52770b424a389e606b326221af03dbe770eac840d4f291f32df3deb6a4fc47db

Analysis

max time kernel
152s
max time network
148s
platform
android_x64
resource
android-x64-arm64-20240221-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system
submitted
23-04-2024 01:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

52770b424a389e606b326221af03dbe770eac840d4f291f32df3deb6a4fc47db.apk
Size

1.9MB
MD5

946f4da12572cc7370be6ed6778f3854
SHA1

7f6f21471c160eda9af5dbb796a99b410b9bbee6
SHA256

52770b424a389e606b326221af03dbe770eac840d4f291f32df3deb6a4fc47db
SHA512

df753a7f17fb40b51de7e568857e68819c717c905982a17ade6e7d21a8453942daf6fd793c908adea318ebbdbe294198eb4150274bac6427106fd60d8998c807
SSDEEP

49152:k/EZL9zHbY+B0TXud1WB79IKrPWI5RAeuTvKC03T1dy15ltJv:yOL9DbY++Y1k75PFAeavl81dCJ

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

Madsal_remote.com

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	Madsal_remote.com

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

Processes:

Madsal_remote.com

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	Madsal_remote.com

Madsal_remote.com
1⤵
- Acquires the wake lock
- Checks if the internet connection is available
PID:4374

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/Madsal_remote.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
07e4f7c84d1380abdbb7ec11fbc3c7e7

SHA1
a9e66b9e6c6b944a0e09eb1011d816f03d4ef16d

SHA256
70f953ae941adcf0736597bdc184447c95cfb7eec17b2b93dc627fde8a16192b

SHA512
5cb970bd7413f58d9488ff102f197a30f140a95c4b900c1b537be048a3ac5c967b3af63e4b9adc70c39ae473f04b45e0222b61ad85623146c6c2b16528e6c10d

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
32afd5195da8da130bbf1ae29ab01482

SHA1
325521b2d3eaeb1209e6f1e2de898eb0ed47a6f3

SHA256
0b2b4d2f3c5e977428d320ac56ef93de7ff54b5fc2f57560a58c619d0296ed85

SHA512
acc0822d71865c3dc9da2fcd0fa073147cddf40ad4c799aedaa85eddaa0e1ffcf7535e63a4e8ea0d82bb8e27d209c2140573ced586c466b85327acdea350607d

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3d2fdafa8fe4151c9f8c33139ef99905

SHA1
5c239acfe2659c9211be286515df16078c296ded

SHA256
a2fd8f2082877a744af3089ef3ee59da99a0bb76d8369c0d65403092f98e1a3b

SHA512
453d5045fd48bc9da500cf12537e3ef012f6195fbe18d75dd198de5ce87721dbc6a29156c1ba76163f6df89f7630c36f3f39a32d1ecb4aa66dfb0f5e630af209

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
b8ad6a9863807e334b25fe2f68d1dd51

SHA1
3026347f53c0a7e4b9c239607ce987023d65e5e2

SHA256
7741175d85650b8fe2104cf054204f96ec3be8e89e76ca360ebcca9e81289628

SHA512
7a7af6a84cc4b4f5df66f93ee91957e4ecabddc0414c75c3c38a96bca09f9a204ac7ca0f5b950f2d051a9344f07ecf2aa1753e3840a9edc2162af75d7ba135ad

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
839ebd24c6b98c60dec0dbf73eada0e8

SHA1
291fe2bab67a5755baa4b9b0f2df4c30673a03bd

SHA256
a478e147260ca610129f8e722112afc3cc5588fec512e9f9e687fe09a4866df2

SHA512
cdf24a69e785f25ea945708ffb1d6c9b3d11910a63a3e1d240ca7498c6867d480137cde7ce8da6a805f341330b34791cc0be0f03ea32c254f1c849cb21755dcb

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
2c98825ecae4dedd00dbcbc3387e2352

SHA1
39c737dc98e91f0c055cc52e752b886e4de213a5

SHA256
88b84a56ad218553a33bbf1e6c6966e84928a0d4dbcff201701cfde346bdec43

SHA512
e826c35f4912eca2ecf2060b310c0b5f4feee80ace7169a67ca3e9b8afd37074b3aee523fae9cf8aa3dde3058ab053968c657c3da646393d4a74e46ef3496566

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0d5089f5d0eac22e9a426ced7c50cc6f

SHA1
ac696a6b6eef55d3c3919e9d7b937cac84457b05

SHA256
3f133a61a470f021031f347d98a6cf07e2a7268c9ea01477a2c9f6f6ef338ed9

SHA512
a3be202b1bb6129ac191164f66af65c9b06254007c2e443a91baf377bdbc2ae5d64307ed7c44e0b25eb40bc5b2df83041be9af993fc1e6ff7027c6e413892fc6

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
e8fec71dd09836db969b20ca365addc8

SHA1
dc618b34eef7cf4e8c5a1df619bbf5768283a1b1

SHA256
1c941598cebefe30aa130cdca29fc0799fd26f127753661f548fd0ecb2bb3b5a

SHA512
22eadacc1a64ccc9d489d67a356d8b33c17c78e8a3b99ad573924674e87358d9a32ba965a9c169de61b0f365fd15fee5795d1cf85b47a200dedb291adac4ae9d

Download Submit
/data/data/Madsal_remote.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
06010282b71af2462e01a083c7986b43

SHA1
3c8e2f55ee99b123de9f7ffb62ee10546413b383

SHA256
97b7e7dee2a7a1eba9c972e9033e06d2f39fa6d0ac5444ae6c52fb259b6e4e0a

SHA512
3bfe598c6f6f76bad3cd554fe8bcbfe6597e6f58b7fec297b2cc4eb5678223d7c018d70dd10a02eba233e038ed747f6aa266615a9a7151a8bb596d833fc832c4

Download Submit
/data/data/Madsal_remote.com/files/PersistedInstallation5137487735242736570tmp

Filesize
90B

MD5
790915aecf14b3238f31edf34a57e571

SHA1
ba63ae7706ba1d5967559e56491abff6e97fa6cc

SHA256
8cdd17cbf2d98b04ab784c9a3d4d24e570f8c1d426f289e38d9e39d0b8765ef7

SHA512
b1c1a5c631e95d0e544b4c651149cee406170a4cb243a1117fc677ed2e5c20533cae6dea41b435541d4fbc973cae5c195551224b1cf3aeece8c446fbda492d06

Download Submit
/data/data/Madsal_remote.com/files/PersistedInstallation7662391735856084132tmp

Filesize
567B

MD5
047014c575815cbc1cfdec68a3514d8f

SHA1
bbeeac5baf795abd7bb11c5eedf150863e16e8a7

SHA256
bed5ac031b33255dc3117402e116bdd34c744385bead7988dc866deac571c61a

SHA512
35f1613ee000ef85aa0c019c4d995bd67f8fb2da6cff7322928b4bd341a8df9d9fbb2a046ae06cbd711113c831bd20de5d2336f2f56028f99a43edf4250c3ea2

Download Submit