d7584a2d7973bf891c292569da62bc0b1259bf0f38fb7c9b5ab319d40be99f3a

Analysis

max time kernel
47s
max time network
150s
platform
android_x64
resource
android-x64-20240611.1-en
resource tags

androidarch:x64arch:x86image:android-x64-20240611.1-enlocale:en-usos:android-10-x64system
submitted
23/06/2024, 23:37

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

d7584a2d7973bf891c292569da62bc0b1259bf0f38fb7c9b5ab319d40be99f3a.apk
Size

2.2MB
MD5

e33fbb181f5823cb588844b08bf0a63c
SHA1

a2d1bb9a04c188af0dfcea9a9e558cd9f2e760b3
SHA256

d7584a2d7973bf891c292569da62bc0b1259bf0f38fb7c9b5ab319d40be99f3a
SHA512

06cefea2abddfe3e9e6eb3b386a922a124573e75199fb25390f30d81d5b4585f755f355caa1f304a6f471166bc0bef0187bbd31c922286d8e67655cf12538b4b
SSDEEP

49152:cPEZz+OrKSxlubRZOPeyPpNtttttttJd8yRDErpEji23NnYVxkS:cPEZyuKelOM98yNji23NAxB

Score

4^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	dcom.jhf56.j8wj

dcom.jhf56.j8wj
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5117

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/dcom.jhf56.j8wj/files/profileInstalled

Filesize
24B

MD5
2fa33b0af20e7ee835829f862fc60d8b

SHA1
9f4651614606a65ce7e72baa19ff68bd94929043

SHA256
53b04d275f19bffc930e456176721c382fb1643e28178e412702b93ae308cd03

SHA512
9cd9dbf9f6db5a0b7ce5efff2693d4b33af08df6ea8197b3db8e37f068dabb772d0eefe683f625913ac21d6d8165cc8444eeb9187df538ef505a142ec77929e8

Download Submit
/data/data/dcom.jhf56.j8wj/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
0c55fe82531081db6557f52f8e04174e

SHA1
13855a53e4e2ca828f9577c7be7b71d58f15d088

SHA256
b494e9597ada6ddb2cdebbe940d88089254ceef4860b39275b9f78966e04ffc0

SHA512
fd371f6670d6cebde0ce03afa74be7005a70fbd958bc940c4f48a247ecac7d86343c1118890eb55b464cc199c291f9653885712a408ce81f209d9c16d304abe8

Download Submit
/data/misc/profiles/cur/0/dcom.jhf56.j8wj/primary.prof

Filesize
1KB

MD5
b4de503b6d74339c7db8157c6139fa8b

SHA1
083cb958e691dd7f6dbd1ae6de6c4d9653d7aed2

SHA256
dfc42c0e96e567e3ffb8d0aabe2c4721c62e2eaf869d52705f5c6e1c0687a01e

SHA512
cfe95f49266ba7becba2884e95742668e1a49cc64206306de60a54914f7055f76fe59237fece4e6c2f9c329a415d435e77de8991fd6d36b5f3c4efd4b94a2e01

Download Submit
/data/misc/profiles/cur/0/dcom.jhf56.j8wj/primary.prof

Filesize
2KB

MD5
dd007c597028a496c1eb9d03a6077027

SHA1
9b37cf7b7fef2a72650d5b5aae91f83e2c2a6a84

SHA256
d72de05137397986141cf39b5556643c13488904e91b2f0757bb85421f44065b

SHA512
28c86bcaaa2d1ecf32d1ed0308271531b4dee6a3e074538eed7ba1cbeab0e970fb7f115753b1337e1525fa5b980ab2bb1c7fd37d2f10bd0edd16d7aa9007f4ef

Download Submit