8214b697674bb0c0776c3f9fb50027115126f488c011614e3e2ce1078599480d

Analysis

max time kernel
7s
max time network
147s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
21/05/2024, 05:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4d3aa0f70df3bc8dafeaa344639f78d9.apk
Size

2.6MB
MD5

4d3aa0f70df3bc8dafeaa344639f78d9
SHA1

9cb18504524f98f5edcaa3ae04389cd5d7f88b53
SHA256

8214b697674bb0c0776c3f9fb50027115126f488c011614e3e2ce1078599480d
SHA512

c110d080f46d8a189e2eb57054b45879bc549d089843882d5e0884d935b70965b3d7cf0dd5d6439714fce9dc08b1d43379be7e67c0d4aad1ce0e4132f0d422ae
SSDEEP

49152:CzEY3UtXIbiy60/4AbP6hL5RIZ441T+xb+2BIwm8gBSic/qbyCXfY+i:C3UtXIx4K8QD1ixK2uwm8Ocytwn

Score

7^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.yllkpy.byyx.huawei

com.yllkpy.byyx.huawei
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5166

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.yllkpy.byyx.huawei/databases/JeekCalendarDB

Filesize
24KB

MD5
c662475ce2113ba39f5b18cd42ef4a5b

SHA1
f77dd422049819df0d401dc0ed577c5bffe8cace

SHA256
9648facc28e666cc6c854b674ce5106b91e1cbb5887152f53f35636b3a70ff65

SHA512
4eae9417cb421d5fcbf12372f35bb71b4ad3f66008a9a22b787e111fd38ec3079ae63abdc3df81a789cc365323dd842aad34da313311d03fc8bd76a285082e30

Download Submit
/data/data/com.yllkpy.byyx.huawei/databases/JeekCalendarDB-journal

Filesize
512B

MD5
0eef72b2bb77d7c5683cd867a30c1c2e

SHA1
9eb106f94728c5f46e57b71f9c66dfad0a29acdc

SHA256
225a4f501410c4a762030b2a73fc558505388e8a25226b31c7b03d5fde93e8c0

SHA512
58ad90cbd8fbc326e507eef63fc9c913cbc28f51d9e0950cb02d489985ac29119e3d55be96dd7d9c380745a3be022bcf8c0e5651a8722c8b411f901bdddfd73a

Download Submit
/data/data/com.yllkpy.byyx.huawei/databases/JeekCalendarDB-journal

Filesize
8KB

MD5
8a3f79da76300043f2dc6f022c36089d

SHA1
5874296dd1af6de8d66f4a574baaae2b691fc0df

SHA256
162d3bd32d80d2df987ccad7d5ae700f276f933781a3adf1dc1e2f31ed726bd4

SHA512
c8ad6233f6226454bff2ad6d43ead03e298c7645b7fe087ee5515e60470286bea38b965f0d079db41e24b55081b615d80aafb32c659851d23d3ba80259851947

Download Submit
/data/data/com.yllkpy.byyx.huawei/databases/JeekCalendarDB-journal

Filesize
8KB

MD5
fe328e41539d8ec00bfa95e9e6b6574a

SHA1
91c5891bb793604ba4b5ca203009c828625ccdb9

SHA256
3761cf9ce849bd935242015ca433222dbc79838855a3aec56a8d893e72328061

SHA512
21e09c0b06b713caaa5f77ac055d469fa681027baf95fae235635455279ad886173f99f557461a8954c54eed3015c54e9881266d9cc50d8d044d39d492c131d2

Download Submit