fadb7686d81a1bfb3029f33fd08de4ce26402d93b3be30a1f661befac197b811

Analysis

max time kernel
123s
max time network
139s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
17-05-2024 03:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1ef0c4d0484f9c859cc0e61223d71579a817736bf741bc6001dab472a95c56b2.apk
Size

2.8MB
MD5

83ae44741a62282a0133cbbda73cb65f
SHA1

d2ed103e8aa54981b02eba1bd20039dcc4c3d945
SHA256

1ef0c4d0484f9c859cc0e61223d71579a817736bf741bc6001dab472a95c56b2
SHA512

f54afbfd1bbd5001dcbb0fc2ed7b52f1da61f31c7938181f5a892a5ff6dd6685bf337f9696381b6625d30fa01335d880477f5c2f1b15dfc21d424b6ddb4936fa
SSDEEP

49152:f/QOZrOHIERZDYQEhuErSdlHdEcHDiwy326P4vUpOspgDAT4cfO0teaHrpyId6J+:3/uDbEhuecHJeiWOspuEl5UasN4

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.mycarroll.app

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.mycarroll.app
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.mycarroll.app

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.mycarroll.app

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.mycarroll.app

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.mycarroll.app

com.mycarroll.app
1⤵
- Acquires the wake lock
- Checks if the internet connection is available
PID:4256

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.mycarroll.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c1d56743cc7825f7437ab55be7073df6

SHA1
b9957ac614165d017b1af0276bb35bbcc0988139

SHA256
2a34e3114ca0472ab9f4d94e3f760858db044f7fc180799b08106ce85d949527

SHA512
e772d5b58925b51539e484ea4901b704e14079c983a3f0075ebb5a2d925b0cf810e96bcb0d1198e233ae1d47b25d658ee43db1ab93ccd589bee4d4753084b88c

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
85dc6cd6c84af3bb015084c9207e69c2

SHA1
a94c15cbd46f4e8109c42c3a6b1bb1b0358586fe

SHA256
e57505e55ee2bfc64c94625b9d40e72ddb024790ce90c33f1d68fd81c4c26531

SHA512
2493e7d44292eb79ae44e365b91c8e26dd15891083127578f8963877f63372befd6eb9d30c9f18c0c34b24663e10ccf7b33293ab250d8dea102904ea99fdb122

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e801cf6c4ad4a16064c73da848696e37

SHA1
2530cbb7aafe6605e2e90726c8a2b01ca6107e13

SHA256
0a84e92c0318bb1909f1f0597c94138a1d305281141fb0b8bd20b542da597e40

SHA512
f0413c28a648fe794609731ff59b6a467f5e24b61906ce29d5f5a3a507201b1e0a5ac31bded972d36e23b8b8bf756397df91e2c7c958820fb44257a57eaeb0d4

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
a0f6a541b4870d4b0ccf9a22832c5094

SHA1
ebe260e1dd19de69914ba48ac24e7af4baf23b5d

SHA256
d55b42f67f624384f54e7cfbe6a0747f139d311841a48befb033293dd64578ff

SHA512
f62ff5f4c1ed6c8a6698312fe7c253350d4266b85e98385296f4911b70b1cee062a4659723c3d4b0d33fc6d2740fe132e740d4b9d47a7ccd729bb826854deed0

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
083cb0af76605ac46b87c1837cedbf57

SHA1
65990b542bcf242ecbfad4be521420ca04975bd7

SHA256
6108de8aa4c86e1e35a2ba3a2e704886ef21fbc5fd91d0f5202bd1d44c75c247

SHA512
bc08b4ec7cb141eb87eb91bc9a543af4aa23dc41d5f680f278032eeb2fbfb748fb4b52aa65dd271054b2ed4ab98d70a058768843c305be39bdec4fb43a33dacf

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
7ab953a4696c0d8830afd3fab1677a9e

SHA1
87054a91d6208a0e56a1e8245e70e6f2cb9bca47

SHA256
8b794029c1178701bfa00f495731336a87f360a44fe6d442ab7b4a95ba6575e6

SHA512
d4b90b1d025f84bd2607c653a1c9a0b38f7d45ec6f38caa32fb90db76ffd4632ee699e8aedd091070549934326fa65bfd4d95261ef915a702fdb5336c0aa8870

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
4b53a009eea0d96e343bef41499c4c29

SHA1
deac18ea813cbb56b25cf5d236848300327a6068

SHA256
51321c2f1ef2490bf177bf621dacd3081dc9968fd04a7e088b114a2201594500

SHA512
daf6b64a5e652be3e19cea0a37168bc45f10f920291010108ee6bc4e7411ae68de1e25668d6bd8aa9106d783daf5ec6d5dd19c47cc890f3e0d9dccfa7478df7f

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
c0cc77849d889c19585dcbeb35631d2c

SHA1
fde265875b46dc4006a311d22dcd109bba7843a0

SHA256
280573d142b0a6fd8c19bcbe333d8ab14523d7b9c7a2b5fd1d3ca38f0b608de6

SHA512
5d1e2a580008aa59feb700fa243dca23ee4190e430a005519161bab84d10b89832953689e84f54fa0b9df36102e2e6bfd7d9041e8cb0e721240e290f6e632f13

Download Submit
/data/data/com.mycarroll.app/files/PersistedInstallation6002354220556726738tmp

Filesize
90B

MD5
f31e0e68955a83b4965c9465bb258249

SHA1
272c717ecfe9dd979baf32b73a3426b97e729216

SHA256
15d205e37b2fa61fa9e5b4a294599ef8c6e3ea6d6abaccb065657e212d2f66c6

SHA512
6f76aa186d1b6ace06ad99e9298e66c86182bc9cd495f20e8315f4d4f2ec7247d1854ca367ceeac7ac474886f6b3ac3634349f9d53337a1d6b24a7c27a889d4b

Download Submit
/data/data/com.mycarroll.app/files/PersistedInstallation865136576673226016tmp

Filesize
568B

MD5
3849a69b4b85a9bb78f181ed5a5916dc

SHA1
50d03966d5ae8e94a38cc042b2bfd532a74d0359

SHA256
99c240f37062799ac78848148aac60b933be7a04679dab75cbfb490a789bfc5a

SHA512
2d31422ea2046d88664fc34a43873560d6018473ca7a3367024d7670a0fa4390e33989ea564c95247559efebfad5f8c23714db5cd71ea7e8796c6c014f50fdec

Download Submit
/data/data/com.mycarroll.app/files/port.txt

Filesize
6B

MD5
b143bb9b14c916972f31e4ce92ce9fb3

SHA1
9d365fb5be0934e134cede71eaf6c29e5170f656

SHA256
bab3ce5611fdd6dcb48e24c4a8f7d34e2f0b2eaca95418ce0c26152e8f2a844c

SHA512
89993f29ebad7daee5fe55c460082c86eab646647666d2d6113dbf8c7739bd42425857f539b1c071dba7047c590b4ae11b95b0da2f4de3ab9a95639046453ed2

Download Submit