19e20c9809cc61b1d4231cb0c3156b1a12b7ec14f9825e9fa2f8fd1eac359c08

Analysis

max time kernel
177s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240611.1-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system
submitted
16-06-2024 10:32

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Flash-Browser.apk
Size

1.0MB
MD5

fa890c9400cfc5c3d96ecbbb46474daa
SHA1

cf0ce6fa8d5d239a3ed75ed30b7b4b21143837dc
SHA256

103a5aab1fe5ea809ad10bf9a2bcfc1bcc2542ad4cbbe894e67b536a8700f134
SHA512

50d542c1594821d01ad8ce6cde37789d34ac677c61de59ba44b9f98b46b9068ed1a1a1d36d4e6872532527af47289667f7650be6b3b4d3a7420ad3dcbabc3d91
SSDEEP

24576:H3Goet2CUaliwt73v8GLRJINNrkhocABhJLkHOOqNjc:H3GSCUq7pRJANwwnpm

Score

7^/10

banker collection credential_access discovery evasion impact

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs
Runs executable file dropped to the device during analysis.
evasion

T1407

Processes:

com.tech.browser

ioc pid process

/data/user/0/com.tech.browser/app_ttmp/t.jar 4678 com.tech.browser
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
collection credential_access impact

T1414

T1641.001

Processes:

com.tech.browser

description ioc process

Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.tech.browser
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

T1418.001
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
discovery

T1424

Processes:

com.tech.browser

description ioc process

Framework service call android.app.IActivityManager.getRunningAppProcesses com.tech.browser
Reads the content of the browser bookmarks. 1 TTPs 1 IoCs
collection

T1533

Processes:

com.tech.browser

description ioc process

URI accessed for read content://browser/bookmarks com.tech.browser
Queries information about active data network 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.tech.browser

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.tech.browser
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

T1471

Processes:

com.tech.browser

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.tech.browser
Checks CPU information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.tech.browser

description ioc process

File opened for read /proc/cpuinfo com.tech.browser
Checks memory information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.tech.browser

description ioc process

File opened for read /proc/meminfo com.tech.browser

ioc	pid	process
/data/user/0/com.tech.browser/app_ttmp/t.jar	4678	com.tech.browser

description	ioc	process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.tech.browser

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.tech.browser

description	ioc	process
URI accessed for read	content://browser/bookmarks	com.tech.browser

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.tech.browser

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.tech.browser

description	ioc	process
File opened for read	/proc/cpuinfo	com.tech.browser

description	ioc	process
File opened for read	/proc/meminfo	com.tech.browser

com.tech.browser
1⤵
- Loads dropped Dex/Jar
- Obtains sensitive information copied to the device clipboard
- Queries information about running processes on the device
- Reads the content of the browser bookmarks.
- Queries information about active data network
- Uses Crypto APIs (Might try to encrypt user data)
- Checks CPU information
- Checks memory information
PID:4678

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.tech.browser/app_ttmp/oat/t.jar.cur.prof
Filesize
462B

MD5
0db57f13cc657f373ff7c9572e6cb5da

SHA1
b69472b5e275a7315a60132ae3ad92a04a1458d5

SHA256
c6f99b792360d915cb4b06ff202df1bc47426cd30c4dc11a74e4a436e706bc6a

SHA512
eb242fc39698e7b10356b822d9e808723c73a555d843d895cdaa4777a3abbf6be078d6e6c6f8206fef26ba9eccb0e732b402dcbdbcb6c872f5e11be75095c7a4

Download Submit
/data/user/0/com.tech.browser/app_ttmp/t.jar
Filesize
172KB

MD5
39f7c5d4a7962708aa7d98bf2fadfc27

SHA1
cb348f750596b2e54705eb7d20b9fb2cc9d8807f

SHA256
e303dc3a3e31e4d525840e20486b6a99821e330b75c11e61c0f78d56f5dd9558

SHA512
55267b2721b056f9dab24c9f29df40db648cc3bd2eef0f4464da5545e6540f3f18cd8cdd9b7e7c77fe7a4fe37a08eb1bde482edbdd7eb364dd840f7f83740caa

Download Submit
/data/user/0/com.tech.browser/app_ttmp/t.jar
Filesize
172KB

MD5
cf9c7fb39d30b43019bfac428a3269ab

SHA1
912d7b2f83d9d0eae24d5b4cf1a5033cd2b8a283

SHA256
9031644073855d5bc7ad4ac8f211b472c7b52b8a5b743e85b40d1864f95a09af

SHA512
2450ac53f0f2ecec5d32ce0fb90ce4ed051d25319965d6758d90e0ede8cc813d445911e7511f140510d3ed19390a1effb9c1758861a95cecde8760abe127590f

Download Submit
/data/user/0/com.tech.browser/app_ttmp/t.jar
Filesize
363KB

MD5
71f79ba9526f0b6a04ff423212d75238

SHA1
ff505b3673f566a812ae925acc84157a1b6f34d7

SHA256
ab9672e93263e2459e8381f5216b8d8ce928c7bff5fd74cca8ae6f32977e557f

SHA512
b8df08dabb951a4881c0bb7cba6b80b76eeef9776fff51730daa8672f0afb6fa514b9c8bb8981b93db698698a83b77391e16aa612b55cf1150d6c18881aa2253

Download Submit
/data/user/0/com.tech.browser/databases/com.tech.browserb
Filesize
64KB

MD5
8f13ad1dd8e771ede171330192cd0b06

SHA1
24ff36095cd09b7024e8d2b833df0580182fb789

SHA256
9ce65a0c28f6e17d0e7a4aa90fd3540080858fd814c0131d07e101b91fd9603f

SHA512
d7a6d872c9203bd2ea597217bb8d8a7413a0fb5424e0b9d16d024412d4baa2b54d3798ebb5ea676dbbb4b865ba974b02b28b0ab1f561100769b4e0bcd56769f4

Download Submit
/data/user/0/com.tech.browser/databases/com.tech.browserb-journal
Filesize
512B

MD5
c74c5f054186d41941739fc022a7b756

SHA1
5a39969edb41b82f40ea5e64c702de846212c591

SHA256
e042733b4f8d5477955d8be12a21a926b420ea35d0eff83a894b8de2a8fd07fc

SHA512
24802d59bd73ba422224b2837dc2549b270080e7ad47db678eb7ef11fd728700e376f4e0530e2aa6293dbe99f67090aed5f21a035d548c02643b73eee41b5770

Download Submit
/data/user/0/com.tech.browser/databases/com.tech.browserb-journal
Filesize
8KB

MD5
a13a47347d4830f9c19e56b22f72bb1d

SHA1
e0b962ef6be531aec3420c322ad6af6587c02fd3

SHA256
3c8fecaa54a1fce57fd20dd7303d51f05d3b01542076049c44e4a2515fe9ac48

SHA512
7e82a11e3bccb5a25c8ddbaf79c59545101aa70953e09bbcd8cb06893d4da66d41344f6842247e15c3fe9cef069c9ae0e943bf10992db5340521aeae19cc3a2f

Download Submit
/data/user/0/com.tech.browser/databases/com.tech.browserb-journal
Filesize
8KB

MD5
721584ebdc42c6984ad2e0c4ea5c0383

SHA1
501247c118a53a7ae3d26ea1bb02ab5b2c5dbc84

SHA256
d4851c268256d0e37e68833c68fc3423613ce2a9d7d41f06c7f3193b9c846756

SHA512
6aec84811c3771caf67acb499210b8b70d9d125a174426237e199ab9757ab255a5e696712ed5d9c1c33e681a7b9b64ddb3625206f6ca97dc6d6eae9ec7b87e6d

Download Submit
/data/user/0/com.tech.browser/databases/com.tech.browserb-journal
Filesize
12KB

MD5
427435e940a0b1b27e70d7ef252bebbe

SHA1
44789eeda517566bb8697b83462988095d3e2ec2

SHA256
7215aee20b9f99264dbdcde44ccdbf14f166efa35b255c552a102fd2ca9d5a60

SHA512
cec211013ea83eb65fa89a14277eb30ff2396b1f5a994dacea1a526f4c3a93dacb5316177d274fa5f5fea301a23bc6dbe05fd97824fce729080a019179e95ed4

Download Submit
/data/user/0/com.tech.browser/databases/historyManager
Filesize
16KB

MD5
d2a0385b80b915e9e6ce698e186f713e

SHA1
b2791058088a849b5471a4e69d9a603f5a5c7d0a

SHA256
283af987aa07e691c6e2d66b9b7755a0d8afa25bda41b35d03eb272a8b4745df

SHA512
a16a8b492abb189d6292f1710fbb55a19dfcb0372dbd4fbe78d32a6df197437efeabcad2621b259ac5264c806e5289ca2d56eff567c781d7dfc9c160ac3af92e

Download Submit
/data/user/0/com.tech.browser/databases/historyManager-journal
Filesize
8KB

MD5
b22e4509913d4f393f8919db240f2138

SHA1
e482d4501f64f810d154eae2ca10fb4b29dec4b6

SHA256
02e0676a3516ba34f7714449e8495843459aec26b99653b122625366d1ff20f5

SHA512
b062127741cd453000ede6ca03ec483e343f9840c71013e4bc39cc63af25c33315813063c13234354c782bb34455a7f0f79b762f3e94e98a8dc3478ae203345e

Download Submit
/data/user/0/com.tech.browser/databases/historyManager-journal
Filesize
512B

MD5
d2f1c0c8fd10d9c156187c2e4ae9eda0

SHA1
cd7d8a78d9bb4173d52a863281541124cd05db54

SHA256
5454d00301474b559162feb6698b21eebddaa0ecd1d6f1a9e04e459bc8521b40

SHA512
11a5ec553aa1166150a5d5e0c11c61e6fdefe086ffc471d28058af4925704964e94258d09aacab595650a38f44f141ff4083fdf761676f599fcab89fb8ac8989

Download Submit
/data/user/0/com.tech.browser/databases/historyManager-journal
Filesize
8KB

MD5
36af76a42625fba6b54277f490a2739b

SHA1
c746d1f01a918bacf2356b785cc9aafec44737fe

SHA256
fa8cef2fb3350ad8bfbaa3dbf3e900fa3a2c0fd62780af261fe8a1bb7b932e3b

SHA512
8c6c5a73c4242231114a468f804348fa6f5cdc19cdc8652406de27951155edebf0cccc942bd5ccde4449de0700742222748f6404d65eef142a5e8aafdba849ca

Download Submit
/data/user/0/com.tech.browser/databases/historyManager-journal
Filesize
8KB

MD5
b4528177060de91767355a5c92bd7b42

SHA1
10b08f920f34016072ddde8dbcb936b84f60f7af

SHA256
34ebe864b966dfe963b3b954519a0df29a25a93719711b40fce1089628606583

SHA512
1a2e37fca690532298f41042a89e4a15fbff60bd7db579398c6f5a6d3c1903f425baf3949f91b62c6bbeb5c4c8df68140703f397d215e335c09f20579072e987

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads