7e4143dd27644a0aedc66130c2a0a56e7aa556e75135f2c6a40c1106228e3fad

Analysis

max time kernel
144s
max time network
156s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
29-04-2024 01:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7e4143dd27644a0aedc66130c2a0a56e7aa556e75135f2c6a40c1106228e3fad.apk
Size

1.9MB
MD5

1f5c2daab9da9349c61abe950c661aba
SHA1

6da1a8574e1cd927a139c7be328b867c243070d5
SHA256

7e4143dd27644a0aedc66130c2a0a56e7aa556e75135f2c6a40c1106228e3fad
SHA512

cea9bc240975e13c373125dfe83ea6aed144f11e7935282669a74843b464d8fc2def552c07e48286a69b2350182ba644fbe994cec546fc52dd857c5bfabadb6c
SSDEEP

49152:9//SRcduCkmkYwPxtlOHiPJ+PSD/yS+0VTWtHubvw8wiOZSmKIM7:VKR8uCbkX5ss0PSD6ECtObvXwiO4N7

Score

7^/10

discovery persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	kisi.com

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	kisi.com

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	kisi.com

kisi.com
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Acquires the wake lock
- Checks if the internet connection is available
PID:5050

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/kisi.com/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
17cfc09e1c9593b6f782b5e7104d9b91

SHA1
58c92b9b63fa395998ec3a739a5bdc5cbb278f72

SHA256
095cc102222d6baeee46b5c4791d20adb781652ca59212b8a41ccdc97eb78802

SHA512
f0651d295c1e5ac6e0ad93fdfe7a875e05d93204bf86dd14da2609c6c68200cc9f4fa7e0dd33b7e7ec88b23e91f474bd80c5757732285929551d438205528ed2

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4239fe29e2c23c422c66c7c2f217cb52

SHA1
ca96950338b293313d52ebc77964dc92790230d0

SHA256
c8185efd5e3f5d6b75e71d7ff703df24f4f72d287a6cf187ed93dfcd1cbf3aac

SHA512
f92c4330fa4b14e4a210c267303dbca58d0c2ea2977bfb93439cee875700ec296d6ce8447a73dda4fe23baf5deaff5f5bcf130631a5b43e566a3f9825710c535

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
86ed46ea23642b57aef6a0cdc4cbadc7

SHA1
dcece7ddbc069bdb94a26c8fba0f459aa832fea4

SHA256
447090a0a40a13a6e2c46b9ca29f0c6981625d892300682393fa917f3c024636

SHA512
b4b15e5102fed875e997b471b020c3936d093b21dd84d3f19bb0d7431c3c339d9477da32ff90d614dc4ed9161675a4fef3b776e44379d327eab4f6e1daa06f51

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
94805238872a16fe33d3143f7ed8bfff

SHA1
23bd04cd9a15b91cc8c07dbff056b67fbc9b7ad3

SHA256
30d780776b91b43039372932d970493393980fa2305ba715aa1670187d9b9d15

SHA512
a62937e45d199a34d6ee7ac3064183dedefba67bb827124aa8df1ed40fb8cebd1071bf742b2ea8fca0876c9128b26e42d0fd5d4b6c29404978c88a99a76d7d70

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
adf6082723784327d7d1b34adf974e7d

SHA1
b1502f70eb881a1dfe41139cb719fefb877ee37c

SHA256
252defb835b04f4af7c59bde7bd119664e901928f1373171a287897e729cb2a9

SHA512
762f146c452e590e0e3015a080e9821b5488551b9cca7a212ceb11a853ddf6b1894c99d09ba20e6691f5078aaa8e17a6ed66dbbe541eaee152978fab6884e27b

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
2f645e2f9739f2607623b328925671d6

SHA1
3f903c7339157ebe0a5684ebbb08978555706c17

SHA256
13ba3a46737c93f74e1febc967750a962df6021aa8ff1ef479268cbfed2d18bf

SHA512
0af9a995a2b5deeb838d742afffa361d42e9930c475084869cfaef443aeac4e222f6a4833d579ad90fc8c066f9ddc17b0add565ebbca6c8b6c00cfdc3013e0b9

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e1d98008b752110576bcae369da3a168

SHA1
5bd776a9cfb20130273666eccc9e81c2a7a5cc35

SHA256
1468da325931113f55e2347cff7d72e9aeb774ca61cef99da9f7d19e9e728f9e

SHA512
f4ed47d37e8c069b0f3e0480aca59b5aee500241815674ca2f2d5d0318f9fdbb89f6ad9498b7064338d181f1c7d0586c5e3020bba7198fdada7b3bf1beb140d1

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
e43c2dce36dcc3e05c386b46876d7872

SHA1
1db83b929d6e78f6ad6d8820436301590a97921b

SHA256
fae2a9109dcde58e0e312ee4ff157d3285e6a25a010a3eb582c0ab97671d1b61

SHA512
b0a3bafbad238a6a8fc7911cbd2a26283b38611e9c8c7ab46e83be25d9155968fca82f2a533d3cdd0bd52764582a8907829bde4b1e144f52ba502a62b0d84b97

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
874e0e9fcb4f72392817e0ab26486e55

SHA1
e65e63f48a6d3a4ac49a76a2052b22f659253b22

SHA256
b30f109b27f636446b53de91951fd7c1ca1dcaf2c15c3dff482e0e870f3f7aa9

SHA512
c32fb203bc689e11cd439d612312c5aa19282b4c2fce1d025bb088c31b5520e36058ca1d83c782f2dccab7922de9466132cfa4b7b234d3cfa7cb6c3693c29bba

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
81222b9b147d39fe00c89475fe68dac1

SHA1
1a2ec2923f2e9a7c163fabbbd8eb99644e36bb4b

SHA256
a0e4d807a264a7893ab92aecc07fa20aa8d4c2e8a75d8ac8ab34ab1005428454

SHA512
2a1b4d69d88172c06eec944be912787e7a9fbc6a7f64538719aee95b374f7c28c78442d191b08d57f4c9a8ad2469a6a3775dbe0038600882cc6a48b6e1c99d81

Download Submit
/data/data/kisi.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
8b7ef1d3165a1b623e952a53916e20aa

SHA1
cfb82a918a602e0981e8e09892aeb8ab972572f4

SHA256
7bddea9a38afb953537ad9f21c737ead3df00694cd3c1a85585ba21c40fba93d

SHA512
4cd5cb2422984b7a7aa71bd46a21b2e009e66eed929c8a0ca471a6f0ae2c46a0fd6018596a6fad7b012bdc8a1c4b624dbdf7c8eaa099ea4a809c6b5a10278d6c

Download Submit
/data/data/kisi.com/files/PersistedInstallation2491767954658984007tmp

Filesize
572B

MD5
2a461b45fdf93b861feb6fa2423d519a

SHA1
d6209b7d00deb2d5baff440a33beae41edc1652d

SHA256
a43876f751d87f5592f15cbe2ba82939c9f0aeb29ff8ae10c2028dc11b33ba50

SHA512
35f8de2e62add108444c65c3e358fb45a39e3b55efc1ed5678f6a1f7af3f68cf81a0fffb3845b824baebab9c6930c7d0a34b33b8a39b70a546889611c13f61d1

Download Submit
/data/data/kisi.com/files/PersistedInstallation4212872128401213383tmp

Filesize
90B

MD5
55671ddc75b2ed7586cf902a174dddd1

SHA1
98f24ede0b86828196be5698cdcc712eddf5bb41

SHA256
f69479de27177b2e728d7bcaf771887183e36f6067404cc78d5f7d053b687481

SHA512
369f9ffc1501a5e09ca14d6d2d4db8a4f3ae3c0bf91cae7c49fed8acf2f7d857f5244961fb3c847788ff38c537eae68f88cecbcd93f7e68363d19e8aa8bc5e98

Download Submit