c907a1ec336853be4dc53fa3d3a73b24d983e098257cbb3d80bd380b6325ca8c

Analysis

max time kernel
3s
max time network
58s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
25-03-2024 13:06

Target

app.apk
Size

2.0MB
MD5

58dc1fe57bc9132feeeb681a028ef9a9
SHA1

23b5abe4a4c4bad259723e782ded29873ff0a3de
SHA256

c907a1ec336853be4dc53fa3d3a73b24d983e098257cbb3d80bd380b6325ca8c
SHA512

53ecba2fc42623544517f22f414529b9f42364686d03756988243c32f117758575059c757f81c2103e5bcf7716d7b2b828a373fcc9c81f2b40cfa70c4806d445
SSDEEP

49152:9sKkkpeXXPn3v+VpQ2HcjISMgIhkHJYnxgF2WU2VP3tMz:fkkIXvf+VpQ2H7hg1i+pDP3Kz

Score

6^/10

discovery

Acquires the wake lock 1 IoCs

Processes:

com.lyufo.play

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.lyufo.play

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

/data/data/com.lyufo.play/files/PersistedInstallation1400633331409016863tmp

Filesize
90B

MD5
ac22afe2753bc400a86b47ba77a09e7e

SHA1
c0ee7287251960de4e6945f063074966f72ae372

SHA256
c0c8233928d507ba0d944c5c6f5668c21830d22e5515a8040a6fb8e083b7f1a5

SHA512
b327ad0bd399e27fd30c57d6d7a1a7de92d7359001922295acce38ef7c7e8ccaf85f0dee7924c02f61bb0620b33acba4d462d6bcd72c87eeba0fd5b098d3faa9

Download Submit