508ee78e646bc8b8edf387e80c8d709c649901536c8444c9a2bb199cb3a241c5

Analysis

max time kernel
49s
max time network
168s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
24-05-2024 12:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

inema-capdat.apk
Size

7.4MB
MD5

25388da43f0aa24e0734f09b8bc81c7a
SHA1

a28c26e99cbd859437a6a409d52ee380941698db
SHA256

508ee78e646bc8b8edf387e80c8d709c649901536c8444c9a2bb199cb3a241c5
SHA512

345097c11e5409036385f4dd8b8db53bc598c2683c4520c7c3e1b03086a1cdb076ef4410b85dadd5d6f58d72aee00ae3b3adcc3d95e60a4999155284efcb3c6a
SSDEEP

98304:1B2e4zh1DkhXajpVAORIc26nJSBA+aqKnKK5/CYA/Jxc21QF+Qrem47ssl1HPr9d:1Vw80PRDJSa+afb5/Cn/1asQoJ8C

Score

7^/10

collection credential_access discovery evasion impact

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.inema.capturadatos

description ioc process

File opened for read /proc/cpuinfo com.inema.capturadatos
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.inema.capturadatos

description ioc process

File opened for read /proc/meminfo com.inema.capturadatos
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
collection credential_access impact

T1414

T1641.001

Processes:

com.inema.capturadatos

description ioc process

Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.inema.capturadatos
Checks the presence of a debugger
evasion

description	ioc	process
File opened for read	/proc/cpuinfo	com.inema.capturadatos

description	ioc	process
File opened for read	/proc/meminfo	com.inema.capturadatos

description	ioc	process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.inema.capturadatos

com.inema.capturadatos
1⤵
- Checks CPU information
- Checks memory information
- Obtains sensitive information copied to the device clipboard
PID:4637

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.inema.capturadatos/databases/articulos_db.db
Filesize
28KB

MD5
08f3e21d8347a7f41ac92ac2fdb43cce

SHA1
d8d4d634e7758b8dd109321f5557006b7a3ad30b

SHA256
55bed5914aeab30fbf41153d167d7dd438b4502b947f356ddde854ec3749acf7

SHA512
8472cbe9b3d91b78c46b77e76040fcc1b3f150668d28136274ba46e7f5deab28fe4648fab7c22d33fe6962df5f3a04fee51817e18530c1c306086192fe7aed64

Download Submit
/data/data/com.inema.capturadatos/databases/articulos_db.db-journal
Filesize
512B

MD5
6447625661d7b92e5b69c1b064bc1e34

SHA1
0069e36380e28f27591d872ec8272cf25afbff96

SHA256
a75d005d1e288e7676a51b1c39e38d17c3c3b0d6e4e08dc444c22368ec266ae3

SHA512
97bb7d92d93693f1710bba812c14eb7dcde04d04d4428f8a1361c123225762c4f4b97db11793c16de0e9111ef93b9a71ad1318cb1f9acbb845263556dec83ba5

Download Submit
/data/data/com.inema.capturadatos/databases/articulos_db.db-journal
Filesize
4KB

MD5
9a14611501b199a92f7d9204d80431c8

SHA1
4500f22e987e813e5bcd42aa80e4cc96be9cd883

SHA256
182aa68d329f96f2f2e85c1edd44d58bf736874c93d1c09abcbb15bb00e1d1e8

SHA512
81ff9b11e08087b491e1b5bdeb343b88ef984fbdb700c90a3c2e87093db8c77601db11f5b92676fdde3e644f550b043239600bd510e72508d99d7a59d946ba8c

Download Submit
/data/data/com.inema.capturadatos/databases/articulos_db.db-journal
Filesize
4KB

MD5
d68cf585fd9de03069700ed5e82be513

SHA1
85d8ba5950ac2ffd32a629b5571a1232d600035a

SHA256
772d2b4e9554696c318fe32fb1028709a44757bf07aaae12d44dc631c140cbd4

SHA512
2e696dccf63b52fcd78990913b21a86e83bbf2f30cee26be4faaf04f0dcae1bdfcf8c24a6ec3c20deb720fdb24b53bb1174fd163a8a72de2e7be2afdf3d21363

Download Submit
/data/data/com.inema.capturadatos/databases/articulos_db.db-journal
Filesize
4KB

MD5
f6333f67aff7038f086e7e52d4096ea5

SHA1
3b3f5f221716a8e94fd03366ea47d6dab61a84ee

SHA256
6b530a4fb1d2182103426c4af7d13aff5d0f6d8cdf91ed409dbad54d3b9c1850

SHA512
741ba3a2172ebdbd4b5cda15a7d4f6e0b407dc6ee4f48c0f47085cc01683f86e73a265596eb74b8cbe14b3db7a400ca07d7756f066135b84d121491b733c737d

Download Submit
/data/data/com.inema.capturadatos/databases/articulos_db.db-journal
Filesize
4KB

MD5
331f4d01d385ae8f76235b06783f401b

SHA1
7b61beb26aa370f786d6c05c76dcda3c54f65c54

SHA256
14172f58a5e93976b134385d9eefeaee21a53b86b8a5ee7f7bd6f7edcbcaec15

SHA512
4babe42796026d79d3525c3c2400a1d522e0188a40de8c0d6719eb1ca95ba2d743bd6ca6b217d9ad2eeba45d601f796f032abc17bfdecdce9d8553696d8c6bde

Download Submit
/data/data/com.inema.capturadatos/databases/articulos_db.db-journal
Filesize
4KB

MD5
ae809dcf3ac06749e4d4a6e187a2573c

SHA1
cc2da139feea7a2a07517d45138ca39d65ff2a8d

SHA256
4a2288b2aa4e301e44252de1a1f67ee30af24e7a8cc62a8912235792a723b50a

SHA512
49ef33047055e37e7fa36f9d178cc12fbfb7e7744d7049cd7ef129951837634e90d27f1ba630b38ec1bdf866fa6883627a6dc30f9cea15d11b85a5e527afb016

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads