c2b6bb2e7b6732ba753f3d17ec71adf1f06c9d4cea65e4debc312bf0163d68b6

Analysis

max time kernel
132s
max time network
181s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
26/06/2024, 15:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b6d18262f5e296cf9c5a8595d0d7c619.apk
Size

5.3MB
MD5

b6d18262f5e296cf9c5a8595d0d7c619
SHA1

e09d7657ac3bc28334c1e13e7d85e79fc8cc3b5f
SHA256

c2b6bb2e7b6732ba753f3d17ec71adf1f06c9d4cea65e4debc312bf0163d68b6
SHA512

02b33fea324694b38149abb4881e56b8221dc40d2356a75aa37d1f5515a0196fe681d275d7635e08ee5d6d8fa458e8a286dceaceb878112ed3db4b7fda4728a8
SSDEEP

98304:vX6vH0fpdsCl039pnVVuzpVMAPHS8rf/O+T1LUXk2fWgyn9RR2QzHPVoTwr5xpif:CvH0fpstpnVMVMAPHZhpLwk2fvK24Npi

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.example.shineinterview

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.example.shineinterview

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.example.shineinterview

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.example.shineinterview

com.example.shineinterview
1⤵
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4272

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.example.shineinterview/files/profileInstalled

Filesize
24B

MD5
ed2f7caa4d3799e1e6dfbc5ee92b78ef

SHA1
32f8ae266f368aadd6dbab7e059e1b3014fb1af1

SHA256
4065766abdf83a57283f0129b909f05bca1f517325a3237c6cb4497aa8358e5c

SHA512
d8cc4e9f83564f8e2f9b55b1fa9ba3d50c12d9439386ee249ad7ee9c83aedf9492bf535386ac1507615c4e37ade731a6373962a31117b53debf65c9349736f91

Download Submit
/data/data/com.example.shineinterview/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
d02f12cb285e67a03a85f142620a84b3

SHA1
74392c76a1c3685267043a0a66011a6aff7cbc77

SHA256
f30285867255c9eac026c854368c1bc36f7662e75eb9fa01b28db1a077a2408e

SHA512
4d08828ae7cb50743f354d67feaa2cfca838f4761ae64aa3a7ce347acfe33b82c73d3a7aac8b9e4ca774612f03e008b820530abbd233b0c69abc12411862096b

Download Submit
/data/misc/profiles/cur/0/com.example.shineinterview/primary.prof

Filesize
1KB

MD5
a9c5111aad72022a092dcf2436762c8d

SHA1
26a467b78bc11a467f4606a31e6b3fc2ea72f0cb

SHA256
dc7cb49f8558b6696e2d2a8bf432ae36735e2aaebc0697f3745d97edb6e42a76

SHA512
d86a5a4b4d30f148b6c115d7ff192e796a91a228a8f9314fca355a558feaff343eb55bd5265cf543ab61f0aba5d0352fc9d6ff2d38aca1592075855167919d33

Download Submit
/data/misc/profiles/cur/0/com.example.shineinterview/primary.prof

Filesize
3KB

MD5
0f3a0e9af33dd6f910784f66673d1079

SHA1
23cdfae93c92c6d5a028a2dcebe8b329cfb4f9d1

SHA256
2a2f36b2de20fc3605b763bb1c15346edc59d2d53464ff020f9c68deb15fbff7

SHA512
fe60a41dd12c3758944feb5d6bfee5d2c0324ed7b081566d564f1a8b3019810172fb986e6ab04dcc2ba6853861628f61acb7f2963cae29e0275d29f3a7ea7455

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads