Analysis
-
max time kernel
123s -
max time network
149s -
platform
android_x64 -
resource
android-x64-arm64-20240221-en -
resource tags
-
submitted
23-04-2024 22:02
General
-
Target
15e5439975308e17ec56ceeb2726dd5c17debde4433c094fabae29fd1660b12d.apk
-
Size
3.0MB
-
MD5
225785cd6b4dee46d8921b68e6947394
-
SHA1
303b37e927ac2973a1a247d60c65abd43a779e65
-
SHA256
15e5439975308e17ec56ceeb2726dd5c17debde4433c094fabae29fd1660b12d
-
SHA512
f5a129beffdf2131a5a1875b1497876e27bacde480137f7700c1eda98687ad335a55a357d58e6a510fd9be1150df8f8dcbbac8b3465e464d60138de20f573e9c
-
SSDEEP
12288:xTPNwNPNwNPNwNPNwNPNwNPNwNPNwNPNwNPNwNPNwNPNwNPNwNPNwNPNwNPNwNPJ:Kr
Malware Config
Signatures
-
Removes its main activity from the application launcher 1 TTPs 1 IoCs
-
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Tries to add a device administrator. 2 TTPs 1 IoCs
-
Acquires the wake lock 1 IoCs
Processes
-
test.app1⤵
- Removes its main activity from the application launcher
- Checks CPU information
- Checks memory information
- Obtains sensitive information copied to the device clipboard
- Tries to add a device administrator.
- Acquires the wake lock
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/user/0/test.app/databases/aFilesize
20KB
MD557baf3e42a94e8dd82e267b2f0619330
SHA176512dd29fbaf3cfd2efeae0ac2ab5108b81af19
SHA25649a98902c1ffb97354f0e8f0f9208b84dfabaa826635f6ade1fc782169a3ec7c
SHA512227f9d10a39fb0d8ae0a562e3b983fde44de62b3dbcd577172451e0e1f669e5721ba653c324af7c4d022032edd951cc417805a4eeafd5e84f28d378b9126a690
-
/data/user/0/test.app/databases/a-journalFilesize
512B
MD57850e125d415b105ee7ae90aea963564
SHA1de5afc5b279380dd3db13be05b1674c0109ccc0c
SHA256bd8623fdadfda1b905efa8ee46ed3e1e5476c5c6bc55f208057db66b5605b763
SHA512f1ea60be67530a1b204db3a193ef25747d1deed9d48344f7056420ec7734da1ab4d9eaa5a218310795163304ab0979d63a9aeec69cdaab513f622c7967b234fc
-
/data/user/0/test.app/databases/a-journalFilesize
8KB
MD52f38ab9487d52723b469d8dafb017406
SHA1686f30ed58fe998248f2eb785bb6c49d4d743d2f
SHA256e03588b61df21d3f450f78d2047ea1e67fc9d30dd7c365f5887642ac78d459b4
SHA51250bb29eef54dbb8196b4238d60a4e69755e524eff035f205a2028b4ec1dc0501cd6f352f0b04582ca09a7026092b5d100f543f0ad556f630c761131596c3759b
-
/data/user/0/test.app/databases/a-journalFilesize
8KB
MD5a4eaddc86516afd4a7df8a842a54ef63
SHA19cf97f677467c9e37a9ace6d74a2b6b77b40a6c8
SHA2567b4d6b9ae8be07b8195876bbee0459d8a84917d7ac598544e5ee854f1842cb9d
SHA5121685b69347487527ddbd5fb1d362e88f7141eaeef7287d9bb06af215ca980a186c8f83287c6ff18e5e115c6d90d694c1418e5996fdd204af069de61d7a2a0917
-
/data/user/0/test.app/databases/bFilesize
20KB
MD522038629789dfb4b6a59a09503d4e6d5
SHA14aed007e8af5bea689d209acdcace1315750633e
SHA25661b4315397ed9f7ce8cbf52f77ced4fb63c20a235339a3bb16f8a0196ab23e14
SHA512278979536df9ec9a089d9192adc4a60da0aeb1509c75840baebcb8e91f82ae61ab2de71c0276f34a652841befc2f09df9e47a47f3fef27ce2b7ea93135cd3c56
-
/data/user/0/test.app/databases/b-journalFilesize
512B
MD5c5f37c89bffe37e9e9bd98b9baab25bf
SHA1b6395e8fa3209b3e2daf521d8d91b80857ee0899
SHA256a9d6545363e7f842a35c7f7351bfd9c78bc355b187adadee7ea31be00b851dbb
SHA5122aee4f899f1b54ce46da424eab6f71adecdcd69bcc22cfd9ef11bbc77ec138e9a6398c4a494d8c0f7d134eb091b965366dfc068db088ed89b8a8157f5c84582e
-
/data/user/0/test.app/databases/b-journalFilesize
8KB
MD5520eaf2227b7c2c62c713830edbc2b6a
SHA1e5a27f9b723755111fc424ea1f1c87fc130d9659
SHA2567d6820afc3e30eaf26355b8602225aaeea9108d8aaa8a315d1505e06a8d146d8
SHA5123731ec31268967e4a7ec928331b7ed9c596ffb9adcbe25d389832d43352175101af5560254477445cbd0d54d36e97d33bfa712f282194861e8dc522f91d65182
-
/data/user/0/test.app/databases/b-journalFilesize
8KB
MD5ae44ed2900f19eebbdc737285b0867e2
SHA1d212423647b571c463d1de4dbe09fbb5dd8c675e
SHA2566237c4490459c4f6f75e965d63d1628fb58396d389f416d8e07541ff18f9fc78
SHA512b34f83df7af12520b7fcd32f39522ba39764f14599e17d20e8556e97fa87da782b40e704a600c5afe5ebb801902199fd52fbdfb6bd2abd3b1f729c00defd059b
-
/data/user/0/test.app/databases/eFilesize
20KB
MD5191705d047cf7a1d23febeb0b3c55469
SHA17ad3b5743d1e95f738c6fd176855574d25dbeb4c
SHA256fc837afa5df95bc863cb3502cd85ebfe298c1241e0f44244bb046d1fc0d01686
SHA512b687872bb8a07a2d6f45479db269db477e2357d1248669a829b4efd5891e1916bb4de55cb1529cdd7cb78c0f198e5b3f0f6fba4f4bf6c4d879448dcf2e121579
-
/data/user/0/test.app/databases/e-journalFilesize
512B
MD55b20e83427d1f511944a3a422bc1a701
SHA12cfe68041bcbb7255a5ab9cea7c8c05d6e0431dc
SHA25697f5b77ccc518f51063122643f72473fb41a5037bba3d9aedf2bd594085233a0
SHA512595cb970b96f51a9f79c226febdf780456933127b1bb27531fcdf4dd9e6f0da7bdc006cf9ddd28a905eff1164eeefd73be8332a92f33f8c528b78d5853e1be71
-
/data/user/0/test.app/databases/e-journalFilesize
8KB
MD56089029e67a09f6032e994d374007f5e
SHA1adcd43518b6897938ea21d96756591975192fc1f
SHA256482a9798aa4ca0a2afaf14e20906b0814b1bf3e6f0a43bb5bf943c63c7440b32
SHA51274141376261a698468669715896f2b27421945f61f4faa113dcb6fc32bbf5aab93903485fbea464918925358d0ac87e96f185b3ed1300d8d638857b641b033ee
-
/data/user/0/test.app/databases/e-journalFilesize
8KB
MD520a23fc271f0c48b2d3a71ae854134db
SHA12ccb013168de00ef5c2b045c4eaea41bd30a42fc
SHA25655149ec802087e176d1cc019ea5c7a7aac17a850e9de3aac6ec670b8c56e4246
SHA512d6b516e401f9a704cbab9c03f3291ca07f091bc393afcb3875cc763c32560a7ac5854e32f0c0d081ddc3a8f1e585862770a99acf7bdc9cb0848e2d88d448e4cd