5362c4098cd54aadae2ea1fbc15dfcc0b7af75dcf220ff09d30bf65dc7a06f74

Analysis

max time kernel
7s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
27/05/2024, 13:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

com.duarcanum.todock.release.v10.apk
Size

1.9MB
MD5

819b26248e5263c1bba6a924ff79a3dd
SHA1

97b25dbd40121a74a194c6b551ee67182f99b562
SHA256

5362c4098cd54aadae2ea1fbc15dfcc0b7af75dcf220ff09d30bf65dc7a06f74
SHA512

6166220946d98b4fa3dcac8202cd13b899f6cb488e6caae877cab58d925216fd75799c148e6219bf7147315837c071bf5a109cbbdba84cbdd62aeaa7d14a7536
SSDEEP

49152:U10VMLG83qVsThJDA+3Ux0ESvUKNfQiFlHGMg6T4:U1OMLG83zDA5W7vUm3Gv

Score

7^/10

discovery persistence

Malware Config

Signatures

Queries the phone number (MSISDN for GSM devices) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.duarcanum.todock

com.duarcanum.todock
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4251

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.duarcanum.todock/databases/client.db

Filesize
64KB

MD5
828f15a7d5475ac0ef4ff5a125229cf3

SHA1
c77d540d5044c396e221d48893044136cd5772ef

SHA256
18b96bc2284c0446be817ce4490a7dba69edd4cd8525b4645fcff84f78d06547

SHA512
5d819563a241aa97dfc471ffd4c2775140b0365eecbe9e7c746044e090997165612509bf5f4af787f164ff9b1618829a0714581532782d2889d0236cbf00bebc

Download Submit
/data/data/com.duarcanum.todock/databases/client.db-journal

Filesize
512B

MD5
ef6bfb91e23273c6c2b69fe025140b7b

SHA1
aa47ad7b6436fe6d73479c55e6f436bdb6be924b

SHA256
a670b4dd6e01cb68408c273d30532e9deeab02e901ed32bc3fd5e80886b1b31f

SHA512
40922a2faf1e29e59c555c10a14d2b0cd8a5095d6cef4ae3e60c25fe0177ebf1c7799fc08270230693bd4f78831b4e2f3ab0d12dc55ac176e49a252cf5dfb1c6

Download Submit
/data/data/com.duarcanum.todock/databases/client.db-wal

Filesize
76KB

MD5
1196ea46ee79cff08e5cd3e20b49c0e2

SHA1
09c3f9eef6c359355351a72ffcc14f6cc22fb137

SHA256
91403f0e5e9358751bf0d9f1a2751eb840c9350e8a85e6c707065361ec0d20d6

SHA512
8d4e225bcf778d9680da1e68a625a1abf64d89393c58e2032406f2a848c04b69b9fb8af1ee2c8ef2c1686413c071ad2ccd66b0135df502dc92174ad15c0a7ef4

Download Submit
/data/data/com.duarcanum.todock/databases/todock.db

Filesize
15KB

MD5
28f60607ef52255a2adf4497a725f602

SHA1
f46b3754abf9151438dd3f53cc265100e9121934

SHA256
de063cb7016e13f4a449fa4745627f7faa84ba8b7233c6e6c838e2c10ca20003

SHA512
8e387568f14b16a46dd4269ac253fbd4ef485814d18154a6c2958caa62ea53ee9c50281f0c8c3c15671cefd2283a69c80a600f3eec50d02f42ab6ad344cac395

Download Submit
/data/data/com.duarcanum.todock/databases/todock.db-journal

Filesize
1KB

MD5
1208aa32d6e923323519adda9b9dfc70

SHA1
33e833636127286482dc292d055796b17bcf304f

SHA256
45ee4c0fafcb9690920787a2575849bab06cce7cd7cd0ac629892dec2c063314

SHA512
88ee32622a9d3102fc88e60cece603d63dd2aece59c9c4f10408627898d71fa9aaeae1bd943fa551571f30f16b6193b466d7e28833bbc1265aae52d8bc6455e5

Download Submit
/data/data/com.duarcanum.todock/databases/todock.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.duarcanum.todock/databases/todock.db-wal

Filesize
2KB

MD5
f674c6b8296082fc8182cde2687a4243

SHA1
e7a1bbe8c46dbb18072549e3bb78e995be8076f7

SHA256
f440d67c6bc59c2300a5459aa0cec1044fb0c360246f3df4185811fbb239d46d

SHA512
1bf928a00b45339aada96c2a5a4f610c9d6f69dadedfc0030cdb6cadd779641b126cd6555c6ca2ddcaa27dc1b0b9f7b05d0073917c8586b88d7ffab676699ce1

Download Submit