827738e923bb445aec524d7db4f47a66631d623c7c589ec1138ce25bb84bef41

Analysis

max time kernel
179s
max time network
146s
platform
android_x64
resource
android-x64-20240514-en
resource tags

androidarch:x64arch:x86image:android-x64-20240514-enlocale:en-usos:android-10-x64system
submitted
23-05-2024 11:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

V7.6.9_UpdateVers.apk
Size

5.6MB
MD5

7122714813097822e61b797bb7ee4b62
SHA1

f1df0e7e32027a02fdff4713a1555eb933cf347f
SHA256

827738e923bb445aec524d7db4f47a66631d623c7c589ec1138ce25bb84bef41
SHA512

44e86b813dfadbdccf74619b10e7a08ad023282e8e87ebc0330a2ab0179a4b74478256402efda877fa6a6d6adbe013d6a1fd1db6b240e394b70f404983f401e3
SSDEEP

98304:yGErTFvXDTkB18YHHHye6w6R3bdhLLGgGFscAgT26VwDdrwEKl+s0mSJ:eTFvXDTO18YnRg3brLi/egTDmXK4n

Score

7^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

Broadcast Receivers
T1624.001

Processes:

com.fanasa.fnapp

description ioc process

Framework service call android.app.IActivityManager.registerReceiver com.fanasa.fnapp

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.fanasa.fnapp

com.fanasa.fnapp
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5049

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.fanasa.fnapp/databases/dbfnver20210309.db

Filesize
292KB

MD5
268dd94d449c9a38324757c6d57db2b1

SHA1
85cce0fe1f227ae0aa40e04e6a26b75cb2dd78ed

SHA256
70b20c97fa5f8df0e91740dd21cb53a97e716e3a0a4980f7afad546c162fcb4f

SHA512
24a91b9dd2ae9b062d9ab892807dc7d925b1a0a90f4990ae796e428504a1a557a99c724582c576a34037bbefb24a189e043a5f1844cd71fe82d3d80c29ea7ee3

Download Submit
/data/data/com.fanasa.fnapp/databases/dbfnver20210309.db-journal

Filesize
512B

MD5
5719ee1347b0ad653f950984dcda6e98

SHA1
e0222e91e095346bbe999a4bc62b8e39742c0688

SHA256
4ca2ab1802ae41e0cc7c0553ac31b88fbdea3f7c9cf79405a8c906bf89c8a072

SHA512
92a060a26bd5ac72ae5602448c20d41f2f490dfdc15500612a1ca0bc4bf8d0abf3dd9b811bdbdff007f26b8ef4f86f37285bc3f2c12506777ad479e621925e4d

Download Submit
/data/data/com.fanasa.fnapp/databases/dbfnver20210309.db-journal

Filesize
8KB

MD5
84941e7f516e313bff6b25910197c59a

SHA1
c2e10a5cbc223fc8c4a95f2b1d20f55deb353636

SHA256
0fb35de0eacb40709010ac5c20bf38005ec6b44d8f8e172205063b09c33c8d9e

SHA512
dbbfd5b17fdbe06896f26d5a149504e7c521bf0714f1b8d25c2451a7d7d0b1e34f418317e07c77dc6ca922ddc3147d9c5d71dabd81982dbded6767ed1d0569c9

Download Submit
/data/data/com.fanasa.fnapp/databases/dbfnver20210309.db-journal

Filesize
8KB

MD5
13f85a41674235e52aebdba878c9b085

SHA1
7f7f6a0bd3ffe8c0df39a9828f49a2decb7954b9

SHA256
5b39a23541b9a39ea1fcfb23ab96ebc376088abfa7ee77a234e0d2593e12ebcf

SHA512
8da000da6b1503243dcee3091662076d7192ce27ec7d6cda271592e05a5564bbb93af95625e83ea003a8ba2881579ee99bdea84c5d0151855b63d6f9852e9705

Download Submit
/data/data/com.fanasa.fnapp/databases/dbfnver20210309.db-journal

Filesize
8KB

MD5
465663e8369ab300c90e90c8eb139e72

SHA1
4b37c74c741c077bf3fc7aadf564ece8e7c7fcc9

SHA256
6cfa239ea8232acc03f0d82950931f154aef29caefe049ba92f96d659ef13021

SHA512
12be94120ad7a218d99d009937ef2925337c71af8724b00265434565abc0aea498b424413c597794494949e4df126d5bd1b815e027a36489f122c2a328dfe831

Download Submit