492f42920020596dc2b89ec297a66c51fa8847a2a3eaf5ef5d97663ace893f6a

Analysis

max time kernel
129s
max time network
161s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
27/06/2024, 08:28

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

492F42920020596DC2B89EC297A66C51FA8847A2A3EAF5EF5D97663ACE893F6A.apk
Size

10.3MB
MD5

8be860fb16835e673be716dc11b846a9
SHA1

1e2d2609b24a7462265f6e63e0003e39ddf24202
SHA256

492f42920020596dc2b89ec297a66c51fa8847a2a3eaf5ef5d97663ace893f6a
SHA512

51e7cb3e64ec477f8b042e6b476b3049c1bcb5c01396589a1c2844d2ba4230cf3f3e9aa32e31f67dfe0bc4d5901a0bb94021709fbf83619928590a055abeee47
SSDEEP

196608:w5H63tsVQsQ+F46spOYC4x0q7YqdqEFJoTVeVMLO7SzHFuQh2p:w5H+elzxq7BgEPue+hh2p

Score

8^/10

discovery evasion execution persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/sbin/su	com.joinhands.android

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.joinhands.android

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

Scheduled Task/Job

T1603

description	ioc	Process
Framework service call	android.app.job.IJobScheduler.schedule	com.joinhands.android

com.joinhands.android
1⤵
- Checks if the Android device is rooted.
- Queries information about active data network
- Schedules tasks to execute at a specified time
PID:5072

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

T1603

Persistence

Scheduled Task/Job

T1603

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.joinhands.android/databases/OneSignal.db

Filesize
40KB

MD5
6ea5817dfb71687d648b0e4763152545

SHA1
b5a1a2a1fb579520ddeb9861c0eba5f7109d0d74

SHA256
be512b097518bdaba39e6106c143a267f56e98d8f980ed6295773c4082149824

SHA512
cafff4c86b710428753e528aed212096fef264a36cd6d6ff48af487ce1d5cf90065b4be0ad6460e4e7631040f7a28657f31811be1a5cb417c4b2725c51fb5186

Download Submit
/data/data/com.joinhands.android/databases/OneSignal.db-journal

Filesize
512B

MD5
5c53ae0dd0a624c9d880a16ec043fb35

SHA1
57e902a8e08e6e85dfecea03b786ea2f8ef288d6

SHA256
5c1306931946ff984f81e39cda112743411fdccc6cf24e769d1003755ad3a502

SHA512
f2f61fc810164b305ca234a4bb5dea26fb9ffd9b85a80e51e83fab19ad6fb62fa3b862553fc2dd551088571fbab9a958123aa361087ccf3365d73283d0ce95ee

Download Submit
/data/data/com.joinhands.android/databases/OneSignal.db-journal

Filesize
8KB

MD5
d396922400d380c5cdc47037fe90ef6b

SHA1
1a64373753d9214603c2050f327d5577fe5422a4

SHA256
31292279d5aa9c3dc8e7d49a80efa208d777b0facd18346b200307b385e28303

SHA512
afee0d8924bb0ee71587714aed8e8bb55f229a531d0f1e56a0e29399ecc1bf5f10c3dad1e89bc59aa277b83e3a109b13166efde68e15ed44b5d745ccb5cf0c2c

Download Submit
/data/data/com.joinhands.android/databases/OneSignal.db-journal

Filesize
8KB

MD5
851d73d81c6e4a81ab1835048dbce6dd

SHA1
f32e748aeab8b967c3397abba2ffb372ad5c42a5

SHA256
37b10b8ecba936f20b66e8c96990e72007e65f53e3e03e9153b4cd3bd6c656bf

SHA512
377531676efbde19fe123c6f912ea8809b9217a5b97e4d6c8c497357294221edfffd04a2e316a1bb5d85e833321fb9efeb792b1415fe1622be8012187869b659

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads