77dfc9f7921f37e3f27608ed7173dce19dc6972c7ae14cb366e46e1c1fcc2e1a

Analysis

max time kernel
179s
max time network
152s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
23-05-2024 11:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

V7.6.4_ProdBuscadorArticulos.apk
Size

5.8MB
MD5

608811cb911ee44ce50d74ed641ade99
SHA1

0bce99b1e61ac5dd3c9d8c2c212b911867748d0d
SHA256

77dfc9f7921f37e3f27608ed7173dce19dc6972c7ae14cb366e46e1c1fcc2e1a
SHA512

a49e1371eb3b9497b706287e305d74ea2ab0d126573068829bb2612443e59f68c368659846b9ce92acb1b249f366a3667cd4c5ba9a241e274183f35116e55aaf
SSDEEP

98304:suJWsJkyFXse17L+XVbLhoqfl+CwBj50COAguQoVW2dbvu5UY9U5ZmJ1OJfiPdoQ:hfJkyFXnhLm9LLlT2CNuQYWIiB562GUb

Score

7^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

Broadcast Receivers
T1624.001

Processes:

com.fanasa.fnapp

description ioc process

Framework service call android.app.IActivityManager.registerReceiver com.fanasa.fnapp

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.fanasa.fnapp

com.fanasa.fnapp
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5082

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.fanasa.fnapp/databases/dbfnver20210309.db

Filesize
288KB

MD5
21fbe8189589028591a312db670956de

SHA1
f58e24ac669f4bfcd5e44198afe6f2850c72faa5

SHA256
148086877fcebf16fa6643bf6d46631900c17e7f06bfd77932204f1e5d9fccd4

SHA512
ceb6640223f741674facebcffbb8cbf2496642fe8839da02fbc1ee29fc31f2ad04e3534d248ab02e497c253e31582d0f35b9fc09f5db7289e75a639083401fb9

Download Submit
/data/data/com.fanasa.fnapp/databases/dbfnver20210309.db-journal

Filesize
512B

MD5
16d43e632eed706143d8ad05554c2259

SHA1
b914dfa988d072d4e4fdfc9e542ea1293a73e9ea

SHA256
9e70c4f16f0dfb9ba28e27f8d0b26129d53424b876359b975188b5d1fea2601f

SHA512
d82c1299d69208d3d6e6b43b6dcff490948b00b704c00bf02bd00728b54d2038733ec20e8251add8d7057d6f85066da17a49c933f0b0e60c83d31d39fccb73e3

Download Submit
/data/data/com.fanasa.fnapp/databases/dbfnver20210309.db-journal

Filesize
8KB

MD5
a9c1ef770420d639f212649cdb3c43df

SHA1
79ed76f81f3d17dc54c0691ad258ed5d84d9b221

SHA256
c6d23a69e97c2b0d1b348d1a400d0670b1656ed48a990f990fb78cf4ff6083e7

SHA512
161e39d4cdde575d4ddafdd0077077ef1a1432b8a74a275c7ebd1c27098e16b0d8636750a5eb828984d573eca244d5e75f9ca12f25a845ca31f6e2d88a4f79c6

Download Submit
/data/data/com.fanasa.fnapp/databases/dbfnver20210309.db-journal

Filesize
8KB

MD5
bc5025def6d3db6ae232287aab4f996b

SHA1
96edb5a34d3bfc770fbcc7103057652ddc145efd

SHA256
3dae89732a0a550f4010d55ad03cb0c63f9fd555ac652b5698b54512b2972910

SHA512
92f376085dc75e4b9e0a029118da9c9b152a0b43dd7e66378178b320663a3dd904566d036f12b76d94239bbebc5cdfff191686552270d8433a1a40d28808cbc0

Download Submit
/data/data/com.fanasa.fnapp/databases/dbfnver20210309.db-journal

Filesize
8KB

MD5
62fb5c575ef5af7508c3eb23675eaed8

SHA1
f516680e90b32c768e3037b2a98198bcedac4022

SHA256
2cdcdcd5d5212215de609912fcf2596b8ebcc42b9f8983bfee18ea7d26993cbc

SHA512
477e4008b4c72807f702017d3000dd46307dc22c6a510e6074118121420909c9729a7e32e3e78777766a08c4670e2cc5d540522daa890d8a34edef7f8e8f9495

Download Submit