0da4f4ab01a1a53088d2cb063e198621dc1bf50f6642af37aa0329778233650c

Analysis

max time kernel
175s
max time network
134s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
08-07-2024 11:10

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0da4f4ab01a1a53088d2cb063e198621dc1bf50f6642af37aa0329778233650c.apk
Size

5.2MB
MD5

ea19f32573cc0d6d254f71ae3d2b4ee4
SHA1

a17f77c0f98613bf349b038b9bc353082349c7aa
SHA256

0da4f4ab01a1a53088d2cb063e198621dc1bf50f6642af37aa0329778233650c
SHA512

a6745e03176608739ef5442304a79edf140396c474a0b740602aedf287d975fc547a463e63596052a50edb44ba9698317645f2984e0b986c91faf69bf4001f0b
SSDEEP

98304:vsANE27a8S0HZ2avfSI86YMAIrkPzcQVefNu3vpZ6GhrnwdHTzdccA2dDGcS0frg:vsipa8H/vvdk73WNw6kExxcV2l8

Score

6^/10

discovery evasion persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.tech.sideswipechat

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.tech.sideswipechat

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.tech.sideswipechat

com.tech.sideswipechat
1⤵
- Acquires the wake lock
- Makes use of the framework's foreground persistence service
- Queries information about active data network
PID:4484

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.tech.sideswipechat/databases/com.google.android.datatransport.events

Filesize
40KB

MD5
1cf3f63c021d755a21623e6d0e86dbc6

SHA1
e40e0f1faa61abcca7ba3394c54c92ff7334b49b

SHA256
100c67650ba652d547d8a1128edc550a8e95541a1d9268a199d1b924294d0895

SHA512
38d72e14f3513ffd26989cbda3df46ed3dd6e731bdfae56440eff6b64760cc13f91014281c9add61e018fe3529e49c63a6892ca22479515816c768b546244466

Download Submit
/data/user/0/com.tech.sideswipechat/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
6474dc7c953dbf126f96f38b8f968353

SHA1
ae794a7c6ad35974661c3cfad25d86e80751e8ef

SHA256
e09957a9fec657d31a77bdbf1b47a981019cd5a8929eb8ca17af20da9bea3ca7

SHA512
89defd9daec63ecbf8b7b6f8ff96093a6f2c5dbf1394f744d1ff9b76998d17f6fdac435fcbb87282ab2d81678fe0a1698e41fa8f6912ee39f4ceeb75715b5dee

Download Submit
/data/user/0/com.tech.sideswipechat/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
5d26240326c84ada447998e5a6f61e63

SHA1
aeac7891f1a112aaeae79cbbe95024498cd0828b

SHA256
68349d6b335f902675ac50ad8437fadaf4cb97734ee32b1af0a51567f9b49e83

SHA512
310d93cbbd1c0cc7cc620f9ac96f50a8741523d5b8ffbf8831b4f917d105bf41e6b65fdfe696fc63e780740052c0636c080a217235e9fe4bfef9a98638ea0a07

Download Submit
/data/user/0/com.tech.sideswipechat/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
c89a4ef6dbfaa965aa53d8292084da76

SHA1
7d1442a4d8243594ba1476cc1015340329de037e

SHA256
f29fcd1eab572c8dadb23bb478411b0d4a2004c55c3307ddc7375786d4124f2a

SHA512
a86569d4199bb09bfe8f36eb70ac667ee9d3009c36101290b3ccb53bc57230fa8879d17b46e17c0cc16676ff89edad11f4794e538b13ad57c095bbfff3738960

Download Submit
/data/user/0/com.tech.sideswipechat/files/PersistedInstallation3066536170725093222tmp

Filesize
114B

MD5
851902defdb29c906b0df9b215ede017

SHA1
4afdcda1d949607a8e3f15fe19278fbdabcfdcb4

SHA256
c2843fc8bbab84c035d2809ebfacb888c2cfd39d69d0419a387329281f335856

SHA512
623d1ead6695f60ddf2dbd4c6c06cec0cbc3025420bdd9aab98102880939db42850c51d0ed1c6956001418220f9a88dc5e66c76833cec97821aff08ed16db152

Download Submit
/data/user/0/com.tech.sideswipechat/files/PersistedInstallation8127867202995398791tmp

Filesize
90B

MD5
34285150dbc4d663b9abaeefaf0d122f

SHA1
9f362f9bba1b729b7b30889dee2e034cb02b05a9

SHA256
5b29f36115af4b21d78e223829e0be3e1c2ab750bb1a1eb8d7e1d9c37687c08a

SHA512
bf714fb0969bf074f88ab2d5e8fc4e72232ded75968591e8dc8ff48da72aa4abaf923f71bca34bce9255a3be9e863af5e9c918bedab8e0c77f187a2dc0a3c742

Download Submit
/data/user/0/com.tech.sideswipechat/no_backup/androidx.work.workdb

Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/user/0/com.tech.sideswipechat/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
b528cae59c1d6775675612c17ad622e1

SHA1
aa531f01e5da7f15d45c06bfe21f7404c6885158

SHA256
e7ff3022023be026f6af4d5f176a9d2cff02439f28b7392d30fc39b716400755

SHA512
6195256c79b060943b63b618c525f6a73da91e81fff8ac5a5d840eb777cbeedbde7008943ce3bb223f14f772f147553398dadf67ec4c883b8e4489bee710388b

Download Submit
/data/user/0/com.tech.sideswipechat/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/user/0/com.tech.sideswipechat/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
c7d637e5ba5f34647993019c7f8ca894

SHA1
fb4277fc25a2a837a035dadaf2521cd4cdf54295

SHA256
755927e98b47f49d7c35356f28170e9835869e3df5f933282e280e653ea4a795

SHA512
1473e54d53373aba22c0ad76fe073a18ec5bb4ff40a5b0685dc9ef36342c3f660d79aba475aabe8078400298d41e59a9d0932fbf4ab5539974c8f72b5c5d30d0

Download Submit
/data/user/0/com.tech.sideswipechat/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
dd0e50dcf3d2e0ce2c5da502d350e601

SHA1
04bbdb895e1952244e06bbf048076d9546908591

SHA256
d2da54c8d91bd192cc0cc29b053ae6d5ca68aeb33871138b2e0526ed30be04da

SHA512
04675f670f625f40a27bd1eba4a4676e07bb6a2de445c309e1e60a9a5f05efdec805c686a766f9d132e725c616a45c28bec22e00eb4d5c4071dc3798470001e0

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads