47d6d9b52bfed7481c9db51712e4a81c6f773efa1d96ac2c0d71dc0f6f6ddd6a

Analysis

max time kernel
179s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
08-07-2024 11:10

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

47d6d9b52bfed7481c9db51712e4a81c6f773efa1d96ac2c0d71dc0f6f6ddd6a.apk
Size

5.6MB
MD5

e55980951ba288a70f5ae2266f895a76
SHA1

991e820274aa02024d4531581ea7ec6a801c38fa
SHA256

47d6d9b52bfed7481c9db51712e4a81c6f773efa1d96ac2c0d71dc0f6f6ddd6a
SHA512

89644b22b277c9f18177ce755ddfba7f3790d78edce7cadd476db01469f035698d695ed73ca44d62d7e88dce2655420eb3230b8fcc192516693c58dd2df9a000
SSDEEP

98304:+wb49Ak0pAvUPRIpZoBQZkvGgMKj0GMUfXrEid/ilp1aS28J0frB6Q:+wbF1ZIpZAhvGAjKUf7jd+pcSE

Score

6^/10

discovery evasion persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.tech.sideswipechat

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.tech.sideswipechat

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.tech.sideswipechat

com.tech.sideswipechat
1⤵
- Acquires the wake lock
- Makes use of the framework's foreground persistence service
- Queries information about active data network
PID:4428

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.tech.sideswipechat/databases/com.google.android.datatransport.events

Filesize
40KB

MD5
1cf3f63c021d755a21623e6d0e86dbc6

SHA1
e40e0f1faa61abcca7ba3394c54c92ff7334b49b

SHA256
100c67650ba652d547d8a1128edc550a8e95541a1d9268a199d1b924294d0895

SHA512
38d72e14f3513ffd26989cbda3df46ed3dd6e731bdfae56440eff6b64760cc13f91014281c9add61e018fe3529e49c63a6892ca22479515816c768b546244466

Download Submit
/data/user/0/com.tech.sideswipechat/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
d10ac0ad8e0d6918e3f42ce387ddb316

SHA1
b02b5bf4ed0c3786a21ba66267c0a735b0c35ebf

SHA256
396d3e900fd8f0b3c36bbad4a6d972c4458622b774e4ef641618dbadac4379a6

SHA512
9371b148bd2d4ba74886f6df60545021d70e062f968eee55d8dd9dcb399b6903da0de9a8fb5786106e10405ba8b23048282de9fe855f941da8137072586db263

Download Submit
/data/user/0/com.tech.sideswipechat/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
311668a4c9326862831ff9e359acbf60

SHA1
c8466c7ee7743a735765731824fd20a0d1b3c3d4

SHA256
341f1c426f820b39c446b654a9c7c14fe4c30fe53d6d080955181fc67053328e

SHA512
666f5e06f801f368ce328d8705a1621c9d08df8c5bf9692aa63b0cb3c243521dc9665edbbecfe098f01e481201bcf38d12209a170be8806c6e698857e1a0a4bb

Download Submit
/data/user/0/com.tech.sideswipechat/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
738d6bab3922213091494cbefd18f238

SHA1
ec4cdd56ea2ca1405bbb1fd17e2706e80f97feed

SHA256
28b3143b55f3e6ede9e4e39c21f7e23acb2bd5ea0e86b5be0a4fb42079e23d44

SHA512
e9145c7198432bdeb4467c28fe287a1c56a2cfd3b429514c7e0320cf37350da05f34994c36b7c6b052ddf168617a5166c49faeb5c6a3d764b35f3494d35d80ee

Download Submit
/data/user/0/com.tech.sideswipechat/files/PersistedInstallation53422189759193158tmp

Filesize
114B

MD5
41230a05a4e26bf5270c2bd631831622

SHA1
909c07c651e332faa888465c1769cd5d4455f055

SHA256
27d861847a4f1d0431bd0309e64b79c5996c123600e974c7930d8ca068f2ad59

SHA512
863613a4e0ade5ccec5f4b5a5bd8a9d271304b82435e9a01944652a5f99f2ba698b964f70dc1c2187f067d0d092281a3017138c241beb73bba01c3a071a293ed

Download Submit
/data/user/0/com.tech.sideswipechat/files/PersistedInstallation8672330568973970722tmp

Filesize
90B

MD5
80023a00af06eaa5d43a0ad028a53f9a

SHA1
87f5e28f8bdfe09f1bff6384be26badf571de421

SHA256
87484fa1abd65df2f7947265778b5b0314b260c7ee5e6fc460213d58b65fc48d

SHA512
e8209c73cb7eb521b032f827a2e188b37c451f9a44b417441e987c49cde07ba2a43eb8a70f9343a4f88120e52f12c24d2626eec4b7e6ff2c139a831d2b1539d3

Download Submit
/data/user/0/com.tech.sideswipechat/no_backup/androidx.work.workdb

Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/user/0/com.tech.sideswipechat/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
b78a8b817c2275643e7b22995490d714

SHA1
3ec8bf507cfe5c3503d386ec323530ebc061a4f6

SHA256
3831cdca5e27c698175fd48e6c95e21215e51b4ea662083f41451e0dc33df21a

SHA512
5df171e850e3e12fcec92ee2f013f54cb00d0e3d6e13edeaef5c94eda67ef67f241e2c2f15775bb73a1a2317b7e65ed395b0b4bbb5ab9a519c2c3a254e43d965

Download Submit
/data/user/0/com.tech.sideswipechat/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/user/0/com.tech.sideswipechat/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
6a1616ff5717af160e7399ea741b05ea

SHA1
ce1ee2360b9b53d9703ca384816b783c4afde4f3

SHA256
12f1f4b2dfc96dd0a6e8763ce6a63d47452d650abc583a0eb3621c3b8af982fa

SHA512
d13b62ca060abdc121052a93ada74c6f9fd2e7bdb8ec1dc26ca7a1bb548e8096649967031a29ee58a469b5df259bfb2f6e9b6a8ec715c042ac908ca19dc6bb1f

Download Submit
/data/user/0/com.tech.sideswipechat/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
4ab6cf4f73d7ff72579742322554cf98

SHA1
ef8de06cc32496335a1c0ef552fdaf6e612da548

SHA256
4a285f7c9bd508c568027888162adda74b42167581b984fa1908081d4088e5c5

SHA512
effe461bf4bc88512b1b49452883acc3017d29a5183daa61a5c3fa19d47e0bab51baaa507cd8e9f8cd1f0f0f29729e2ced3d9f4b84a1331081d9433096e6bd0a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads