f272b76c720026902e69c34cc8dba2d019cd5402fdd113aa36e92e6cccf31774

Analysis

max time kernel
7s
max time network
139s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
21-05-2024 05:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

app-release.1.8.6.apk
Size

3.8MB
MD5

c4fc0e29e9d69bf80b1b04485b9fde63
SHA1

d6e577cd4acda0f309eba0eafeae59e7bced7ba8
SHA256

f272b76c720026902e69c34cc8dba2d019cd5402fdd113aa36e92e6cccf31774
SHA512

b4a258f338de3daad9266c192d6c541a6b3bfd9f8193b6ba8992e453497cc06c6fe0a9a793a8badbb32e37cd68939be17270d5dc12afe6fa071ee04cc36bc840
SSDEEP

98304:LFU2XS47L03KCD1ydWbHVYTp5wqrDiRNEvxNhFg3Nt:LFmK8lb1ApiEdxNh2f

Score

7^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.cloudweight.client

com.cloudweight.client
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4270

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.cloudweight.client/app_crashrecord/1004

Filesize
229B

MD5
4e2a5c64738cb54e952ff346698067f2

SHA1
33484d02483b9b5fda6986068ff6f1af091f5649

SHA256
d57dc389451d7f93f3370cfcb240299774c1c43dbcf684afb5874411b2510d0e

SHA512
415591df13f73a9c1d6865d63c3aadf3b14376814b95e57bc7c5d5277bdcf93fb93873999f73b9132254d6237108bde43f9ece033fc4e5f17b7dbd9188c59a1c

Download Submit
/data/data/com.cloudweight.client/app_crashrecord/1004

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit
/data/data/com.cloudweight.client/databases/bugly_db_

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.cloudweight.client/databases/bugly_db_-journal

Filesize
512B

MD5
5c1f29fd735541a01c81be64b1b5bea4

SHA1
662f783057c909e113f1f4092d683a151dd24a55

SHA256
2c6c099702e252b2bfa55c70dddf0165ca3de54aec28302a0bf2ec2c58256425

SHA512
c4635f6a9b583a1e2a7805ea0d098e0a73fd52867f187a6b74fef63a349b80dd63a2dc5e0c350413f247d85fba11896936330a65588ac3873fad79e9490c41ea

Download Submit
/data/data/com.cloudweight.client/databases/bugly_db_-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.cloudweight.client/databases/bugly_db_-wal

Filesize
72KB

MD5
d671e734cc9f1791527e69ca607cb6a0

SHA1
6545600459e2a356c775a7fdc4eb6c0f0f19044d

SHA256
d583c193b8cd6bcd34464f431272d709882ca4e1ca7cd2fb9afdd3c059f34d70

SHA512
364ea921a75b0d8b97bd3d383bb5ed932904251041624725db0fc98965818f7a354d53119350461fe04b314d1bd760f75f571567c7420a63d84157eea00c6b5a

Download Submit
/data/data/com.cloudweight.client/databases/igcs_db-journal

Filesize
512B

MD5
1c199b3d5e6fd2877153e06951d04f66

SHA1
60a4b623325616147d8660c426376a174473966b

SHA256
79c7b35a6b1e30f014a2c640485079c8b8ed5e42118265c531e8a5e605955577

SHA512
237124f0c5c2f27e330b8d285eb33bd692b741ebfe60d6c376094caaffee81a3125062682e4bd66faefb47d6c36c1351ad4598695a502d611a6c5c99627ebf17

Download Submit
/data/data/com.cloudweight.client/databases/igcs_db-wal

Filesize
32KB

MD5
9be667f1a03de8bcb43201399b8254b8

SHA1
764c8545ce6beaf8c7c02da2dbd657f9ece3deab

SHA256
f5cf68f978c71b16ea537fbb9f1807881a3fdb79c05afaea55f56eb190dbca69

SHA512
4914551749a06c4d3318f508362236d0fe28ad8f3a44690c1e2aa2770349042443784a085250407e2c9172dc9d2dca1e27bb1915f6791789d46ae823bd7b688d

Download Submit
/storage/emulated/0/CWLog/cw.log

Filesize
173B

MD5
dd1d0cf88f46da06f12bbd87b4e53bf9

SHA1
404d14f249e9eeccf043f523716d88a4c1c76a7a

SHA256
12d1fb22fb5ca11d01dda61320041d121f4c173e971cd086ee5dd17c6fe0eea7

SHA512
1fae082107f64e630554bce5c62d3cdfb5a1f709da056b9f23fe73eabe0f71073c7d620ed858b43b810310657e76813c3259d9a9a5d930cc1285393bdeb04dff

Download Submit