52770b424a389e606b326221af03dbe770eac840d4f291f32df3deb6a4fc47db

Analysis

max time kernel
122s
max time network
132s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
23-04-2024 01:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

52770b424a389e606b326221af03dbe770eac840d4f291f32df3deb6a4fc47db.apk
Size

1.9MB
MD5

946f4da12572cc7370be6ed6778f3854
SHA1

7f6f21471c160eda9af5dbb796a99b410b9bbee6
SHA256

52770b424a389e606b326221af03dbe770eac840d4f291f32df3deb6a4fc47db
SHA512

df753a7f17fb40b51de7e568857e68819c717c905982a17ade6e7d21a8453942daf6fd793c908adea318ebbdbe294198eb4150274bac6427106fd60d8998c807
SSDEEP

49152:k/EZL9zHbY+B0TXud1WB79IKrPWI5RAeuTvKC03T1dy15ltJv:yOL9DbY++Y1k75PFAeavl81dCJ

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

Madsal_remote.com

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	Madsal_remote.com

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

Processes:

Madsal_remote.com

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	Madsal_remote.com

Madsal_remote.com
1⤵
- Acquires the wake lock
- Checks if the internet connection is available
PID:4231

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/Madsal_remote.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2628543390b1e02c09b8fbf0c38544ff

SHA1
76719f251c40ad33ce5b71b818ad5798a5731e7c

SHA256
1c73f7318d9f876d95471fff589da6210d5e65ce0e5e4f0ea26d09b0d25128c3

SHA512
31ba28dfbb2205562795116ac521bb30335a4189978f171113ba249e6ea7ccf14d87ea1856c3f249bba440c55204555230af1bc9b6459ae7640ecfa1466bf862

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b021e757e88093fc10209bb6a29ffc07

SHA1
8cec929abea17be2e07f5bf28dcc94ee35c44d38

SHA256
df7f6e4d27e0c7e967c5905093f94fe32a793c1b0967708fa42214307a73c83c

SHA512
6294479f4adcc28c0eb0ed5af9afd6a9f328fca0d687b4511acb38b1b256308132600d5168892089b2132c83695dfcbaffd3afaf5320adeff6caa3c016aeb689

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de847a2dda6af9414581db3a8ada2290

SHA1
acd53eee0224dd37646f2176727f6ae41ef6b32f

SHA256
c25d58dba3268f98a497d76ba2f825ff91cdde18efa1008d4ae2c74a1e8239d9

SHA512
004e796e65f11e3a9c234bca25acfa97f0819478975286a5fddc0242e95d29185285ec4996abd69c2518f5a81b9d5b877dbe578a0d2d9c3cadf85e8af4e30991

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
a442e4cee94217e2793387623365daff

SHA1
5bc2807146871a5654d96168d4f7f4bc4244a9cd

SHA256
72a2c0fef32fea22d817bcb0f13c3afbae75360b9850c16f0fbfb74be18f357b

SHA512
94ce299abb064fdf969eea1ea8a86ac66a6fbe5dda79cd10bfe0b1c17f32867d4b59c080d054bf21ac0359f99a771a24e9c7857c34c0386e9ecfe0f9d47f8375

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
ce32885d04fb1b309586557d26fea21d

SHA1
c42d2bba3aa12f0dccff0366550cd5d19c073a10

SHA256
e57e61e2fbf2bb92f9522684788fe38502307ae3eea2021b9edfbb1ee37f9097

SHA512
8a6fa8807d14813519f3a5775795342c7c1a47cc7b127e79260ce9c9f10a2b49dd8dc4ab4aee1e9d7a1e40109de3d6c0e1367d9c80af14419a4047c616fdae88

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
1ecf7d337c86a3826d0b957eb17d0dec

SHA1
82717815fa6b78f5bb9abaf334826ea4f0f6f1e5

SHA256
2970a215c7e9fc5bd5e3a16c09eb3a326e34cf15e82a639bfbce938502917d0d

SHA512
c6d1fb0ad1a7760250bf69ef7c78b194c1487d265701f2755e5549b9702e0a79551682fa71d3b5c496d4c4e14ed8b7fee54cf6433a9d445ce737804016706901

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
7994cf444bfa37d2995666f3d4b75d8a

SHA1
bd914d34b41477d56f8ff1e7a98d93d73b6e90b8

SHA256
45e42e097687c86c8dcb3d0495c0a7415cc36b34de56c0fcf24bab42fa509221

SHA512
7068d357bee42a460e719f9468f51ea59372cfcf99df341211016e7fc274d2847783bb9f25f1c641a25c7e93b7205823de4c83612ae2552be23704af6f789868

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
b4db57be69aded56807aed87f5b00d45

SHA1
6efb3bd455eb081ef16756b6ad0b3bb84dfe76d9

SHA256
d6f69ceab578d5591405be3ef4c5e2f23d6e0f537847a4f98878ff9b2f476fad

SHA512
046984dc1f63dfd19485c4100f73604440fe3381a44d84ed9a4ff8ebcbb29665c906f4899f9b3dd7c35f9f89837334f2fc6d3e69958481199cb6657877072af9

Download Submit
/data/data/Madsal_remote.com/files/PersistedInstallation5113554689100926935tmp

Filesize
565B

MD5
84a16bcb8c3dee6c501c160dd371c928

SHA1
6f46a5c68d96b668e0ece52153305fe63e779f5b

SHA256
7dc59d468d702ebb80023b14b24cb07f6ffc314f2662ab0d8f9a1dddcdf5e3de

SHA512
7203baac1e56e56517c93423fb5b9e7530be531c820fe70ccd9360b7df4d0d6275c295c8b58fcf8046140ed0d46937f4d8f1517ddca1fd33970dd28c46f62932

Download Submit
/data/data/Madsal_remote.com/files/PersistedInstallation885712363075109515tmp

Filesize
90B

MD5
c1310bd8b4e3ce3b396d6b2625b3b54e

SHA1
96d72ff34ce1a2810acf661d0998d067f87e8ef0

SHA256
3f43bc572547ba05258ed029d94d9309ec57331c9a21b62125d57c0041266d62

SHA512
f9b32a459dd08d5a688e7f5122a7939fb88216e063b0b9ee2235e5f90f9333474d5a4dbea52654f35afa2ac6da76825f541f2b06fb1c2d445fb87ca1e6cca791

Download Submit