Analysis

  • max time kernel
    25s
  • max time network
    148s
  • platform
    android_x64
  • resource
    android-x64-20240611.1-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240611.1-enlocale:en-usos:android-10-x64system
  • submitted
    15-06-2024 01:08

General

  • Target

    0d2521fe4a3276db3b4046c4c75f37aa1b7a011cde53a129c7c2a0e70e5a2470.apk

  • Size

    3.3MB

  • MD5

    79b00e3e8645541c5ac4fc43f13d21c7

  • SHA1

    b50824a56fb4c089e4478b0f9faef94564fd8827

  • SHA256

    0d2521fe4a3276db3b4046c4c75f37aa1b7a011cde53a129c7c2a0e70e5a2470

  • SHA512

    1d29240a9baa248d03e1463235d7285653d25856631c3a09841acbc1d0d0d54c57f6dcd67d214c3fe019d904851b0297dacb274b8efb9ddf47349b6da7c6a806

  • SSDEEP

    98304:aEvOX6y4Rwz0PT7nDQvauCfopjX8bsp07cz:dOz42z0Pj6mAxX8wuw

Malware Config

Signatures

  • Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

    Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

  • Queries the mobile country code (MCC) 1 TTPs 1 IoCs
  • Checks the presence of a debugger
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
  • Checks CPU information 2 TTPs 1 IoCs
  • Checks memory information 2 TTPs 1 IoCs

Processes

  • com.iuuytoonline.android
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks CPU information
    • Checks memory information
    PID:5005

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.iuuytoonline.android/files/profileInstalled
    Filesize

    24B

    MD5

    fa8bcd94877a2e26ffae71fa2f5ab053

    SHA1

    9e2a86846e39ad7751c74220c108d7a35b5af1c4

    SHA256

    d1f967223a0bf38747f35e358baec32c1f05719ca77651d17281f016072bab52

    SHA512

    587447917ccefa0fb43165f1028207bdf00b717d851d01738f12c6579adc3fb9281a67cdcbd65636a63b717c1fe11d8d7e4311b1265f63c3083c4caf5c9e8273

  • /data/data/com.iuuytoonline.android/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat
    Filesize

    8B

    MD5

    019b96f99894040a77bc15a36b56daaa

    SHA1

    1d3818fc0b392634ec13f27001dd93ca2822d06e

    SHA256

    dce018d7fe3d05f43cccacdd966bd0e2918b281e969d1ae9070ab384649e7f56

    SHA512

    8d237301de988b80e690cc79040a535f1b1597b0932dcb129f3a9c33c5e7ace798b87bae06d755d6f968e5ee442319ce079768ad90529573c7305099e2588d71

  • /data/misc/profiles/cur/0/com.iuuytoonline.android/primary.prof
    Filesize

    2KB

    MD5

    d5091ec8d20afb57a356d12d5c359463

    SHA1

    8424c143a9f4ea90bd6f443380990714967ba02a

    SHA256

    91eaac3ec4b7fafa203b3a866f1fc44e78effeb8f8f4d28baac919d6696f8ca3

    SHA512

    99298ec40df37b6c41173799dfbb4e3b4b7458bcd9c9d45749783d90926ab52d13ba087678fc4bc4adef338bdf67fc68b454bbb4c6209bc81029e918e1157404