00bd84003c003029ed6f50b2a88a90b48c0c50a46dcc6f8273b554a4f003b391

Analysis

max time kernel
47s
max time network
138s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
23/05/2024, 22:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

00bd84003c003029ed6f50b2a88a90b48c0c50a46dcc6f8273b554a4f003b391.apk
Size

2.2MB
MD5

4f4451405493f338b17ea02b52c8559f
SHA1

c9b73557b5c081ea5f9b37677d2ede8ef6f9111c
SHA256

00bd84003c003029ed6f50b2a88a90b48c0c50a46dcc6f8273b554a4f003b391
SHA512

ef36774829d2703419209fa364be095cadad1ebb0eb7fce6e9d595bf079fdf24f16f1fb76dcc122341e8063467759111b6ae3e8d1015cac873d2cdc8f01d5887
SSDEEP

49152:+smKDsBhhfhV9QVEjvoi5eyPpNtttttttJd8yR5Erpfji23NnUxMn2K:+smKDipr9QcQi98yyji23NUxIv

Score

7^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	c4.hjk69.auuj28

c4.hjk69.auuj28
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5112

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/c4.hjk69.auuj28/files/profileInstalled

Filesize
24B

MD5
4257e6fb9134865733e5b87920fc3556

SHA1
6d0a3367fd60a3c7ce07502522fa9e44d9c223e8

SHA256
1ffef3ef72604cbee81891cbb702d28c06a51cf7f400ff38a72b181b7da6c83d

SHA512
cbe59e467f634fc08a59cec0e11905e424be98653c0836433d62f2113fcaadc8307506cd38e79a57e15d9c42ce9bc98624151feafa087ae5865df29c991d3ab1

Download Submit
/data/data/c4.hjk69.auuj28/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
5e05704cda087d716f61f081d4b9d177

SHA1
35e8de094aec7ce5ad4184b4c9f552a9c2b21664

SHA256
a9f883cb2b2ec2ef6e576563a7562291091fa1d1c1f2d5b2801d533094757e0c

SHA512
23a8c1d92db92cb7b4ea4aabee2ad78b25d26f0a22aabb39fa9932851afda28e89dd7379168221d6ad832dbcb5aa10532ebddf4067cef05c92b8077b34d26bb8

Download Submit
/data/misc/profiles/cur/0/c4.hjk69.auuj28/primary.prof

Filesize
1KB

MD5
c3663514d1063c74f2689cbb270ddd78

SHA1
b8cfcbbc083cbfee3e732aaabb0bcd0d9a94486c

SHA256
75cf279e9df38ba3a9bd5192806450ed0e94ce0aa6886e4d4ec35111002a58d5

SHA512
643e63b111b3388a69734ad174395e53083477e9d7814e524f3f7f77022b732de7710033a2beb423acc37dee2cce84742b7d99b39a3b886d5911dc1bfea2da8f

Download Submit
/data/misc/profiles/cur/0/c4.hjk69.auuj28/primary.prof

Filesize
2KB

MD5
19f5044fe35bfc806b2057dd74d8603d

SHA1
ba52c40808888f6eae710e42e9d48b24ebf36030

SHA256
f088dd3fe612b4ac17b979e069906c8cd8667ab161102536b30648d4e64d75e6

SHA512
524660eafe4a0e8bbd794c070df315829242a9f2b04f00424361663921605e634d31e99cb4bc6cb5b5df4ad21401f45edb3d4440e5c0e544b88bb04032069995

Download Submit