654e2cd54529f03d48dd196c65051db18af984e59f88c48a5f2bd8c538581bcc

Analysis

max time kernel
4s
max time network
170s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
17-05-2024 01:32

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

654e2cd54529f03d48dd196c65051db18af984e59f88c48a5f2bd8c538581bcc.apk
Size

2.8MB
MD5

beccc97980716f98f9edd058018bc90f
SHA1

a0f0da9b1306f2a1ce64246161467b2694190ec6
SHA256

654e2cd54529f03d48dd196c65051db18af984e59f88c48a5f2bd8c538581bcc
SHA512

461e298e37e57c075dd2dd43c3dda5f223c6b62d5a910215ed7701318e2db9940c79f0a5234297b3abc712eaa7ce35e9a034663de92edd1ec7bd64197ce226c5
SSDEEP

49152:4/QsZrOCIQVl2KGQx472EXF0/BgrUIwGoKUOPNUzgwcLAB3nxNd3JFaWY:m26lZS72EXF0/8VwxKjPWzMLAhxP3Haf

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.mycarroll.app

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.mycarroll.app

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

Processes:

com.mycarroll.app

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.mycarroll.app

com.mycarroll.app
1⤵
- Acquires the wake lock
- Checks if the internet connection is available
PID:5117

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.mycarroll.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
188c0542bc062e48b614e5ca8c1081af

SHA1
0eb9b89a5c92957cd1fe748cc063b32853339774

SHA256
c1ccc325c2699ed7f556cf171566317f706a911c4d02b1644a2a7908b93da58b

SHA512
62a67f2c56bc3b40d49c80094f160d355a8f67130e1924109426e0481008bc2cd11a9e2675a901abd03cad1e7fe0028031e20d826437edcf35b6f86e2499c2b4

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
e46941ce317efa0be5a3dba7c16e2e57

SHA1
efc94aafebea08c82e7c9e73b2dcb979a77725de

SHA256
25e4c341d90b36e8661354a45abbf8a0a411e38b91211e5b7bf816e5fd96a37d

SHA512
ea46e4cd08e58878a98b94630dbcca625ce4952b653e05d56c5972e5c202cd252fbef5510e4ceb347481d905c26037dc012e57245bd0e4dd93f2ae18aad6557e

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ca82794f336b86c5246f1c2466a8018e

SHA1
d179c45027f6a8c06e463b9ae298a683decf2780

SHA256
00cbd31c1bf9cd0a42b803b8d36835ee81688bc9ae7a4785c7164d6850e0583a

SHA512
647d8bdc00bae8258e88af6646214c21649450001d89bc71de5c443f8d570132ff0078f5ce48317b23b90b0da9416a502a3af9ebe527549498e9d564c2f6084e

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
549f5fe37ef6f4139b5c14aa8b4d5ca7

SHA1
8ecb0827498b1ac78df7aa44da50978ab486030e

SHA256
8ccfe02e76e5b9a387e43b2ff41097162e0d3d5556a6a2deaa13a331bd3cbacd

SHA512
fa49bc21b2ecf63d0574b3e27bb7bd0b02fdba786e2ea2ab6e74c033497e50803bd94f5988b664d0f99068f3f9ec62d7092a335e22bbd5fadb71d1735759508d

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
655d17d06bcd50dd05d147db90cc6857

SHA1
f8cdfc38c4bb0336dbabbd6ae19687624aec0ac3

SHA256
d65a8367e72bc43551331dd731a29a65828471036ae7b20c01c3b56b49bcabc9

SHA512
33b71ea94d95573b87bf1b53e961d5fee2ddc0556abcd4c7f039c66502d6896ea6e82ef123c4e5b413c060d74aebbcea9c4cb08aecdca189383fe1afd013a745

Download Submit
/data/data/com.mycarroll.app/files/PersistedInstallation1659426584330749732tmp

Filesize
90B

MD5
dbd542e9cf1bc871228f11bba70ef406

SHA1
b09d029b315e575228eccd28396bbe8251f3b20b

SHA256
27a99b91fdf6835f1cf3ad84b340893e0fef783fcc60a839af90e172c52ce1e0

SHA512
61c522cedf9a3b1cbc3e5557f11a8bd2c904904cb5beba2aba871364a02d2975108a57fc2633ee8ce7615d22495017bdc87f5201620aa0f89eb4263e6ffaa833

Download Submit
/data/data/com.mycarroll.app/files/PersistedInstallation6855205223254721673tmp

Filesize
567B

MD5
097ed46ab12871a66f7bd75120c66b93

SHA1
dc78e5e33cdbc9fe771087202fae4db999c14518

SHA256
ed26f5dc2bf5a1105a2661cc134b30b78592ef915c00ccc2a24f566685c13482

SHA512
efadb74ea549aa71bdc741ba78f833ae077f9c69356bf47ed9337926b0c0a0697824c01de4573874b912d00ee383af62445ebc84848624d0a83fb3cc695cd4da

Download Submit
/data/data/com.mycarroll.app/files/port.txt

Filesize
3B

MD5
4f030a02e1a1b7c16733403b65164e5b

SHA1
d463a841c6ddd212bedfb1e68c7639426e354f0f

SHA256
46fde00bfa275b287932e1a651e072c36a0a43c50d41f922f5ed72e9b3734441

SHA512
902d226fbdbad3178c7f9390c0762620cd31595e7f582b926a552edf5d3bdaf379ca4cc53f6263b5a8fc305a3dd2c805280ebb1d9ba79213d67b87d3c13e416b

Download Submit