Analysis
-
max time kernel
19s -
max time network
132s -
platform
android_x64 -
resource
android-x64-arm64-20240611.1-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system -
submitted
15-06-2024 02:30
Static task
static1
Behavioral task
behavioral1
Sample
e4d7484b888deceefeb17ee346821a0c9d3112dffd5ad57c71f4df7d304580b8.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral2
Sample
e4d7484b888deceefeb17ee346821a0c9d3112dffd5ad57c71f4df7d304580b8.apk
Resource
android-x64-20240611.1-en
Behavioral task
behavioral3
Sample
e4d7484b888deceefeb17ee346821a0c9d3112dffd5ad57c71f4df7d304580b8.apk
Resource
android-x64-arm64-20240611.1-en
General
-
Target
e4d7484b888deceefeb17ee346821a0c9d3112dffd5ad57c71f4df7d304580b8.apk
-
Size
2.0MB
-
MD5
71f6cdb3d8eebe1c8e7e26896238e571
-
SHA1
019134386a6d900d61285e5e986249928a9504b6
-
SHA256
e4d7484b888deceefeb17ee346821a0c9d3112dffd5ad57c71f4df7d304580b8
-
SHA512
740e8bcde7462b99972ea472ee0cae53f4f61fcdc6d9ca1c8c44d0661323178c891f7fe82052cd7bae7239d7a953a6dcdb5e6fc42b28cd4acc9e1634e284228b
-
SSDEEP
49152:I8FjWz5Kzip37zl3fg1S1RvyzHth1mFI1/3Go1eiUMG1VummJwga8TGi3U/kX1l5:IIhup37zlviS1GHoFW3aiUM6ummJwgaE
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Checks CPU information 2 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/user/0/pl.spyone.agent2/databases/database.dbFilesize
76KB
MD50379f2b646309bcd59a19760005dd257
SHA19185b00c3401321841b1c7edd10624a13c2dd47f
SHA25662c0d663334435c7b56f7ef5ee45ef1e1476f9ef39ea6667dd48962eadb0216f
SHA512387a118af4cd9315a8e5323b7a2b78e5214b0556448cdf6a68335ecda5615dfd0c1ca0313d8b355e8489980635319d90f2b7b25889b1e556c11b7657bc184fe8
-
/data/user/0/pl.spyone.agent2/databases/database.db-journalFilesize
512B
MD59a8adc00ebf635bb79221796329d7a7f
SHA189103d03c8e4c964a36d0eb34f0662818677391e
SHA256cc3024268a6fbc387d1a3cc0da2f566e31720417ac6a6e3e12341876e0e297b0
SHA5124e3baf3ab82951b8d2d4f46d3920c073397c3e0977833f58a03ce239293d932ed74120a5c26c4f1895083913dfdee0d333499d25dcd602702b4b8a661ef2697c
-
/data/user/0/pl.spyone.agent2/databases/database.db-journalFilesize
8KB
MD5cf868d8e605c632ab05a8c383a9d1cda
SHA159a81f21f2a3202d47ce6aa164f29babfd448af7
SHA2569096586432fb29a721603ba2b1f98bc83a078b9c6ca9682ce6c6d039be91761b
SHA5127b7377b4d6cb89e4b683f97ce5558d9df782e5b03bd49a125d24fba4a4dbf6b0b0a4f4eca63308acc3d883e2c7c946f8db56890d6bdb6f8b5952b4a8924371d9
-
/data/user/0/pl.spyone.agent2/databases/database.db-journalFilesize
8KB
MD513d48282f79093fe323f56b904adecbb
SHA19034770b706b2ba156364697face38a88640695a
SHA256b0750157d9f113b6004d70b143cf8bf8605ac5fdb47cee613411923fcaf97bdc
SHA51267cdcb741b80d5f82ba871e73dfa030e2c59c55f2c42b7a0fc6d4af5455d6de3f563b6b16fc84fedf50e65e87766aa7a00db5d9eb4590f0965f4beb40fc5c9b3