4d2d6cd18163f7625382fb07a7e692ae8c80ef3f88bdbcd2526da82aeb02dd49

Analysis

max time kernel
6s
max time network
130s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
02-04-2024 10:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f797821068cf7951ac6177183fb3fd9db19a4b75efff1a915c7b67ed0a0e80ec.apk
Size

1.9MB
MD5

207b35953d60b5e637761a1daecb4081
SHA1

897bd5c21120212be00eb4a042954b0dc8e664bb
SHA256

f797821068cf7951ac6177183fb3fd9db19a4b75efff1a915c7b67ed0a0e80ec
SHA512

7c1ae768fcb8b9fb5cce6ab79f4e1bb4b63f35b2406fe42742c2f598270155bab4ced0bc1f799c2db10eaed4b59aef5a54e7cfd42d94033e28e99e7d8452de6f
SSDEEP

49152:v/80ZbtD3B4ufyGpQMsXTDd4Xxv6c1k1tw9cb8mLV:nDtDx4iyhMsF+xv6cC1tw9a8mJ

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

Mad1sal.com

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	Mad1sal.com

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Mad1sal.com
1⤵
- Acquires the wake lock
PID:4474
- ping -c 2 -W 10 -v google.com
  2⤵
  PID:4521

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/Mad1sal.com/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/Mad1sal.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
5592f62f6cb9245b3a52cec33c1a8fa5

SHA1
32667a72cf95a34348d43a9a90c18032dead0dbd

SHA256
3f4767dc6ae8ec703df07e32b88861b4134dae6eab2840be685f25799747d68f

SHA512
84ea2443fa71a60ea55a487e8afaeaa5d2122e5e1e0796d5cd86ca11d1c50526eaa5e23523d0af99d5161da4c91dc2b549a4abeb7e920879401d853bfc50de73

Download Submit
/data/data/Mad1sal.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
18eca4ac3cdfc7e3294581c43a63109e

SHA1
46464a5ce28091bfd8442d75c56f2bd06dc9323a

SHA256
a7b91bdb492177b7cb428ba872372b107ad10b3e1e51ab1d1e912d464cc47f80

SHA512
4be7bf69510a7a4f86e4ba75102784d81d9d906050260cc22fcf56991de333b855372dee6be03fd88d375349a80665ddb29fdca04482e540a9ce105756315aef

Download Submit
/data/data/Mad1sal.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7e469b60a470719961883aad46fc6916

SHA1
74322f8898eeb403e1aad084012043fa15bb3010

SHA256
b4b46d044605bf1577a9f1e6de16521a512a2d1cb2e32000e0d66c297202f6ac

SHA512
d92b841a7fb64eb9060b3f32302f35eac0eeae88968c16d35c9333db0641a4e004a8aa7ee245071f5d40a9e99d9341c383a0a85978a7be6bf24971dae4a11aa9

Download Submit
/data/data/Mad1sal.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/Mad1sal.com/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
f17f6083f80da0352786281c3b336211

SHA1
d19454a2b9a50281d4dda25fee8518590bb31a76

SHA256
b09ca616c2eb33661309a7a564a3b31530779a091b7dda67328579d13f3ef240

SHA512
8a4bac5e9197b89762eb05695548f07f699ff313f1c83580d97d6d5ddbaa28a787da1305dc63f8b0e9fd0a71cd458c6b78013d035dedeedef0a47339dbaaad50

Download Submit
/data/data/Mad1sal.com/databases/google_app_measurement_local.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/Mad1sal.com/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
3f2d17824ddfbbfe29fe119517997da6

SHA1
58e31d827413a7da2b740cd778036311b4b53673

SHA256
f60ca5a32584e4589fe5625447dae56a15170edf1e0f626a94588d41422cbb1b

SHA512
f92c64233c6ad24364c14bca699059d340663282e5f69012e28f9df52f3fcd6cd4efd04ccba02b9eec7d505adf17277ee2afed0bcb1e3b11c545f505ebe8891d

Download Submit
/data/data/Mad1sal.com/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
d17083f6deeecff25ba72cd5b12a7601

SHA1
d8b8fa4e65c9a5dc92845d386fd73e5c0204e109

SHA256
5752ede3d2ad9c61c7a8f13e58840e1b0d8f50fac7bb297c09d9c9ef518226fa

SHA512
f2e31119e71bf251ad4be7a13af297e080296c22ce03a180d00008f0b5207e74b5e2669681de914cafdf6eb8c5b50637ae8f04133c51137c17a75f6f90fcfefc

Download Submit
/data/data/Mad1sal.com/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
3de7b2f8a7cb05615c1222e9fde530c2

SHA1
7701a5012bd33a0270d40303e96a17738d110fb3

SHA256
27b96f8d932d132267af6355063ae02ca530954be63f093f7b6cac1b4e352beb

SHA512
27d32a23055c9aea3c3df1669936f07bf5c61ee110f6b05cfc2599b6b53a3a00d88a9e3276d2e7abf8ccce96baf356e3f21ab8638503e17ce3061abf9da4879d

Download Submit
/data/data/Mad1sal.com/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
7568222f1324d37b462a51d7a25da0c7

SHA1
19e676a3d169237ddb9ba0458628bf12328fd5a3

SHA256
c206e110180361623d4f5d88d5931df516a8ba8c306d330014c5f40526332b6c

SHA512
2bddf95ff5e7ea844b597ee1d8350dac8b562f4bad3e4552bd5d000357be7f7dcf938858635836c6867c3a51ce12664b3d780e4ce84b38c970791a75c6667750

Download Submit
/data/data/Mad1sal.com/files/PersistedInstallation4650744189928391747tmp

Filesize
90B

MD5
acb0f594dd1621e29aab3021bddf43c0

SHA1
06db04e782cccf2e6a93140ca8244b068e578a68

SHA256
a115319db15cce22cd33415ef5e2da0050d79e724e8cb68a9e1f2041dbd2b0ca

SHA512
66b1c848c852b17ee0affd24a5f83212919bb82a5efe53d093aa85760a3cc58c3aeaa7c868ff1eaf53dc7524886675d3f7752d75ce717839dab71b27c0cbbb91

Download Submit
/data/data/Mad1sal.com/files/PersistedInstallation656916738026490800tmp

Filesize
569B

MD5
88af7863bb85b6947e243f9656ff41eb

SHA1
03abc8017bf7a6ec6e7c1c45e4168a93786bcb4f

SHA256
978312b3020c4103c767b003d904eae6c6c9eba664cb5f4fb9f64584639c536c

SHA512
6b91e21d6c7fab98c3c59cd28ef48f6964d55d50d911968fa12290751b8cbd196cf552941b17320226f1f8c8c6517aaaa3ea0951b7783a72a9dee5dbd38ba8b5

Download Submit