0da4f4ab01a1a53088d2cb063e198621dc1bf50f6642af37aa0329778233650c

Analysis

max time kernel
175s
max time network
168s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
08-07-2024 11:10

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0da4f4ab01a1a53088d2cb063e198621dc1bf50f6642af37aa0329778233650c.apk
Size

5.2MB
MD5

ea19f32573cc0d6d254f71ae3d2b4ee4
SHA1

a17f77c0f98613bf349b038b9bc353082349c7aa
SHA256

0da4f4ab01a1a53088d2cb063e198621dc1bf50f6642af37aa0329778233650c
SHA512

a6745e03176608739ef5442304a79edf140396c474a0b740602aedf287d975fc547a463e63596052a50edb44ba9698317645f2984e0b986c91faf69bf4001f0b
SSDEEP

98304:vsANE27a8S0HZ2avfSI86YMAIrkPzcQVefNu3vpZ6GhrnwdHTzdccA2dDGcS0frg:vsipa8H/vvdk73WNw6kExxcV2l8

Score

6^/10

discovery evasion persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.tech.sideswipechat

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.tech.sideswipechat

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.tech.sideswipechat

com.tech.sideswipechat
1⤵
- Acquires the wake lock
- Makes use of the framework's foreground persistence service
- Queries information about active data network
PID:5044

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.tech.sideswipechat/databases/com.google.android.datatransport.events

Filesize
40KB

MD5
15d5b92dcbda7ef7f9ca327a903e46e4

SHA1
ca153b66028a58d90346ff8abadbdf01b95c37b1

SHA256
e802fdc1ccd833b91d80bb1d8f54cab2b585393e6a07622c4d9feaab07633370

SHA512
2352f167ee5aa37cb3438a0a7df8f632771a1d019c5cd120fe62313fb73aed6d0e09186a9bf306a564371b846a8da020f6acd7aede0cc47ca50701611fa84aca

Download Submit
/data/data/com.tech.sideswipechat/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
7905879dbc15694e679de3cf14879aea

SHA1
b0f2fbe17fb461717ca3833335fd6cd9789c5681

SHA256
5e76470fc8414a154490f9c2dcd385b281173fe208aef605e14940431215e9cd

SHA512
75d2f13a8ca231bac85db7d74c93f6ca20e460731b1652c8c9df9b3370a17bb6910ce787997963e67f33af89cda8b5ae5f22f45952588d1a6c6eadad0ab6b1df

Download Submit
/data/data/com.tech.sideswipechat/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
015f8469e662fdd2cedb273beb1f8991

SHA1
72c6a00e0b2acd2eb04974d7cbb40d0bae6d68be

SHA256
19aea2ea02ce2db2f655a52af12f80f2d9d5692f94a74b55d0dc9f95a1a4e9a0

SHA512
1e80578905e8cd5d3637d29972af850cf0b61752223cbc5ab8ad0620c3d2736290060d05b86d3826d7396fb29ae54dce434ecf63f8f41c1618838ad5df9ed34d

Download Submit
/data/data/com.tech.sideswipechat/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
58983d20c74fcc347e200bf311c1d7c8

SHA1
8cfa7ab3e744e4fac2f2acd99b66fb6b810b957b

SHA256
25cf360a5e041580f411c37ee030763d290769f6e533b0d59ed6ab935bc8ae10

SHA512
aa90f5990983cf900df70666e1ae9147f7e41f9a100cdbcfb8664e329e4fa091ff38fbcc3ac5fa44f390304095728154613382e5f9b438292e898cb516299410

Download Submit
/data/data/com.tech.sideswipechat/files/PersistedInstallation2529251603853312382tmp

Filesize
90B

MD5
193307f6ce227ed24838c3ca2412a9c4

SHA1
ba969a4dc06bb79898bb611797034e8506c38314

SHA256
72699b90ada3ad570963481a5eb8bb12f7d977a07fa8ed50a84f739e815060ed

SHA512
631d446ca051f722f4882bbcd0215fb710d16db40c4412197fdbc1527d1237dde7a16cbf8535b173e3687baca20f0e47c7e9c1b6049754155055977a6a8e5c0c

Download Submit
/data/data/com.tech.sideswipechat/files/PersistedInstallation7698714573578731476tmp

Filesize
114B

MD5
bce33f3ff989bd8b9a4a7dcb71461b8f

SHA1
6692729c7c412b6a6bad271993a98746dcaf425b

SHA256
22a89e7bf88172549fcf94a61c5af5c8d5a47b1109babd3f06c014eb14fa244a

SHA512
3cc9998e6cd723b074d3d93fb8ec73abf6174c44c264e6fc4aed649751189b7f4e6dfb69c92fd46e956183a5d9bce6f4856dc9c20fc64f772b63f405dcbc1548

Download Submit
/data/data/com.tech.sideswipechat/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.tech.sideswipechat/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
db010c5892a55bdaf41700089202c23a

SHA1
f851fa1f76f6e8989bb71d619ce5b91e5743be47

SHA256
372c2d4df8040ea5671abde26892ba6f55051bd553459c6ada9ec167ea13ed43

SHA512
73f8c607474248e68439068296e5fce4ff0a25f3a9ea6256c45032ca0bd01ec85f7145a87d1982740e0b2a6f68ff45c2e474b25947511b548fa1c9d250c745f2

Download Submit
/data/data/com.tech.sideswipechat/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.tech.sideswipechat/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
544cbe64161886bc4e4108bc97dfb704

SHA1
277025256fe4692c335f1a589799949e9611d907

SHA256
a8b32baea4fb504e6758ad9e808d76682d7a1db2802cbcd7d3c044287f91b46b

SHA512
8c487e5485bf86a5afc6b6c022f861cab1733de63f8537dce2543bf064923b212c963eca371af05134b45322892323d4d4c4124b1bee2b69b0977ed75812ae5a

Download Submit
/data/data/com.tech.sideswipechat/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
28fd510657b79cc1d46a8850897bb8d2

SHA1
59ab9355e3ec32117f1e0028e1ea46e075efd552

SHA256
207e1aad7120d3929a05d173c01bb776f1d6ee39efca74297b1d8328297c606e

SHA512
9280e70bf651813afaa04fc054be0ad72186355c692d32deb1d7898a0b774ae476b1ba31a7ece2300473e4bbed4d7c4e3bf926cae7d4030532011a9bc217a948

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads