0da4f4ab01a1a53088d2cb063e198621dc1bf50f6642af37aa0329778233650c

Analysis

max time kernel
175s
max time network
132s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
08-07-2024 11:10

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0da4f4ab01a1a53088d2cb063e198621dc1bf50f6642af37aa0329778233650c.apk
Size

5.2MB
MD5

ea19f32573cc0d6d254f71ae3d2b4ee4
SHA1

a17f77c0f98613bf349b038b9bc353082349c7aa
SHA256

0da4f4ab01a1a53088d2cb063e198621dc1bf50f6642af37aa0329778233650c
SHA512

a6745e03176608739ef5442304a79edf140396c474a0b740602aedf287d975fc547a463e63596052a50edb44ba9698317645f2984e0b986c91faf69bf4001f0b
SSDEEP

98304:vsANE27a8S0HZ2avfSI86YMAIrkPzcQVefNu3vpZ6GhrnwdHTzdccA2dDGcS0frg:vsipa8H/vvdk73WNw6kExxcV2l8

Score

6^/10

discovery evasion persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.tech.sideswipechat

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.tech.sideswipechat

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.tech.sideswipechat

com.tech.sideswipechat
1⤵
- Acquires the wake lock
- Makes use of the framework's foreground persistence service
- Queries information about active data network
PID:4234

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.tech.sideswipechat/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.tech.sideswipechat/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
df6468327412948b70e0f9ebd16bea79

SHA1
daca9f674aae1afb60e4e5965ad1a8a7b663c568

SHA256
6f624fc2007565afd4714fbe123cefd36996552726272da132f10c185a4caebe

SHA512
854cbdd97622de2c19968940b187e827627ae39045bf179986e77c5ed35ac5d8682dd4d189dc0983a544c1c4c8f371042d9d9fe9fcccef58cb5fb9b1bb3a70d5

Download Submit
/data/data/com.tech.sideswipechat/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.tech.sideswipechat/databases/com.google.android.datatransport.events-wal

Filesize
52KB

MD5
10a78d1e68b2194ba7e8912027ee8486

SHA1
6731f68639cba5b09dc9687b3aa310ef916cd81f

SHA256
1c32c10edb18975377b6e956dc21009c1bb5c41430856b80fe8bf14c01feac62

SHA512
48d51c00cf78af111132a8b1f9eb9f7706ea68f1a8ea3fd9cdb3ac3e588083cd9b0b97df40843823f614f01e09346aebd7b93219ecf3ff02ed67071561c8f954

Download Submit
/data/data/com.tech.sideswipechat/files/PersistedInstallation5752384237139910375tmp

Filesize
114B

MD5
39aaee80f6fe5dbc17ea643636b4b9d8

SHA1
84dce97805d56bfc9a456ad2c4c0e62dcaa9d9a9

SHA256
01b19fb4b5d59826893e2ee8778899d20af78dc5c2b14db21c4d6dda0ffcffc2

SHA512
9e94bd6029808e91dcb63e64dcb161dd891f4547008ca854f5ab11206d3cab8ba6972d5ba437ea462368c52762067374dfb19e85646161ce173ff883b9d14f9c

Download Submit
/data/data/com.tech.sideswipechat/files/PersistedInstallation6225858183073344697tmp

Filesize
90B

MD5
981877f273e5e901ca668a027f3d38f5

SHA1
f8c370c800b7bea89215e616e1966f8640a89d36

SHA256
71101b7764c4b75b1570d30c49b09e458aa275b07b099d7c2a82b8759d95f1b1

SHA512
37fc55d4072b5195934c9fa69195de14ee5653f6fb0f076c726dfa9ce293995faf458db058c683d20eeba2dafba85aa0e7ae09c29d782f1282baf4cffd9fb15e

Download Submit
/data/data/com.tech.sideswipechat/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
33cd0254841fc03ff54d63e9a8dfc081

SHA1
5fd1cc396e6e3495aa20e0f11c514caa4e58d2f7

SHA256
6525fea8e047ac12dd0156f1913fbc106121b7904dce25ec8f23bf680191070b

SHA512
5bd64e72c7f3b098c6739e8ef1fcd3bb9af721873e0d9a96c02eefdcba93b4e8567605dd038506db90cc9e460b245e2e4aa3ddda8f0dbf678fa3e9ed2f9e4433

Download Submit
/data/data/com.tech.sideswipechat/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
dbaeaf85ed3cd4de02b57e44fde16b0d

SHA1
dcb603f2fc8331c2ba685517176e9664eb3e14d2

SHA256
c9b52652e55aca3310e01d76f6863b9030426cc688646c83463060d748395495

SHA512
2fb0753a67a881d8f6ed2d8ca0e2d5d042b27d10aeeb5e450aaa4ccf39835b51f60e5c28e6bfce136d4d0aa35aa535c16e62743589f998c56a2da05023a33e98

Download Submit
/data/data/com.tech.sideswipechat/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
bba91f9f6af5e777a475166bc6bfdb27

SHA1
2bc81399e4fc62dc42a462f05bbb7cba395c237f

SHA256
dec30c7333bc2ed2e1168fab3a4c63a14bfc40472dc3b32c245533b82cab7eae

SHA512
587d2813a166e3f01a45390c172e91ec8ecc18a2c32ac1de58afa52680266807d603410cf4786547e453699687f13ea617be7199077821fa4f50f06c07ff68ea

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads