Analysis

  • max time kernel
    126s
  • max time network
    171s
  • platform
    android_x64
  • resource
    android-x64-20240603-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240603-enlocale:en-usos:android-10-x64system
  • submitted
    04-06-2024 09:31

General

  • Target

    e-digital-kyc.apk

  • Size

    6.3MB

  • MD5

    f17266aa3517cb2353c477a83a48715e

  • SHA1

    1a85bb4861ba9d99aa9465082496f7c092c7ae84

  • SHA256

    de40a7bebe5b903abc30d2b028899afccaae9d6f1dc5c5e82424f16b30877c6e

  • SHA512

    63456f8374ff711b65943cf27b1fb2b8d4fb007b73f35f5f4639c5e126cd7a87a97d1cf2b272c6b993f2415c2a446fa54eead2c97bbb4cfcdaec66defb220437

  • SSDEEP

    98304:CgUfkcgSvyVSBcqX5d2ZrBD+k9Zm4yAJ53oN6xPNDhRT07JjrIwcr0/j6nA2tzP0:SfkKveSBcP+8gc4ItND7sjrIwcrY6npW

Malware Config

Signatures

  • Removes its main activity from the application launcher 1 TTPs 1 IoCs
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
  • Acquires the wake lock 1 IoCs
  • Checks if the internet connection is available 1 TTPs 1 IoCs

Processes

  • com.edigitalkyc
    1⤵
    • Removes its main activity from the application launcher
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Acquires the wake lock
    • Checks if the internet connection is available
    PID:4948

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.edigitalkyc/databases/com.google.android.datatransport.events
    Filesize

    56KB

    MD5

    cae0c8c4b4f9d4dcc4d80231d65b54fe

    SHA1

    6a95c64d6445ef88bb79fbccfee27b2cb857e892

    SHA256

    ef30a022a17f8266d1c59086399295f1fd86457aeb9e0fec094f1b27e84e64d3

    SHA512

    1f9bfd945e8066f7e2969284248d8928e503e96d184d4b6976dfca92d774b0a3ec8735ebe2b44449f5ebaded12e83602888286717b93a490416b59efde5e60a2

  • /data/data/com.edigitalkyc/databases/com.google.android.datatransport.events-journal
    Filesize

    512B

    MD5

    41a73da31383b0195bddaaae004317d8

    SHA1

    2c5f7e0ac1724bc011948b2cd94da948a2eaf614

    SHA256

    80f8f14e4c7d6219df6b68834e2340a42025f000bca5e5474c09a34845d8509c

    SHA512

    6b92cee14044fe540394fa1f57816a31322a70e3a1d7a4ab7472258c641ae899055f4ab6bba67de00a9b51dd576382d009e080ea4ef2f89d3a0079e6e4d17d45

  • /data/data/com.edigitalkyc/databases/com.google.android.datatransport.events-journal
    Filesize

    8KB

    MD5

    a7e1321008528ff82cdc9c8d5b7dbcc8

    SHA1

    7d0fc18d30484334b3ab7ff1432f955125c0b3e7

    SHA256

    559e8229d2409e2c89c2dcd637179b72adbc03a04f4487248437bc2a8cec3fde

    SHA512

    303a81dfa408ffeb592e3c0bcf218e71581295e30074a4646fd33d76883f50679517620a55632a6df5dbf3487999671f73199626113c1f3b8ecf22b02bac5258

  • /data/data/com.edigitalkyc/databases/com.google.android.datatransport.events-journal
    Filesize

    8KB

    MD5

    b930fe2a288274a9df8c0d42f68e1795

    SHA1

    35f1e112a81684ddd9ca82f961336725fb08ca79

    SHA256

    47ba04b2edab1885fbd2df59739e44c9802d63809609d039713ccd57ae40bf3d

    SHA512

    d348f3549067df8a965fb8cfd122daee772d6fb631cc58c137a5c798bbcd60cbb51307b1e15e851d9fe564a556cd1ea3ceb895dc98e5a5363578edf787394ab3

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    4abef7060501f17357039fa858d8925e

    SHA1

    2f12e6a0f0b20c8823c96592b69a0f611a0aa792

    SHA256

    dc4e9c957b9a7bbefa14a8cf7e66bc74b15401fd95aed0fa18c493aad251018b

    SHA512

    e59e7f65f9f4fc92259fe4e9ab0f9c0b38e779f9f79ec197a378197992d7cf691c4278556f76e5f3aac0fa9c5af19e04d80fef10dbf743e89aad4ecfc738523c

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    1dde3361d1fb24aa3a1e3968a83aa177

    SHA1

    ba772a6c98bfed5aea397fbb7e8a03e8c6f37e1b

    SHA256

    85871b8951b389a4062ae33f1049812244c753bdf576b5690844ebb22b79ce30

    SHA512

    39471f2f2f361b0c92cfb82cc2dc2a77b4579ca0e60900279b293703e660ff67b956c7d970fb848b2ff81550e356e5b1d74cde69ccb43027645c83987a38b3af

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    e3f2d2966e8513932713fc534f462df2

    SHA1

    c14be526015230b5dea8952422afb6df8869fd31

    SHA256

    8b18e82f29059944bbfcd62fa8d9625424eff97882ee2ec133fd277e86a7e398

    SHA512

    bf18962f82151b141fd17d98ad049c02caaa03dc885d2526900a692669e09673b34d7c7867a1ebb40dfd62f3c46e9212d12f0bd64bfa74f74a663ad13f181162

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    f8c4235b3a971719417693d1349a66f7

    SHA1

    c54718c511c24bf9031753f413a9668d87733d72

    SHA256

    c139797a60f915f06b424dbab41a332671acbac9bb0c216324985e1291657108

    SHA512

    1317ce18abf624a3adba658c68e45f2cbd9c4e868e4d88336f83eaf5eb939c5568cc94e212c687afa22c713c96fd80a10fc3f47db19c7ee3d4ccc33e1e0bfb46

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    5e09e05028698be0813d45d62d9ef8d3

    SHA1

    a771d67116c78bb02f88429080d4453858104a1e

    SHA256

    75969cec85b7c9470746d05e45bff119acdd61c5fc1d9c1d3f7d3d8b048d28f8

    SHA512

    7f7a97b62d04f4a5052b2ba21722e136c4792a30b5ae4e1c10ba9aa99baccf8cbb15d8ee3acea0cea035eb3c9bfe413e6eee59fae4e54f1d828c631e059c54ee

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    eb52a90bb70b76e946b62f50b6f7fb85

    SHA1

    42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

    SHA256

    48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

    SHA512

    b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db-journal
    Filesize

    512B

    MD5

    c99246dd3ef5b361c5de0fe95efbba6a

    SHA1

    ee7eb39478a19a1fbae73df12d0733f227a214cb

    SHA256

    c4e37f2a60ccf6720f204198851b3d2ab022753dcaa4ef07d120e5c8419b36d1

    SHA512

    707b907e56dfe78bd1708c1603e13806d613681b416b538ccfd02c2e7a505de25446a7c801644a14c4df1a866072ccda3d85bd395ff40c5f48d00d1f9f0130bc

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    4d140f80c0333fe3f05948f36eb74168

    SHA1

    1ae286d0e9e5c429079fba78bb8dcd54af46c27e

    SHA256

    effba100e70b48642146bdff7669df776e98256821ca80fe02e70b6ba80e3e94

    SHA512

    23d2d9c95a9605fff6e3e8d7b6d1a59d4a09a0d76cb1bb576023e75b8487fe8da968f8b9947f43f445ef01087be93d6038206ae070252c4531b3c6fae1acd7f2

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db-journal
    Filesize

    4KB

    MD5

    f894b38d66abcb5517c7880af86fbc50

    SHA1

    859dc619e5a052f7e48c4256dae42d1fea665aa6

    SHA256

    7490ea5662a514031a24e469c4ff4d415be9fac2863f04c47ea55e0dc4ce4797

    SHA512

    48ee801ea7091192e30f8cb564edde2449a080d33b0cae9df74020fbeeb4e7c8ea62564ffccdcfb91ce1287b07ba05f30aaf45f95c041900cc24d9384a9295b5

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    7a965efc2a117ec11aaa4e682287d83a

    SHA1

    05882015398ec342e273575a460ece68a1a80fef

    SHA256

    31f5b0cce9f068131dd0e0954312aeb728fcc7f1e1b48a7916cc0fa7d0773684

    SHA512

    afce2fc0c0a1d43ba05b04467ed69fd79c840c93ba0076940b328018c2b92c8805842c0de8b74d07aed9aadfe7b88f6197a85bf67b20c22c1620338a30352fc6

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    07beb9f00ade176ec30ef481e46e2dc4

    SHA1

    fa3b738577e9b04fb08890aa98a8ea73fd87b70f

    SHA256

    a17d57b3dfa2b9fa53989d545ab898e8ecd16c665d5b90e1af47bf62e478cef8

    SHA512

    461e74b4b9ff7b2dddd4ff42bd1ae61a8bc7be66c52bd2234a6babe54d1937365720fb7d45594072d13856b74a7f78bbfe22af19a25c357bd388236046d0e1bc

  • /data/data/com.edigitalkyc/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    adec1b2bd66c7c1eaf53f3450b9eb378

    SHA1

    ac9671fa7c91f1c7e478c9377972150cce10220c

    SHA256

    a7bb7cdbb30c5d0dcd900870577d6eacd43ca0a9d9263686105eb0c9b1e545ee

    SHA512

    bde24fe531dbf147692ed1c42c6a131fdda98af3e108af9625945f6927569ec7d7edca57acdcc2b4d19c1fea348661a4b049a5f6d462ad374c14641b4cc5f898

  • /data/data/com.edigitalkyc/files/PersistedInstallation1546034009156250231tmp
    Filesize

    569B

    MD5

    6bdf199f722d84d67948a3cbdfcbd171

    SHA1

    1282fd6a6ed7d821e613b167b3e98c33b5dedbe7

    SHA256

    cfed0c1f9e2c8d8605b3f3799ec49a5f4cd297a7683cd2ff21212b30911b3783

    SHA512

    4f7610c82e5bed873e9b8f892205db4b53db693f91812f3d23eada99ae23fe298e7dc7919bfce1ac1a67f89bb375e7fe677985a2d0b00c92253f3070c7cf7082

  • /data/data/com.edigitalkyc/files/PersistedInstallation8255441122940439630tmp
    Filesize

    90B

    MD5

    3e62146526e167d9e8a93920f2e85d22

    SHA1

    83b681404d29658d1346940ac56f19fcddac4866

    SHA256

    876aaeec2c11421f37f7c44fd6208666234c0e0363366d4b6acdceff0c0a023d

    SHA512

    6f9d2cfac6b23a92518dfc5ae5e9f048ce530717d6bd57b6d7665c4e5f8d64a02a6918bf3347bdb6a0224e6ca27b0353a6b7d72cb4d2515aeee06318e31c5e4f