3d0905a83af9b9023dafa5e810c806b5c092e722e23e03729d46f04038fec450 | Triage

Analysis

max time kernel
9s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240611.1-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system
submitted
12/06/2024, 16:15

Sharing

Report Analysis Logs

General

Target

3d0905a83af9b9023dafa5e810c806b5c092e722e23e03729d46f04038fec450.apk
Size

720KB
MD5

5d93fc584a6a1965b1084e1ccbb05f0a
SHA1

b7f6dec62e0b19ee8408e346ea78e08dc748479b
SHA256

3d0905a83af9b9023dafa5e810c806b5c092e722e23e03729d46f04038fec450
SHA512

8d01662725606f58c81acf85e8eb1bdabc0f58e4c677c05f4d27a158f53f6ace5c1f882d833236f17aa47beae6f8b08730f144e73f791186b4eec1f8376cbae5
SSDEEP

12288:4Y7m3eTXBpr4PW9LtSPDUw4gpim/F+8QM10kMAbHduTxvycjbyS0M3vxMbU:4Y7m3eTBppi4w4gc+Gc0kpbHduYKz0gJ

Score

7^/10

banker discovery

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

com.ku.installer
1⤵
PID:4271

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

Security Software Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.ku.installer/files/profileInstalled

Filesize
24B

MD5
66338e42c09265f622daa3837d2e6612

SHA1
149604430ec89818ee74d09d68da454909c5f9ab

SHA256
21bf328f522aaca0b519c35e409b68275c7d3014f89f7affbac3248474210116

SHA512
ae59b428c8608c38ec9efd151638eb07def0c55d2a2f78592be96c03e45d17811b9e1ee1e439a9a830b8f3697fa4bd25c2fd80ca6f4b0e0c3e18d41752b2ba31

Download Submit
/data/data/com.ku.installer/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
ccdaeec2e67dc0929cb922b571c38ef3

SHA1
9be3c83c2ab9c2f6e88ebaff0b170b78ba1ce237

SHA256
7870f35c7fe08b2eb0102ead13b6095ae59d53d1ac73aeb6a9eec31a3982165c

SHA512
eb4115e78a6653920d718b33fa3b1381ddd836b8e413008a24651b53f13e8a12512bc7146a8446301c7fc49679b2435ee5e3e71342fb4edf6092442a3aa02c9f

Download Submit
/data/misc/profiles/cur/0/com.ku.installer/primary.prof

Filesize
465B

MD5
99dae73367e6bd284891b60b3b26c2c9

SHA1
39a1f61bc8caf06c1d47846064d352261fdd37e7

SHA256
857c4f52b34f6c55e84e98b8c45c506b3bd3780bb84b7c30a043c9005465e314

SHA512
6b4a8d853e771dfe7cb3c219e2e1c5272b4e92959bcb3ed8dfdb11eeda39adb88d0506e570f27ef3641e68537686c8dd2a6accd51f867d347fb95093f98e0552

Download Submit