e1951d1b27faf3da7d09d5a618451caab02bb9a2474d3925770d0d3538349433

Analysis

max time kernel
9s
max time network
147s
platform
android_x86
resource
android-x86-arm-20240611.1-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system
submitted
19/06/2024, 23:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e1951d1b27faf3da7d09d5a618451caab02bb9a2474d3925770d0d3538349433.apk
Size

2.7MB
MD5

25a0d11ca8d5bae4c2c17938ffc5e91c
SHA1

1ec189a84547b9d70deb844fd441e5c600e4689b
SHA256

e1951d1b27faf3da7d09d5a618451caab02bb9a2474d3925770d0d3538349433
SHA512

1b004357941cb6cc3a5c9234fb5041350dd0a2ab55081a727f0325e0723dba6342b2ca399e4b704c228b39af7b4cbaf3dc241dacc715c445c2d986b07c7477f0
SSDEEP

49152:M9L5yDR0LrlKEfeJmtrtttttttJcRcg7uuvUpwQhoTwrLP1hmbPB+:dRWbXtAluHoTwrLP1uM

Score

4^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.Auc68.wp73n

com.Auc68.wp73n
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4167

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.Auc68.wp73n/app_sslcache/au-3-d2e68-default-rtdb.firebaseio.com.443

Filesize
8KB

MD5
63428fb29155da75ff44f7949916e263

SHA1
6cb2159d26565b2680b1dd0cd7673e242a1d779a

SHA256
0657ed3beae38143e1884bf2c8c85e400ced9873e47d9e283526b1fc09b39627

SHA512
1a5ddc269aa7477c6df4fe77d6e0f3ba724b7c0384fee35561932a36414825aa091ec52b73182176e6431bef4b64f53079df03dc73cf90960dee13ee0d029a77

Download Submit
/data/data/com.Auc68.wp73n/files/profileInstalled

Filesize
24B

MD5
90fa7650a02dbb52c55fcd049957e173

SHA1
c7103d17703bed3a19ea63f162f93750d8e776d2

SHA256
424c9105ca7c7654d3ad1b11859fbea01140fb3fc7b83c0383b3db1ae27321eb

SHA512
277d8d9496ece687ceb73b19c5522a85493c1d98b67d8012c51aa97577b39acc0de3cfdfc7040942b07301fd2228b6babeb1435c8f29725f7cbf79327c75c14c

Download Submit
/data/data/com.Auc68.wp73n/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
ca848fb5f33e08c7ab1965757dbefdf8

SHA1
993fff67dc1ae6b01b440659b7c634ff05d16170

SHA256
6b5232e16199afea07e567139112790a1c87e8c9a1806519592b3805e51c6070

SHA512
c30cceb8f509f220b82e6bc32b83bdd0c3ceed230439467e6b68f547008bca3313572211b294cd085a71a3ea1538560c715f1d442692e68c95abae665ed11c6e

Download Submit
/data/misc/profiles/cur/0/com.Auc68.wp73n/primary.prof

Filesize
1KB

MD5
ee21b428b36c6a30cc5b84c815d4a9c3

SHA1
52332a1869fcf4dd92c6f41118c7ba35588e014d

SHA256
7782f32e783b305a197012d90b2ccb0c6144d9060d57c650249e9552665ba635

SHA512
ea658c403482ab84b3407adeda2576fd4ad7b45a9bb29b7b6f515050b2c55dad403e2daa17ae7c853a6f7377e1f6d182edf9e278f2be0bfe3fcb0df87119fd3b

Download Submit