a697e24ae548de8e69e1230ee34b0e9357439fe6b8496e216f20a09b86bcdfb8

Analysis

max time kernel
179s
max time network
154s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
22-05-2024 06:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

base.apk
Size

8.4MB
MD5

8228deab1816e411a52944ced74967fd
SHA1

586664ae2178c65fe6e4cfc7112a4dde5d9a6dd3
SHA256

a697e24ae548de8e69e1230ee34b0e9357439fe6b8496e216f20a09b86bcdfb8
SHA512

4ecf44c6cd0dfad0bd855758f332f3a1231e5a1960ac444f5ba6702864794e64d297012bc5296235490252ad6fd663432e63df1029e2e592dc7f58c3ca3a1143
SSDEEP

196608:XAErFO5Fx4yLbC8cIYHLeiTCzdtIEZoZ63zwvk:x2xl/ApTCz7IEE63X

Score

7^/10

discovery impact persistence

Malware Config

Signatures

Queries the mobile country code (MCC) 1 TTPs 1 IoCs
discovery

System Network Configuration Discovery
T1422

Processes:

com.bhai4you.peakybomber

description ioc process

Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone com.bhai4you.peakybomber
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

Broadcast Receivers
T1624.001

Processes:

com.bhai4you.peakybomber

description ioc process

Framework service call android.app.IActivityManager.registerReceiver com.bhai4you.peakybomber
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.bhai4you.peakybomber

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.bhai4you.peakybomber
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

com.bhai4you.peakybomber

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.bhai4you.peakybomber

description	ioc	process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.bhai4you.peakybomber

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.bhai4you.peakybomber

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.bhai4you.peakybomber

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.bhai4you.peakybomber

com.bhai4you.peakybomber
1⤵
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:5241

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.bhai4you.peakybomber/cache/picasso-cache/6ab016b2dad7ba49a992ba0213a91cf8.0.tmp
Filesize
647B

MD5
d06486f2668526da6f111005f6583c39

SHA1
4f80184e333f077f0775852d84da936759b7c8c4

SHA256
45d4390e1991e880cf59e1aaddac2a75a8abccc1ac1a52763c06b886f94356ab

SHA512
b5a81e8280767b15aa9b6b9c56619f8ab534789b405ed95de0e1cc390cc6c4cf6ba764f6f166c54e7e77c02e662aab42a5460bb1e523c444c94b96f3727bcdd6

Download Submit
/data/data/com.bhai4you.peakybomber/cache/picasso-cache/6ab016b2dad7ba49a992ba0213a91cf8.1.tmp
Filesize
219B

MD5
d4b691cd9d99117b2ea34586d3e7eeb8

SHA1
c79f5572f672361bc097676cb5da9d4aa956c8b9

SHA256
2178eedd5723a6ac22e94ec59bdcd99229c87f3623753f5e199678242f0e90de

SHA512
b69c162bfba1290c98a2cd222f6eff9df69cfc3dba1651381f4068b30da813e1687387a794e50b51058c2fda17b217153ba9599e1e19dc567389b7083093c1fd

Download Submit
/data/data/com.bhai4you.peakybomber/cache/picasso-cache/ff90821feeb2b02a33a6f9fc8e5f3fcd.0.tmp
Filesize
792B

MD5
eb01dee3cb91e83e3eb34173f7a735f5

SHA1
661545d5037f3782eef2c3d54cb5575035902a79

SHA256
88038b00a93d47b693b5e8a67a1e1bd475ba179b85e8b61bea118e5f88658b96

SHA512
b93f50d3044e010bb5925fe15732880bebce8b0fe390dbc1940b95204703891840dec22237476d4f139cab7b9f071037645b7460068fecfaf85de4ac5c23912f

Download Submit
/data/data/com.bhai4you.peakybomber/cache/picasso-cache/ff90821feeb2b02a33a6f9fc8e5f3fcd.0.tmp
Filesize
791B

MD5
3efd1242448bd02c8a103df0a6c9a15d

SHA1
7602ea021e2ab8d0476e6671fc1ebaa6893553a4

SHA256
b9697f17f652ac6e66dc16d4014a3b61ae117cc6378170b7f3c3c49c45e7bdc6

SHA512
656c9c53eab9e4c853506aecd65ff07fb8686c0134c22c27b59bc485e02cf2edf92ea7a20be60a3ab2656dfd516ce45be6857c723f3ac50c3c7a9bb1a9c52672

Download Submit
/data/data/com.bhai4you.peakybomber/cache/picasso-cache/ff90821feeb2b02a33a6f9fc8e5f3fcd.0.tmp
Filesize
791B

MD5
e675e5ee39b870341112d2d38890383c

SHA1
486f9daa3a5a81ff6b87151fb1e2fa8bfb1e585c

SHA256
bb566ace0ced4a3945c83c2d43dc38523f891b4f583be182ed6ebb24bef51ced

SHA512
a2f36e503794484be7a737eb9b0f2f0953f0d1f99e84a2a111bac55ea926e40b60e5a451a067d2ebcc6ab361a8e648d23b8202f37ff8583559b06a69b2915d72

Download Submit
/data/data/com.bhai4you.peakybomber/cache/picasso-cache/ff90821feeb2b02a33a6f9fc8e5f3fcd.0.tmp
Filesize
792B

MD5
b14acab704c5bdc566102f1ff2a187fe

SHA1
c509a11ffdf96eb0cc457bd73a77dc4bb2f0c25d

SHA256
54fd3c0b96551bcb94e678b32be4d3fc9c90d5c48ed7c6820cade295927c4fb7

SHA512
6a03934cc8c5d76c2a27110d9b030c4c9ab8bb434ddb9cfc42d7adbfc92317651dad24c50ae98427c1d7ab5a363000b7b7e9cf893463062f709c207dc5a807d1

Download Submit
/data/data/com.bhai4you.peakybomber/cache/picasso-cache/ff90821feeb2b02a33a6f9fc8e5f3fcd.1.tmp
Filesize
14KB

MD5
ffbb200c5cd53b96675003db631451ba

SHA1
1f7f4afe65564f50bbee2d197a0ab3d3e520ffdc

SHA256
f99be0dd976b674b105c752b69972c77723c3e0f5f27fd65a1907ecb6ef35713

SHA512
de6f3284376d666ea64a4436f13bad64c512e1dba9233551ac37974aad174582752357d64e346a2a99b16b2df702d07bdee3dd91ae3dab4c73ae76660a9739ec

Download Submit
/data/data/com.bhai4you.peakybomber/cache/picasso-cache/ff90821feeb2b02a33a6f9fc8e5f3fcd.1.tmp
Filesize
14KB

MD5
dcda7a0b9bf4c29c099dd2c2ca899240

SHA1
1f91d4d448f631b442043d77e8c4637ab7f7c8c4

SHA256
d0c696474216672361bb4eca55c06e40b2ad20452e0a5e8f3be461604bdefdbd

SHA512
47bdcef127f7e812eb5ea79b45e62dce3ee21a00794a1f00ca1c562a91c4aa8e3aa115b424893bac40723ff18b99710f626e2393032d0d9338e8d2791510d84e

Download Submit
/data/data/com.bhai4you.peakybomber/cache/picasso-cache/ff90821feeb2b02a33a6f9fc8e5f3fcd.1.tmp
Filesize
14KB

MD5
c7bcd935e0e1e9190d43fb61f755d9b7

SHA1
511dbf5d6e5546d0cddf3ad9e5e33499aa50df96

SHA256
bdfee52c8644adf191077499015d7d22f6d081ba108ca47cad8a113e21faf2d8

SHA512
7ca7fa74b8cce067cfd9cdcc9096bdb1138ddb9716b822a75af3a8ca03f686d5361840e5e84592b9c5de3cd7f00351e54933f2743bf48439a22f23dc42a50f68

Download Submit
/data/data/com.bhai4you.peakybomber/cache/picasso-cache/ff90821feeb2b02a33a6f9fc8e5f3fcd.1.tmp
Filesize
14KB

MD5
19c72f30f944788f0e2c05428bf819ef

SHA1
938ed89cfa20720f4bd0db295954192e02289690

SHA256
488df855ffb4b3252310bab063c11495f39689c19789fa0f8abd9202913df3c0

SHA512
ba2cc2f886ef4eafec6af14a680cb4f7cac74371909088fdcc097f6cab708927a36734a616706f3114206da42eeb4909c401082cff0c02f956877cfe7e1f1429

Download Submit
/data/data/com.bhai4you.peakybomber/cache/picasso-cache/journal
Filesize
778B

MD5
9763f812bbd035bd20fa8e9357333dac

SHA1
e8dab67d6250ead8273364f64aa140d6809d9d87

SHA256
79ae00ccc83ac8c91ab4a1b4f60876c93f7425448d5d5194592fdbd6b2ce85fa

SHA512
92141b2ee42451a00ea640234ce96108776ee85fe140d0751d9f791a38fa5dca07e330d17fbe479ded5af5a67fd8187e87d6996f0a472e99b087e52d2e482a59

Download Submit
/data/data/com.bhai4you.peakybomber/cache/picasso-cache/journal.tmp
Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/data/com.bhai4you.peakybomber/databases/com.microsoft.appcenter.persistence
Filesize
24KB

MD5
99678923b620e7c729d7406808095779

SHA1
5d0cb7a1702a113b12a855d4694219540532631f

SHA256
b4a566bd3868fc0bdc434bd7f9bd7f38c74a418a181e83b3a8681d3f5a4480f4

SHA512
a727e709b5aef02ca57afc5f8655475d6cde16d9b4537c6a9c80db100d726ccdd3a98baa61233147f6fd45930cff6cff639e820fd4c00a18c086fb87ef02e5ea

Download Submit
/data/data/com.bhai4you.peakybomber/databases/com.microsoft.appcenter.persistence-journal
Filesize
512B

MD5
7c052efa6d58aea5b58d33acacec0992

SHA1
9a57f754dabafc4b2a23d013ae182be4671e6843

SHA256
2f6054b8c0bc66569d6c27c6d87d29184ed5e559837a21b66feed5f95bd653c2

SHA512
5513685e4b8179abc11f458b4939798264b78908531a59d6cb899c9f1dae0bd2a626f3a20e88b502df95b76248bd09da6832e65a8d4112bd2776b361149ff32d

Download Submit
/data/data/com.bhai4you.peakybomber/databases/com.microsoft.appcenter.persistence-journal
Filesize
8KB

MD5
57e8f633136704fe7c684d308dc8f055

SHA1
b902c3edf724169a73c8977f1d35b80abf21b1fe

SHA256
4753c6e1c3103532b2e73d13c47c8fcef2b48af2c5de5b68668a172985b001ba

SHA512
f655e1ef7d28416dfe509b27114b9b67791f21fd345e0633cff347e972720add1891cf17c4d86331f8e1b90c8667fdc500417c59d3a3f5119ccf7ffd5702e8d1

Download Submit
/data/data/com.bhai4you.peakybomber/databases/com.microsoft.appcenter.persistence-journal
Filesize
8KB

MD5
b5d85e6f3dfad10340760836853923dd

SHA1
206a42433c1f5e7de82605d629ddda44b57f8cb4

SHA256
116777236cd44976120303f51fc441641ca0040b58f92769580d907bda72307b

SHA512
ac7b23a95be6bd7b4dfa1fb93dc18df2a05cb75de96db9a0180221dd364751d1360b03b0476b59d88c821ff894d0751ff55186c0fbec5130dc4c263fa5f3b686

Download Submit
/data/data/com.bhai4you.peakybomber/databases/com.microsoft.appcenter.persistence-journal
Filesize
16KB

MD5
7ecc537c894f1e2b16d5b9d03bba2f49

SHA1
5d0275b45b7b5ba0deef940a4b0c1e8933ee60b3

SHA256
44c27bbcdf8e7fb211c249709b01c3187cfa49d4459cfcde5fa25c014c069289

SHA512
72f6c095a45c3a9bfeef8a926d8b84b06f492c0444bb8e0455a7b25d35b68ce717b1b7d7a0ff5ce6db956aa55ca3b88af8013ffe47443dc0e9d8a47ab782536c

Download Submit
/data/data/com.bhai4you.peakybomber/databases/com.microsoft.appcenter.persistence-journal
Filesize
16KB

MD5
624b7c9b44b8087e41458357e913f220

SHA1
185a9a10e6c98aa9700a4cbc9c0ed34c2f0a1f2e

SHA256
37b7e36bfe307fc7f754633a2dc2b3bb499d15ffbaebd231f6befac45cf2055b

SHA512
176a40568135fd0cee8923fb13a4095e829c6fc640928be52f599d2e2dabbb5df2dd8abdb63247bb7255a76bcaa4347914f5de6fd9836d04bcf7878d191d88a7

Download Submit
/data/data/com.bhai4you.peakybomber/databases/com.microsoft.appcenter.persistence-journal
Filesize
16KB

MD5
7bb11cee9d838836b8bc1f57cf4d382b

SHA1
17538972f7d06b9cce3a946328f09aec652db25c

SHA256
0b12b3d69c7e81711b3e0a952825ea31fbe1f75b717be170cbf8a2aa104d7211

SHA512
d8c695e0f0609877f239286228042aa9e01f90eb7469e135450f9b5b1e9cd856050496832329ab660589cc1aff419da6585a59e9e5dca686c0c920eae42092cb

Download Submit