654e2cd54529f03d48dd196c65051db18af984e59f88c48a5f2bd8c538581bcc

Analysis

max time kernel
124s
max time network
149s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
16-05-2024 12:00

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

صیانت.apk
Size

2.8MB
MD5

beccc97980716f98f9edd058018bc90f
SHA1

a0f0da9b1306f2a1ce64246161467b2694190ec6
SHA256

654e2cd54529f03d48dd196c65051db18af984e59f88c48a5f2bd8c538581bcc
SHA512

461e298e37e57c075dd2dd43c3dda5f223c6b62d5a910215ed7701318e2db9940c79f0a5234297b3abc712eaa7ce35e9a034663de92edd1ec7bd64197ce226c5
SSDEEP

49152:4/QsZrOCIQVl2KGQx472EXF0/BgrUIwGoKUOPNUzgwcLAB3nxNd3JFaWY:m26lZS72EXF0/8VwxKjPWzMLAhxP3Haf

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.mycarroll.app

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.mycarroll.app

com.mycarroll.app
1⤵
- Acquires the wake lock
- Checks if the internet connection is available
PID:5132

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.mycarroll.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c978bb98fc1ed589c246b118964f6088

SHA1
f7962acdc0bf3f203abc2cb7c45f0493c6598f78

SHA256
3098176db2371db3576350af2eff5fd2118d1bf2dbde0906dc32d0c8fe155657

SHA512
24938282324e566dd3aa03cf8ef33c7abcf2b10ca45264ba537db234e0ce41640f8dfbec94ac279ae2f2d47688482648ac243a53219d0fb16ece20039f3f8fc8

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
773aa857ba0c2e765c3dd2428ddb63a1

SHA1
3f8340682ff6fd82ea355077b03613adc0d67f3b

SHA256
4a9ef5e7ed18777ddc066bc8e3edb7a64404121cbe9fcb09cc277d9682522abd

SHA512
5abbbb4b41c742c75dfad9eccdb9c921e302472f162f70906c2c17df495a90b4ba0e2b5bf0586d471d9926e51e4d22d9e376fb748b3f8a75884ac9a746d12e4f

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
569fc271a2be171cd7539038669d5b29

SHA1
c4970a1b5d1194f448b50cdbd3e305ea9de6e08a

SHA256
6959c289c41316d46fc5703d3978b599e7d402bfbaca212cbca44d494f7cf3cd

SHA512
f0b809c59249e6e6e2479e50f62fb524a7b0394e74f96fc15fe49d01cc0c9eaf94ddcaf831436eee1092cd278da29dd32801156bb068f68d7f72014a99e86b34

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
35f0d17c425fdf7b87a38ac2890c5017

SHA1
84ab8a8f536b9c1ce172b77a8fb769636bea96c7

SHA256
f2cad46ae3f1f6c14a34c4b3dfe01a0733acf7132e0d9cc886875d9d8fc2484b

SHA512
a34fcd7760b9da78e301014854828c7dd1e8ae0605642699c1184aaefb93593c9e5716c87da9384613cb87a17a248b5b1dd81e849aad8a06849a514d15ab156d

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
30abda9c0e68087adbdbbab3ce107c31

SHA1
9802bf54cf9e4920210eabbac85d10b1afb575cd

SHA256
2fa1924ffd04c22b8fee32cd5450f8ea78f042d7f952d248c930e106b55e84af

SHA512
05c12f2fc0025f7cef5ae62bde2f710bc029da273662c682f860c286c08eb73670de9a722bc0ad98b724c8fc8b31eba5d4994f987f628bae744094c0f5357a66

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e329e368fa91015054845b0b02d4909a

SHA1
d421c2d5a222c7fe9d328603f1fdea7ef6afd64a

SHA256
0fb940e28fb0ee45047c1216175db5d6c3f9bf13a486dede838151cdeea61620

SHA512
00fcb93bd8b6aa572b067519e4784ed6be438a32ae7e1708a704ea1b4ab3271da309360efefd0889c159e4b8f5b561822d198fa2301f51942331cfb4af4b136b

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
23bfb217ed97c66124be72ad99e51d4a

SHA1
a1c6a205422c44aace9402159c16315878db4ba8

SHA256
386164cf857e8a49c2bdbef67d944e3ada78edb9557aab4b33f23cc99586655c

SHA512
c531682d5273a532a81a806cfc0e9f02c721c372ca92ef795f6f90c453fbec688dd17b12cd9d7a29bd42f0373e2086ca6c548ffc167fd269826989c242cdb645

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
97281ccd419896a5fd1ef50c4cd3fc74

SHA1
df80f6d107b2ffb572c0b4d0669f1ea5ba6d790a

SHA256
f3fb3d70c592d692e74c8da985ebc96567b360d304ff889f943a5aeb02e19d74

SHA512
f7489fcb378ade686b14b62c333f8d32ebfa17576a1346a3fa515b1df6ce089ceef59c17ca8bc74aeda75d290fcc18c841ce7d674e18fb760b89bd165322210d

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
087a6af746b063b527cbc476e0e81b7a

SHA1
befbd25611fba4e3a119c9ebedd0b5ea205ed4f2

SHA256
817376d1cd66ee4da70a0a01e387d7b8457eddf1faf7bc50e1c7227e81dda25b

SHA512
c695124376f38d3ccf3a50ff2791cacd50a224fe3d43fba89a26ea50ebca5e6b7dc70d35d102bd2fa52d18c47d852580cd8fa3afa989861d239760ae4b4fe679

Download Submit
/data/data/com.mycarroll.app/files/PersistedInstallation4813326007647979822tmp

Filesize
569B

MD5
e1ffa0f4af904ccff3bac9d4af91affb

SHA1
7d6abe31bc74c2e874b0d5b88e12941c8bdb0532

SHA256
c26bb058f1f216e06bae4c0e37568d99866f372c01f119586a15ad7dcc7cdece

SHA512
3b9c75d0ab2d87b0454e99274c0aaae95bacfd6e12863633a60b78b839e317b8eef57bfb6273c03f6206e2b39ab98cd66969c48e97fac1079edc12b4a8f43e18

Download Submit
/data/data/com.mycarroll.app/files/PersistedInstallation7069563607827593762tmp

Filesize
90B

MD5
6caacc3fd3ca87f6d0bd216c19a48479

SHA1
bf5e45de90602992059f96a9f216806fbcdb6c36

SHA256
f89a28e1d4ba8e2bc5824932a222b0392b3574265309dd5bc84010b4de9755b4

SHA512
68667fff4022adbbe4af0a2ed60ba96d018b21d122e9a9dc432724a6b60ed28a3d71b7162bab0b50fcc89d37690000e429f15bc1cb7019d8b583e6c6aa5b14ac

Download Submit
/data/data/com.mycarroll.app/files/port.txt

Filesize
3B

MD5
4f030a02e1a1b7c16733403b65164e5b

SHA1
d463a841c6ddd212bedfb1e68c7639426e354f0f

SHA256
46fde00bfa275b287932e1a651e072c36a0a43c50d41f922f5ed72e9b3734441

SHA512
902d226fbdbad3178c7f9390c0762620cd31595e7f582b926a552edf5d3bdaf379ca4cc53f6263b5a8fc305a3dd2c805280ebb1d9ba79213d67b87d3c13e416b

Download Submit