49a4398e42bcf45f9f9da6c851fd754dbbfc67acb07842131181f20eae34a135

Analysis

max time kernel
132s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
23-05-2024 12:04

Target

app-debug.apk
Size

4.1MB
MD5

2a6d587edd13ff73eb4ec9a965ad6560
SHA1

d4edc2249be7687fb0db0fa43f92a8455886f86a
SHA256

49a4398e42bcf45f9f9da6c851fd754dbbfc67acb07842131181f20eae34a135
SHA512

0716108868a76f4dea7713f9c83c01efa5d35960d3f09e815b29c79728313917782d119ddf7cf475fd84101251370d8e996f7ed7d450c8da416e2f045be440ed
SSDEEP

98304:RUYIA6B++yaINK+0agB5ov3xfyLMKhYO8Fa:RUY/c1yaIjgBgELMOYOqa

Score

7^/10

Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.example.gpcs_android

description ioc process

File opened for read /proc/cpuinfo com.example.gpcs_android
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.example.gpcs_android

description ioc process

File opened for read /proc/meminfo com.example.gpcs_android
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
collection credential_access impact

T1414

T1641.001

Processes:

com.example.gpcs_android

description ioc process

Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.example.gpcs_android

description	ioc	process
File opened for read	/proc/cpuinfo	com.example.gpcs_android

description	ioc	process
File opened for read	/proc/meminfo	com.example.gpcs_android

description	ioc	process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.example.gpcs_android