74b03b436cbc871f1da4240b5635f40f92559b7d9c49921200b6ddb3620a197c

Analysis

max time kernel
7s
max time network
141s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 12:21

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Charkhooneh87.apk
Size

10.1MB
MD5

1da5f1c558e3a4379c75826b32bf187f
SHA1

fe63365dc66206c2f11cb4704cd3abb0c89f53f0
SHA256

74b03b436cbc871f1da4240b5635f40f92559b7d9c49921200b6ddb3620a197c
SHA512

97cf97590acbc50d8e164e3b9b7a09013cf830cf8778e36e65b4c39864ddc1674f920bfba77940afe3d68cdeaf0f81700b149673c5c6dd45e6ec998e95c3b485
SSDEEP

196608:B92emV2mCtprhd51Wy/SpBpoJgqCr5Df43pvnMoUQuyt6:BCVZohv5F/eBOgqYwZvnFuh

Score

7^/10

collection discovery

Malware Config

Signatures

Queries account information for other applications stored on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect account information stored on the device.

collection

Stored Application Data

T1409

description	ioc	Process
Framework service call	android.accounts.IAccountManager.getAccountsAsUser	net.jhoobin.jhub.charkhune

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

net.jhoobin.jhub.charkhune
1⤵
- Queries account information for other applications stored on the device
PID:4301

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Stored Application Data

T1409

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/net.jhoobin.jhub.charkhune/databases/jstore.db

Filesize
68KB

MD5
9b3dc8a0790f105122b8467cbea3605c

SHA1
c61e25afffeb6c318772fbe1c69f70ee34a85e98

SHA256
f8698ceb674bf1e2e20585e0389e6c26d2b4d645d23832462fdbf0ac1f7341bd

SHA512
09cc3b7ba66f6fde25da3aefa8b518a14df5daeee8e1ed7b57bcd4ae078828f195e3bbf97652bdfa1beece20b6aefb9ab6d1b5b8c97135f7650c6df21699e1bb

Download Submit
/data/data/net.jhoobin.jhub.charkhune/databases/jstore.db-journal

Filesize
512B

MD5
c9666a17518e02f8601132f1c96bef4f

SHA1
f3388301cc370beaadfb06c62509a303d1a6b068

SHA256
556f49dd4f1e1e11d4e6b3cb95a5fd62d3121493aa4cd692467af16adc0715ce

SHA512
7e1d0f76ca91658b72a4727788fe921f99b2a11fdd6f30e4793714b4934f2bdb0b1c66b0b74f048655dd578cb5dc208329b9634bfc34910ce1b88bef1f9de076

Download Submit
/data/data/net.jhoobin.jhub.charkhune/databases/jstore.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/net.jhoobin.jhub.charkhune/databases/jstore.db-wal

Filesize
80KB

MD5
1b3e06f0c134d1c33686e11906d42cdc

SHA1
ec5c03013d0ef4cd193207920970a9f30d9ce9e6

SHA256
ad83445c6c0d8c8df0c3d663645a20cb2807c9311998728cf66019df34add660

SHA512
758d473e31a66197f5cde28b897af3fe1f4333d5f191546e86df77738808663907c923e3a767db037ec8adfbecc7de7755b6818b5490bc16f64f07efc37e96d1

Download Submit