654e2cd54529f03d48dd196c65051db18af984e59f88c48a5f2bd8c538581bcc

Analysis

max time kernel
4s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
17-05-2024 10:47

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

654e2cd54529f03d48dd196c65051db18af984e59f88c48a5f2bd8c538581bcc.apk
Size

2.8MB
MD5

beccc97980716f98f9edd058018bc90f
SHA1

a0f0da9b1306f2a1ce64246161467b2694190ec6
SHA256

654e2cd54529f03d48dd196c65051db18af984e59f88c48a5f2bd8c538581bcc
SHA512

461e298e37e57c075dd2dd43c3dda5f223c6b62d5a910215ed7701318e2db9940c79f0a5234297b3abc712eaa7ce35e9a034663de92edd1ec7bd64197ce226c5
SSDEEP

49152:4/QsZrOCIQVl2KGQx472EXF0/BgrUIwGoKUOPNUzgwcLAB3nxNd3JFaWY:m26lZS72EXF0/8VwxKjPWzMLAhxP3Haf

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.mycarroll.app

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.mycarroll.app

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

Processes:

com.mycarroll.app

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.mycarroll.app

com.mycarroll.app
1⤵
- Acquires the wake lock
- Checks if the internet connection is available
PID:4633

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.mycarroll.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
fc1b1dd983f1689498e091689c5d70f5

SHA1
ecf5182b2ed3274c36c74506c7bb6fd79abe2c63

SHA256
2baad31c7c11443bc6ddeb57544971a5d2f0fa45150ae299fae9bb61c755f40b

SHA512
5d9ebbbf612a69f1c339512ef5087e1054092b8c63817dc66254b9cfb6ade18dbb8b31c0bd0e9f7526eaec2f451b7ac51d73ffd1184cb4d8136eee8ba5625b52

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7217807d02aa88d14ddb0cc2f6293ddc

SHA1
9dbc8fd10867ae8bd46682a335b25a6cc1a1050f

SHA256
769be0096c55773ce66442d12e0c03ef48bef1f3a81d98dac33168a804808c47

SHA512
c112767a07e0f2c0ddb5ee763751f3b936d5800f59035b89592ed559fa87cb29b7aabe69d5350b454181b50d008fc59c8c82fdde6e347b675e4910c19fb6764b

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
4db68cd66e1608358c8d2483f63944be

SHA1
34c632dfcc415ef46c8a7a3d044a89c1593f9a3a

SHA256
b11af7ba22ab569f626af9086c05e4200de43748e3d46280111970a8d948b7a8

SHA512
798b7aad4ebaf4bac28f7a9d4414eb2e7082a46c12621ccb408d744809ffa2d15c209eb7bc6bad3eab23388d4aa34d9ffc37d99a6716bc28299f3ed3cda152a5

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
76b96472745cf6ead42990c28ff2e88c

SHA1
27aff7d5d8a572735ab89f05832c6b884a1c2453

SHA256
322c3fd7ca4f1e9dd811d1dbadbfd69e467061abbc32905b2e282adc8cb8e65d

SHA512
cfa1bc548ae85d918e004f6508b04c0a09b58bc9975c7bb53d9c5cfb9af3c75741f7b7778e1b7efa7b318435862ca18605c80ce5e36140958978a6ac959a6e2e

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
4b533db76e5920191820663e494a26c6

SHA1
086c10d49e8b3484a01f9346544a3af1510beb05

SHA256
b9460a45ae48e39cd8444788fe93d7bc0dbb39f000908cd4cd6305ee4627261e

SHA512
b8711ff68c51d79f3eb6644c2cc756cfa109e983effecb7db1f6d3346c2eb39f434b77a22bf14cf89d11bf377a0a9ad2b3e8c9bd5a7c77799c29cc5c37e1ea66

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
78bdb1218f82aa77a0e1298b0d86a469

SHA1
b1b1036794e64fdad9c3d466d02494ce6686bf91

SHA256
bed383a01fb8b5de76d8ce25ef2aa6ce6a74d24d142dde2ae49cbbc902749e01

SHA512
2e738d8ee083bb2046bb3dc4cae210db094a6e4ecbe8cd45365f15a186739c5de9ae888c930980cf022abaa4236177f23887044895eb495f08b9d127b585d754

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
71e3dfb419d5727a7d6b42fcea92ce4a

SHA1
3f92b964fa508b2f12a9b3e04f7baf00a1deeda7

SHA256
14b5ceae729ee8a4d20e528e0b675a21181ef47a891f65aa61023321c9068482

SHA512
e4feef046036793fce326498bb05eee74f6133e4895c04e2d8e261f1577f3c8422748015f87ba98c245a930935e975d4026c7b917a1e5dec209348893a7cd689

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
b245101955304912dff32f62b7eba5a1

SHA1
dcbfca43a316851131cf2800be65157ac82b1667

SHA256
2afa88a27dc03e54a238af9afce06ea54e9810091fdba2a9047efac204483d2a

SHA512
6d4649221bc3e1a5ff6e1e8a8bb2b1c4e1bb7c4f2ad590bcdf7027b345982450cebbd7d005444f6113eebe000c83edd0556a826bbd062fcb5d264f14aec6e3f3

Download Submit
/data/user/0/com.mycarroll.app/files/PersistedInstallation1877579346665522147tmp

Filesize
569B

MD5
100bd77022468d91dc6f9d4e7a41e373

SHA1
8a8bdc557cc1f515f41d4ff1f2811fad3f246a06

SHA256
139af578811a01805586801f9927b0e96c276615264509195201c0b0b207ab4c

SHA512
615468a9e721784a824e086dbdc2f3fbe54a2a4526a88a2ac088acd1ba57b5d263932aa273764d6c374ac1ba6835729e92fe1060f769eac292910b4c56bc6c4f

Download Submit
/data/user/0/com.mycarroll.app/files/PersistedInstallation2024932267648377622tmp

Filesize
90B

MD5
9225dffce2080b5c10c12a23a031536a

SHA1
6a756a796bafa39f97f695061f30a768b9d8583e

SHA256
4a7015234d68dd8d2e2930b091500f388ede2dc21f66fec2574e94344b5f48de

SHA512
0c9d6ee2b06d7ce8c3ee81e90690c4c6fd363107489528b908e811933796a73fcb7d4b4f1b6d032bef862a33579326b45782cd6a9209c3d18edab0a5c5252c8b

Download Submit
/data/user/0/com.mycarroll.app/files/port.txt

Filesize
3B

MD5
4f030a02e1a1b7c16733403b65164e5b

SHA1
d463a841c6ddd212bedfb1e68c7639426e354f0f

SHA256
46fde00bfa275b287932e1a651e072c36a0a43c50d41f922f5ed72e9b3734441

SHA512
902d226fbdbad3178c7f9390c0762620cd31595e7f582b926a552edf5d3bdaf379ca4cc53f6263b5a8fc305a3dd2c805280ebb1d9ba79213d67b87d3c13e416b

Download Submit