Overview

overview

6

Static

static

6

Cisco-AnyConnect.apk

android-10-x64

1

Cisco-AnyConnect.apk

android-11-x64

1

Analysis

  • max time kernel
    47s
  • max time network
    67s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240221-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system
  • submitted
    27-02-2024 22:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Cisco-AnyConnect.apk

  • Size

    17.2MB

  • MD5

    994dee15fc26423fbe427b3beab77ebf

  • SHA1

    b7e542d56a798ec6961ffeb246d63eee7fa290da

  • SHA256

    02174ba3f9b26d3caa31cf2b73a761341630f5e5a4893fdd12e9fd0a8a8f4871

  • SHA512

    dab205931abf6fa9e5a8eb7fb860b27155a1d8eb3005b25d51a545909cfc869f9d8a6573f2cb15c46bee68198e36bf5d9e6e5c4548b873f86078f32cd4f7d8ee

  • SSDEEP

    393216:Z4dW6mUNil03Sl9kaZZ/75pLXwMAegTKZSvwzkSmGbI:Z4dW9kiUSl9xZFXBVZSYzkSmb

Score
1/10

Malware Config

Signatures

Processes

  • com.cisco.anyconnect.vpn.android.avf
    1⤵
      PID:4397
    • com.cisco.anyconnect.vpn.android.avf:nchs
      1⤵
        PID:4437
      • com.cisco.anyconnect.vpn.android.avf:avf_support
        1⤵
          PID:4648

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/anyconnect_native_component_pie.sign
          Filesize

          760KB

          MD5

          0ae7ba18138c1f12264942cf740500d2

          SHA1

          0ee00c24a085fde66e189c105d7341845cac6ef2

          SHA256

          20245cf65c8ef08501d672583d76dba03a0ebc021474b6f34bf95093ba54e366

          SHA512

          52c79aca48f1e3b7396c96c010559966e3d4fff6818f9019f867eb8ab1c5a0f6c991f7e4fd0fc345ef800480745581f6a45f6ff05f69ec6544b6c7b48879f6bb

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/anyconnect_native_component_pie.zip
          Filesize

          314KB

          MD5

          9d3f3ab0a714fde4ad9a4469a6ee2a92

          SHA1

          14c829b7a8354211d0af3529bade3713651c347d

          SHA256

          345a22966078d9771d327a608b459fde527c05063ace27dfcb1bdd33b5b42d03

          SHA512

          924bc4fda2edec5e120e6dcc7ccb7023fe2d0b6e22c2f5aace2ddd3117bba3b2f1ea9a216e3f81d9a1095065767b6003984b0d13ab909da473f5b7c48c18f4eb

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/com.cisco.anyconnect.vpn.android.avf/data/data.dat
          Filesize

          121B

          MD5

          a7caa515a1e58f8106fabdd85e664471

          SHA1

          634332b22bfe0b31213e4c95cf5ba50c25762031

          SHA256

          15fa8da0182489cdeb43c41df73d2abf01e37e008d9b1bb27f9d424c82bad844

          SHA512

          2155e92ecb46b12565bf76372a5bef75acabeec232d3b296c5b711c704abc8eb84457f6266d74aae4f8a46a3df068393768d9d5624d61591ac758f2cd783788d

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/com.cisco.anyconnect.vpn.android.avf/data/data.dat
          Filesize

          274B

          MD5

          8597f4aa93c3417af885f68b265a4ef3

          SHA1

          0f3556bb1e4d1aa0340e69984dd657a303900f35

          SHA256

          9e2cb58b922cf1e9859db86b85a4edfa0e7b68f9091f65eeb8a040c0b3ac658e

          SHA512

          f50b76e86e47b495a063a6d39fad92ac95ad492c152254af08273fb06c844b2dfbf9f006d805658a4177de5231e711c87b2969c4de6667bf59c9219c47ccf86a

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/com.cisco.anyconnect.vpn.android.avf/services.xml
          Filesize

          771B

          MD5

          0895bc5cf3fa9828bb4314c8ac66b5bf

          SHA1

          fcd4c9e6cfb12714045e9bc9b84d61a17f621b00

          SHA256

          13ace54c09c0d1c66dd1bddb4a1a8417ec27e43911b7ed6a95eab428939dd822

          SHA512

          c7dff17cc688e38dced3323ec4ace7d56a1bd7d5d9da00e2c5e2fa63e61e305a0ace1ff79862a98d14b767948e6eb9452adbc42044d25efe09e5cc0ba4fce77a

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/com.cisco.anyconnect.vpn.android.avf/vpnagentd.codesign
          Filesize

          314KB

          MD5

          ad82a2e38d45671ae74e29c71b813110

          SHA1

          4f9439bff342692886a34eb03b2cc93331a776d7

          SHA256

          b7902cd3a2bd2e5e1e95d8e225202de8f476b12c1e821d77e9943a5ee98a7487

          SHA512

          9d9d6353b9fd33d2b5a99824352a7b66b8ff8f3b402cd2a355979d33f1e8e965ccf0a006dbf3dfc98c4517fa7059cd5f24654d5323af9331b56145d8d48712b3

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/importer_temp/l10n/it-it/LC_MESSAGES/AnyConnect.mo
          Filesize

          268KB

          MD5

          adcc64bd138684979fdfa822f0233c12

          SHA1

          d3858bfbc6f4e286845cc3327d516551567fad0c

          SHA256

          2cd7e9ea2845a9c2f09e638ec2a1e5502e8c0061034f11cd4f26a4d150cb9113

          SHA512

          d81d1306d74823eac985148930c14bb342bd0838b80c9dc822fa53d351664ac88a04fbac157367790f3ed08807fda480bd08c42507bda286c0cd63fc57108f96

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/importer_temp/l10n/ja-jp/LC_MESSAGES/AnyConnect.mo
          Filesize

          100KB

          MD5

          706fff2b3e9710aff30df07c1a1fdebe

          SHA1

          cc6d33d048231f9acbf6ee72b5df008be857137d

          SHA256

          7394e581c6900670846362e6accc4455228d39f119c61821fb3b69de7c40e8bf

          SHA512

          38e4a93a68d7342d9e73c18d16bbda423221aa74d0ee5e6a37e7bb41b70ff077a21808df8ad3dbf7c77613a13d9fd93aa731c69aff03dde49cfd06a754face20

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/l10n.zip
          Filesize

          1.3MB

          MD5

          be9098c70bffd92cbf0f0800d6608e98

          SHA1

          b78a3980e89317150f7a5bcf8484fb4c2a736f85

          SHA256

          f535e867c6abf93d87eab2de925d3bca139ae0ef5b3bd884d752edc4bdf6a07d

          SHA512

          43e8eb2b45228981749b2b514a979ad0f8ade407c3c6cb1c79751f3b29c2b38c560774c317527d5638e92fa982b4666d412c9738fd3d29fda939795e5d2a0eba

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/l10n/fr-fr/LC_MESSAGES/AnyConnect.mo
          Filesize

          276KB

          MD5

          e482173935f3b0a3d07c27ef7a4dfde5

          SHA1

          c1b587dc42e0c319ae7a6cd16484bd6b6a2a6439

          SHA256

          17d66ac3020ce4e6bf68e311aeddfdcb20e1322f72c2e2ca221efdad6e0230a9

          SHA512

          bf60e307412ecf33eba5d7299abc81c57dbdfcea56b03c2c2b50f1eecf06b5f3ff4b46a36f9cad5a87284e4fac36f20acc89187f7ecf6db1f4138a4629ed65e5

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/l10n/hu-hu/LC_MESSAGES/AnyConnect.mo
          Filesize

          273KB

          MD5

          5e655b71897f0b96ff19a335435fef79

          SHA1

          7a77e90c1e9fa82242320761f145b4d2be14a8d6

          SHA256

          8c600b75ab01800454e698ad080d9b8fc61706a230a4ea47ed37daf10cfdc617

          SHA512

          232d911e26024a00f89469cb8c5b6368d0382db86a37eedc1d2f69656a0039195306f575ce386b1140e0bde64387d36de6cd5ceb7e77a000ba9a212d0d293c19

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/l10n/nl-nl/LC_MESSAGES/AnyConnect.mo
          Filesize

          264KB

          MD5

          6f3cf3fbe307c17ca7877235ec543a7f

          SHA1

          f482ab955e6ef39bf606edc4973298af6da65c0d

          SHA256

          7985df7eb5d5f3cb656baf16d421e16174c90f3ca6613a22a56246868b2db1a1

          SHA512

          7fec028b1d12843cc9ddad1a1e93ad9de54925b3380ad4ea31882eb69465949699421ef26fcabbac3c460c91c447a5fee731136151fd26324dce98d3671dd5b8

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/l10n/ru-ru/LC_MESSAGES/AnyConnect.mo
          Filesize

          349KB

          MD5

          993b24573be55f28aeed65076da1452d

          SHA1

          e2cc2cb1192f330eb3af158f86cb3969bd970d71

          SHA256

          b183e959917e1da2bea5c07f35619f145e4c4fbc33b7298e676a105e40821772

          SHA512

          a2cee74694da6d866f41e95fc2492fd7e5526f40b105b83f96f848c803c5c63e1edac280b0c442ea78831af9d923c167aaf2ae24f9480e2dc47750c58bdf7d67

          Download Submit

        • /data/user/0/com.cisco.anyconnect.vpn.android.avf/files/l10n/zh-hans/LC_MESSAGES/AnyConnect.mo
          Filesize

          237KB

          MD5

          71b3df50ec56f031493b7ae06f708f0d

          SHA1

          625f65d4bda9bb6226edfe16afc4de929d87cc15

          SHA256

          c3736e14bf6077c1256d74d6ff15d1e035b37614f19a20e5482adac773dfaddd

          SHA512

          b60b231ba3957f7b15c703bbfdd5bd92fa4c7fe6c1207d5ce78fdb91011f1735c11dbf799d9a2e127c30a7c03d42aaa50ed486af15a42c6fdb6165c8fb1bd214

          Download Submit