22a98e92d8afe428461577391b25bb91

SHA1
3f8689681d9306630d2480059585f843b643d4ec

SHA256
67521ef82652adda011de9f880cf0233205470f81c0f022b3b56eee8af691af6

SHA512
88499f09d1324d80b0e73b3a99c04d64c53af2794273b35606899bfc9845f70700e20a21690ea261fc57aa86851db2b70c477c40ad7d51531c48bdef43bba40b

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/files/PersistedInstallation6787220978004530970tmp
Filesize
569B

MD5
3324d4db5f3aaed06bb51d0bd67d203d

SHA1
0e1db2a018d3187e3e229ade06b96139f3ffb53d

SHA256
df0e9e98297799d8ae5ae2c5d7ae838988deae7ebf0e681c88ffcc1a0a199b0f

SHA512
f57c494d8ed423aedc5d266b69f5f514f504425d398eba07fc16eabcdb0c4a0ff0336b40f0735c07ff7fab40ef27f6e36a851bdfa5b9add0f608d130e3447062

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/no_backup/androidx.work.workdb
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/no_backup/androidx.work.workdb-journal
Filesize
512B

MD5
fde33b6c03c3db81ab1a5f1db5bd341d

SHA1
6b83a008442d201dde572750aaff1f2500183407

SHA256
3a1de8b330828cfb4999a9903e5fff2ac3deb2537afeded48497d25b1dcdd35d

SHA512
f09dcd1eddbbf696e5fbedf0adf34904f9c13562a36b417a8549c806e6194153f02a6f4107aa8651261cfafdc33a0520cebf3045525765ce9c6bf70678c3c5de

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/no_backup/androidx.work.workdb-wal
Filesize
12KB

MD5
5fe2c1e1697071bfa2120495d39a8e76

SHA1
c57a7459f8ea236e315b37cb43bc0ad7fa579b4a

SHA256
92dc3801d42b365e81b0e3a8245986b011514f6ff916b062d584d00c9429309c

SHA512
fd42fedf8b0f592230acbbbdc339ebf45dfbd4a3daa877234438da3b68020490a1aafec43b50947a1d625fe53bb550b1e12c66f834c92accd68a92c4f8214143

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/no_backup/androidx.work.workdb-wal
Filesize
108KB

MD5
622a33c0bec00c65bf83f03248468cc7

SHA1
d9f6d0abf56fbf5ab2d0214f64193cd1df1c15e0

SHA256
92d330ec6728d7c2f6dd2e139d73254584e4ab79d1f40b645724a62807d5d6fe

SHA512
a9ce730f431813c148f03351b554446ba50c0aecf2c2e15c83f05808b80d2e538098ed170bb32dc26e1f3b4f66d46bbeb8a61ffe115d76bcd9ac79a30faea3c2

Download Submit
/data/data/com.e_mining.cloud_miner.e_miner/no_backup/androidx.work.workdb-wal
Filesize
148KB

MD5
7c7d5ff6c78939c6a515805f7d7d28c9

SHA1
5d29921f829d73bd7682f1f31b54866066b6ea54

SHA256
fa0f43de57603ccfecd29a655b702433cf7ea55c749da7e47600a83918cf7246

SHA512
65a895edaa580d4d127b0edd0a9e1f1dc7c94cf0dbaa1847a3ef5f6bc596f080e75d6d0c0fbf533ee3c91c8aaec0aea1e9aace92d34edb08b107e207373e5e32

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2024-02-09.txt
Filesize
275B

MD5
23c553ac9fa5141a4ecd32f74735c195

SHA1
0d4d1f054f9b7de85865f89f82a6027f2d3e365d

SHA256
da5aec9fe325547dff2b91179731a080ecf57c269424055504a92a6948545718

SHA512
9dca000e931f3e190558e672315fac2d1bbd5828953ae95712c6825a923155a711d340623489ff9c9f525e86dd43003b97f1420ae13871955e0410e3572b370b

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2024-02-09.txt
Filesize
24B

MD5
08b32050b05f06ac2733d8f1ff322ef3

SHA1
e0341f07be5b3d7c7fc80c749f7a23ff0d6a5a57

SHA256
55f4a7871adc87d9c8861f2e111c9c77231f48323bb231e1967644881e3f152b

SHA512
f697fd94a260f8e223f70d902e3812f1046129ed6a79b011cb4fb1caa75a8743802cb92f911a2c706bdd4d56969141e9ca6235a6ac8e22768152004d6915db80

Download Submit
/storage/emulated/0/Config/sys/apps/log/log-2024-02-09.txt
Filesize
32B

MD5
3b7dc0da9197f4cf13a23e5430e3f6d6

SHA1
d5b4659ae5f44ede058ad3e5ff3c390fd9a5440a

SHA256
30d633a5ab44ee938247bd5f9f10c6718b9fcf76606fc2f5e07dc0a5db9a0506

SHA512
670728f2e1b5be1cfbfe81fac682dcf45227c3e8984af4a18b93b2835e38498424338550d336a52642a9c910e61df98316921780e5d493b105e1310d8b3857a0

Download Submit