6630c40a76b544613b87286856d960af1196eac426f05600ec9e78c5e0438ecd

Analysis

max time kernel
307s
max time network
315s
platform
android_x64
resource
android-x64-arm64-20240611.1-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system
submitted
24/06/2024, 02:40

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

click-counter-free-2-0-3.apk
Size

4.2MB
MD5

1e552588d5bc5d85b96024fb50f98ca0
SHA1

d40f3ebf906c6d957b24c03be7773eeb6825c9bf
SHA256

6630c40a76b544613b87286856d960af1196eac426f05600ec9e78c5e0438ecd
SHA512

6f9ba0ac54eb9a74eda8dc5cb48c8535ca727641c20fa476b60bf7ec38e85dbd9068f15def6d5f84d67934a3a6766d985d063e8a91661f94a9273b9bb6ed35ec
SSDEEP

98304:FpE6LleFY+ozbZqzRCLNbPZPuh6aJUT6BeS2eaeoTgr9SoNO5:HtheGRzU12uPiT6BejRDt

Score

8^/10

collection credential_access evasion impact

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	digitalfish.counter
/system/xbin/su	digitalfish.counter

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/system_ext/framework/androidx.window.sidecar.jar	4470	digitalfish.counter
/system_ext/framework/androidx.window.sidecar.jar	4470	digitalfish.counter

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	digitalfish.counter

Checks the presence of a debugger
evasion

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	digitalfish.counter

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	digitalfish.counter

digitalfish.counter
1⤵
- Checks if the Android device is rooted.
- Loads dropped Dex/Jar
- Obtains sensitive information copied to the device clipboard
- Checks CPU information
- Checks memory information
PID:4470

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/digitalfish.counter/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
27ca90553454721fe401325a328d0e5d

SHA1
828d335bb39f279864f2207a4337018645cb44ca

SHA256
df14020ec0ee91a93e84be55db80c86451568af0dedea9a3db0ca5261e94b075

SHA512
88eab394279a5de664c3be38a1123f712f17e096a4c94e95b68411c317c9eeb894f7879e84bb441ae98d370903991a4649de8ce8457a53a1314da808de1a22ea

Download Submit
/data/data/digitalfish.counter/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
a6150c7197b0494d8e009735092c6932

SHA1
de1ac900ae2fb9b265f920a9fd1844fa0e9221f2

SHA256
0dedb51b1a6d178d08b827adb1438ff608170e3c137e19aa9492154489faf11f

SHA512
6e8bd47567cb18f51152fe4e9179569551e572eee8ec6495d3c4aff3a820709b2ac568b51ac1df6d6f6b460bbc5daedc8ad6e24df2fdb303f539ebc589d55085

Download Submit
/data/data/digitalfish.counter/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
74020bf03859e6462ef4db04250634ed

SHA1
56a318a6e48df7f0555748d6f1a8d6f750a84584

SHA256
1dbe27527147ba32a8cd9b62fa7495c1866cf3f0fdbfa71037f777d4a5b5d817

SHA512
78f4119ea1b64dc498f5e0577ba716c5b8359073ab7a0fe6570e35df6cac05bafd00fb497f7fd9462e3afc8afda6a0f03450ec9ef488a10f8c974d86c082b316

Download Submit
/data/data/digitalfish.counter/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
8cb5c709d54ca20eaa971aa66b50ec0b

SHA1
f31a475f057e62b1d7702b58aaf27822c4c1ca2f

SHA256
26439f12f1665171db5742d99f446faf4d901e282c63fd220856dd32f2ac2407

SHA512
67adc53bb41bdda33952bd391890ce1ed720cd4d0b18e7d81f88966f1d53a3239aacad5b1ad15e2e415a07844075adc8efa4f5f0c7d18d4a4db9bf19257fde6a

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f7337ba319d1f6d46e9d65a722c466ee

SHA1
c6c25a64e19654f9b6bf85ce06da5f0251890435

SHA256
e3f1ee892098dfbc24d7b41e7d70883aa3a0ba9f74d6baf1bc6b69a73989ce91

SHA512
51f0004604ec032a574f67a80236d4fb277553b078db7645f611736272cada3d4bfb1f97d18af87723e906a84664a3e488a24ba62c715136d133cb3900cd5a6c

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b540d236e7aae27da07f62d850b35868

SHA1
ba39bc2caf5f98485b88b88b19970dbd48280755

SHA256
dba558b38541eab5e879323818e93a61075906552b84558952cec1de415d0991

SHA512
2da01bd2821808089354f7b955f4df6a51444d4148e77f07626842b166e73e28f9261ceb5fc975dbc01d95c952f48cc4b8c91b597090d4765b4003c15529485d

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7e0dcd980449a6f01c2878e22bb19ac4

SHA1
3c5345a5892716a3234b00174affd85462f456b4

SHA256
9f67254f9a8eff617c4e93d37d04d6bb380b87d871ecd0219a95877bc2c791bc

SHA512
c766ae3b3f99f29a26f001dd22ceffbbe07f9993f1897f7786e6fa391131c538d8a8f64f4263351c01187b7539e1cf0e13e54d3ab3a53f927b863fb940ebf687

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7a1f3c9ad7b5b0f1e9c5815e8c6ffcc0

SHA1
d9d9577625e1eb495b1247f7d80455af5a107a21

SHA256
cf3bb6c423067fd8aa294fd59a4e3a23de1fd1bf009676f68f95b8f50120ad39

SHA512
6be916bb33367654d9654b5618addd17470fce1c0f48d38eb72e7ae3afaf79fbd8def0878ce016df64fbd7036b558b4947f354181809369fd76ee6447cb350e5

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8b95925bfb9491923ede49d4aeb4a004

SHA1
a5cb237c9b6bc562492034bb3abb06cc0dd99631

SHA256
1eaf3bf4f629dd64586d6b23f6bc96877b27bf703b18a3dd944105012f0ea44c

SHA512
50e224e7c9c5eb36ddf8c7a36553b378d9a332dd5add60151d530533d4d08129db7fc09b7fa508196f9e04e0abcb9ebf26aa3d024fd4ca7c3ab2b335404625e8

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
4f73743a2caeb48844206ffe9210462f

SHA1
f19727b5256b3e6f8bccba0e9c17a9fe8086a5e9

SHA256
691dd5820872756f5dd029e0f904f7d734d57413a9fe09adf8d255860399743f

SHA512
f3ee1853745cf609d4bd05804d394711de84ff11829c16915ef7a7e2be8cfc3aa147953a9f71165eed5197abf855215e731b729bb574023322cea8257a848ebe

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
b3019c3c1cedb913ca8786dd7452c165

SHA1
8a2701647a87149d03cf53fe73808a9b8ff7b6f1

SHA256
3bdf67bed9ef5c4dc8053cd2326bbf60faa246f35a60e48329a7e244f1d72c97

SHA512
e687a8e891de54ebe35f7928cea1d6f221041db0541ef2c69e0a552d79a3b5843c85e735e7df6df2dc818c8f7c7108cd61d3f8ed8c8be0f3682d299cb8a56a50

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
d73aaad17ea4a2c335372aee1ea86806

SHA1
15f79f259c2af70d388b22fa10b2167ed01a4e8c

SHA256
eb0fbf836b1eb10f192cbd51bbfba2a7fc42233654b8cde27c382aa742010b30

SHA512
daab0c2ae9ed5166acb9ce5a9915df34a43690fbb4d65ec305cd673141ceceb8d035172bae82dba0e664790bc960746c867c049811b4ecae2476092dcdeb2669

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
a5daa489d4d2e34ae9a1e094a1d2681d

SHA1
9ad986040987e3411326bda0a8843c5d71370ec2

SHA256
fbdb07666a18f30ba4e650dd1f92a6315ec04ff2775e5a3ae67bbd7b5d28f9d1

SHA512
16fb8e2b55fcb5746914e2bdda81214b71f49635c274244de8966fc96e79a0792ddd5de97bc5387764c566265247f089a49fcca8ba473ae4c3ce2afe23c5d1da

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ea03e5bd6a962774fcc0810e17072fb9

SHA1
b7455791c256feb1baaaadeaf72a6c8183e782fe

SHA256
d354b88a2d9f11b7b370c018c2fba086f77d85613fb829a324eb2a6d9cf2b6cd

SHA512
99735c523d312fd787c696a617e75de9b2b42a5829482bc85fc023925253d8b504d665be5d56a2813aa479d226457689d6435c05e555e86caee645be7b6c474b

Download Submit
/data/data/digitalfish.counter/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
4acc0dfd417f6b6bae53860ce0fdd506

SHA1
0c6e66aa79fb07982c01818c166d3d92db4481d8

SHA256
21438d318204fbcf96107c169e62dd56f6508403a9cd465987a2e8203cd4d42c

SHA512
6ca026ed1262b29d3341fc43f588f00f015053be725b8d909a7ba61dcf84bb539129f7667eb79ba5acc221b62a5f9dcd75f75ed8e06ba2620fc935b8ed2f1dc3

Download Submit
/data/data/digitalfish.counter/files/.com.google.firebase.crashlytics.files.v2:digitalfish.counter/com.crashlytics.settings.json

Filesize
715B

MD5
1bf6a9ff49b031e68ebbced7659a1a2d

SHA1
4ba296351b3abe7b2838a50c84d83912b5b27725

SHA256
ad3190e1e7e05a4d95c7e620d916eb1a7f7dbf278efed5922f83512c47b1de67

SHA512
c2050058dd044458de07098afa859d0a3b25d2e0dc7d63b71a03ce819696cb6f55725fb430700b31fb862b3ea937197c666b995f608c9c2fb44b95edf611c240

Download Submit
/data/data/digitalfish.counter/files/.com.google.firebase.crashlytics.files.v2:digitalfish.counter/open-sessions/6678DCAA01B8000111765B1F5DEC052C/report

Filesize
745B

MD5
1021308cea5ee60cc7dee010d671bc4e

SHA1
261480cc0f651dd6ccf79320152e455db60c3602

SHA256
acd888248c653b326dd0bab3574d38e34d43d3f4652260c891450f4b3a6521e5

SHA512
70aa2fd907c43561a45f549f6a645f0d5652ba00e1f52a380f98bf9e22e122dbdb48848c54de5f1e95e600d639ee5088cb0da4aee22832cf5e02b1fea74d0119

Download Submit
/data/data/digitalfish.counter/files/.com.google.firebase.crashlytics.files.v2:digitalfish.counter/open-sessions/6678DCAA01B8000111765B1F5DEC052C/userlog

Filesize
357B

MD5
4a45cec2ded5b322a63749aab251f92a

SHA1
5da219194b992bcd2e1923330f384cbc7229a9b6

SHA256
5ade4352638a9dacfe2d78395bee5cc0d14930154debfb9590e36fabe0708b38

SHA512
724fe686022bf2bba9ed8051ca9d8e814681ce4d9fb07ec107de9438969d492e5a03dae4c7644d674b2ae4da5d88875c96df0d3723729c9d6802f0c23dca6e79

Download Submit
/data/data/digitalfish.counter/files/.com.google.firebase.crashlytics.files.v2:digitalfish.counter/open-sessions/6678DCAA01B8000111765B1F5DEC052C/userlog.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/digitalfish.counter/files/PersistedInstallation6338428512839768246tmp

Filesize
569B

MD5
289a56808ea96b3d68de62e6e0fc356e

SHA1
378db28402edac29cd093ca2612b07e7f288efcb

SHA256
df73b416bede7aa57b6534873dc43de94645a78db49ed914f50b1022e393b6d9

SHA512
97636d9ffbe1785ee6859ccf978f7fd02b2864a28bb403178dd24f8e06034bcc5f3859c08ef4093d14aa7e73cce793a83a1d8fb076d4a00846dfb3ed9c5c9f91

Download Submit
/data/data/digitalfish.counter/files/PersistedInstallation7628842220715786288tmp

Filesize
90B

MD5
84d053089049c9b6592ff3069d660705

SHA1
32d27cc40e18d2d006eedb5b5b43b725e08f3d28

SHA256
249603bbb6dedfe495f33a16d6063e1280d197c63f9a70cb52a3e95e21435e5a

SHA512
6d51a7a12791980a94625d0abfb6228b97f87b30e5723531d8d090fc18d8af5487e0a954bf8d96717bf624e8bf0d8ca801c06fa155fbd7bad02507baf9a8c8dc

Download Submit
/data/data/digitalfish.counter/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
db0185676f1544af3723f56e52025ca5

SHA1
48f771292ce0c8984b2bc89547b58c992f10731b

SHA256
3895a10a58a8b0f6bbb02a656c38e02ba92ad702dc9929f0de7858d3ef908037

SHA512
2d52774a14e198354d05da92744ee25c0a5e4c53c33ad1f59c8430a3ed47400955b4d40218c386fade6ae4e736025c7ff86b592c5685ec111c5619f6f186c0f0

Download Submit
/data/data/digitalfish.counter/no_backup/androidx.work.workdb

Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/data/digitalfish.counter/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
9f037a7076b371e12e6298318a786d23

SHA1
b162ebf08fbfbce284f3fe7ee2c551d6545933f7

SHA256
e057cdf83d60c17c0e476b331205ad1ca76dea104aff05dc9867f9166cf0b52f

SHA512
482d5358079f767f80c8dfdcb84f039277aa8454d8b1afec59ed1d28e3a216360bda9ca183383951bcf43e7535a1fc49952e4bf64f4be889b1b69150aa4d5ade

Download Submit
/data/data/digitalfish.counter/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/digitalfish.counter/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
607f082d57edbc180b1a5267dd5d7ae3

SHA1
91c36c0cfb6c9e780e6ed2b3c699206e4b649a70

SHA256
ce26505dbbc8a3ac37d90cbf1878a52306b881ca18cd78e4aa321bf9dd45db51

SHA512
e1bf4b948e5e5e87f9ff36af5ca0486e4dac0b714b30fbe12b7f8d0d6ad9db53448b019b4d2b40bd25581f82d8ca8083bc93ad133ee948ee12f25afef4349eb9

Download Submit
/data/data/digitalfish.counter/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
643d84cc2f72e5f1cc544ad979282f27

SHA1
97a6e5ee15239b307f008f36d266f5cba41dd06c

SHA256
65b62766ab633dea8c06f29b469102b30d3006aa512380e361e9d40c56daaced

SHA512
7f520155a88cbe69bb6a89a4e1b10ce3ac0f334531e92a49718c87e62db497d277b41405a5e4b39863b2d5051e7d8772b0db1cf482688ed051ec7c6c3dfa4255

Download Submit
/data/misc/profiles/cur/0/digitalfish.counter/primary.prof

Filesize
913B

MD5
72a6cc98d6ba93d6a8dbcd71c4168cb3

SHA1
20fb1fca584d4fcadfabfbe152bd07447f42f272

SHA256
8d782d1e1465bb6dd7a8306decd828853f5cfa8791594062f2714b40e8ed3e09

SHA512
8f5ffe9b31d458cbeccc6002b118fc498f9f3b68cd6f6aafc48210ec571d25b631129637bc0c258c25da754aa3592e8cad2c961e7e3763a3b8a0be79c542c1d1

Download Submit
/system_ext/framework/androidx.window.sidecar.jar

Filesize
12KB

MD5
bdf3529e80318eb14e53a5bf3720c10d

SHA1
25c9ace4b1af6e80ebb2572345972c56505969ba

SHA256
bbc8300dd1e9cd08de8f66560c1ac2c928615b72b51cef9649f88974f586d64b

SHA512
48b9c2d01171bb651b9b54826baa51f4add48431a3efd8ceb5f7cc3bcd6f8f37edf47fabb24349dd15b3a02329cd450f90a8d164bf4f8dfae554bf3b35a8a55b

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads