42557a21a58510a23268509e4457921f81b507b9d407e42f3365a6514de1baa6

Analysis

max time kernel
20s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
09-07-2024 01:14

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

42557a21a58510a23268509e4457921f81b507b9d407e42f3365a6514de1baa6.apk
Size

2.8MB
MD5

6bac095ca7c3546e1764695f9c09474f
SHA1

5d729d4f4fcbc98681ba7b1478ca89b1131a0d8b
SHA256

42557a21a58510a23268509e4457921f81b507b9d407e42f3365a6514de1baa6
SHA512

0bade827030293dea806ef2a5dbd31e37969759898d6541c82116281f7b8f81f92155618df1fc4743885359b487937381f225274cee60c7ba6e8cca5f2aa2ed6
SSDEEP

49152:Eiu3F1J72GkfbDVJZYhXnT9/gHKPE7Zi/cNzgLNNGjCYrHPgDf79:XYFvaGszZYhCX7McBITk9I39

Score

7^/10

collection credential_access discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	X.God.X

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	X.God.X

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	X.God.X

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	X.God.X

X.God.X
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Checks memory information
PID:4620

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
fce709ec243e5d804b3dac4e50a38e97

SHA1
f67f4f3dd831f417f8b084b9a6665c9bfa5e2ae3

SHA256
ffe7b9099be42a65975b65ed76c05bf1ec4ea8a4930e83f85afc4846c5a10b2d

SHA512
8557498cbf317e4a6878f83eb5a645045b9fe97dd82c6f9e38f68605cc0dabd406b125d6d1ab06d4d1b05cf1149d7e0a010ff952f230501f4af794e4390f092b

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ed2c3a195c5023b54675490990e2edc0

SHA1
e6ddaf28a78c7960b3e2e272fdb9db2d03034c40

SHA256
4326dfca099fd8d437fa255cdb14ebef216cc33ea4f93df25f260788b850d3fc

SHA512
6c8f1e5e657abe3fdb56815785b846b21d47cfa9cda8dd256600243abf1976ede5981e44c48f1fb20b3537b5646a65a276c4154086e8dc4837bc6693d4add5a1

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d0df63322929b83aa446c394f5c8cf4c

SHA1
9e316031db5fe402ca225967ad11555cc4dcf147

SHA256
92f2716b84df190416640d3f459835c726877fc59bfaa5d61f875ba50e376561

SHA512
1e0d774a01ca69bbbefde4b370174028b28eca45287c7a3b604acaff52ab239cfe39ec2ea6dfa285ed89db6da509676f50ec6b5ec82fac30ccb375ad0633a10d

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4227fb5343581f61914e0e3931d3b827

SHA1
8304ed8e6bfa6040ed0d51e6a88ace6e22806df7

SHA256
26078b9141031db0e9d42a9332492d36aa2243b204bf57d7fd15a775c0014396

SHA512
7cc66d1a8ee6596c7af7718fc996c528b1fd29d64ba8d6c5d2cc066fc61400dab9bed2d510375edd189f774714d870985ba8e61b538ecb0dac1b142f4e520e81

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
5e84c2906c22d4ffa398347c083ace1d

SHA1
31edd7a97225b6eb46adcbb96eb4af284236ee74

SHA256
0f6686044b6b9cbf4d05698ad64afe7632741b4afb03886e4b2153676ef287c7

SHA512
6667e24baae13b5b2a3a5b96e824822c942c451539bd4bb8354930162ac8e145a5d6c8326d893a9f0079bb2599caf0f5b81f39c08e1cc1d08410439bab02d0ed

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
776357feb231db06bb91c32744de1cec

SHA1
08652952b6171abe1a08db4c09637f42a519edc1

SHA256
e8ba09f0e9d51dc8bfada978150c86944d9a55e0446060db0ba73e9b2495fadc

SHA512
1f90c1ecf8952325a57f017a96611790a094acb20e9b11bb42c7525ed4a0c3727d50eb12dc616b8fb4a765e48f33cb5543f4efca1b2d798508b433d3b17a298a

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
f7bf7667d81509d323a87113495cc1f6

SHA1
a27d841e36d3332ebc561dfb96c37cb0302ab41b

SHA256
8569cc3c6b523e2d443fa617928296a36d4ad2d7a9d30a0b8782a12c562a3749

SHA512
224fa9102292e1fd43cd814bdfe077325cdf6c45840388a33011970de8f3ecf49ed41065e29515edf30de0a4cc9e9bee212b31c08720c2f540245e5eb0d02137

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0d1200cbd1d4e4f5e61c040db1aaa508

SHA1
1e3d7109c92773aa5dbb0c3c807b6254b64d3232

SHA256
68516a3f68d1defef63a4ca014e23500133fa2f1ec2d6663c098357faa606408

SHA512
f9b83250f0f0dcfe92546ebe105981c74747f11413d1f4e621b1aa5cfc2aa894c509c517983eba1efc7c180294bdc812d8783910efbe72c36ac9bbdc30c90347

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
79ae2447f0128e67210c318b67e2fbb8

SHA1
ef0e0c3562da5eeb112f9bbff0deb3005b25fda5

SHA256
0e1537e6cedcefb2ee147814e93c56e9b71216705b266d08abec219a7d6bfad8

SHA512
17d28a5428a4a798b1a50a2137855545a574d7bae8e8efff45ca7c1b23ebedb90a554552525df25e6aef0f9d3d1d43e2b130b34c72317de9e6250fb00674d65e

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
8e494def393b3e4ff3c77b731909a2c9

SHA1
f2b7c145b7ba87f21e6652fbb15ebff3f74532ff

SHA256
e768a3a68634272f3a9a8dcfa3db1833bf67e75133a686d71e3a4f8a2a5e6a33

SHA512
f71636fca60a97627ec15cff1008d85d48c0383567d55b5426617569b4779c11f67427dee4133db18b32fe24a1eb7ac7993e1774596c8044c475ed86d34777e3

Download Submit
/data/data/X.God.X/files/PersistedInstallation1186515978896939838tmp

Filesize
567B

MD5
1abf4885fc0ad8c5a694d7d57f2666f3

SHA1
de74cf4039055b8f05320b2bfff99c4ee4f843b1

SHA256
e62d409be9658ca033fe82b3c415bc0978c12a59ae9d58f8546174e2b55f7edc

SHA512
19ca3470f9ba4ec550dbadaf67dce5d9a43c40b62bf9685d65b470ccef63add4036f1e8980d3bcbcbce5cda0f34ed45ea11218f2cf79ed876a9020a75f453eac

Download Submit
/data/data/X.God.X/files/PersistedInstallation6357836911055522095tmp

Filesize
90B

MD5
2e4c1fd39ef3584d3622bc872e613482

SHA1
9b7ef097c49be6a88069f3af443242f76e68f9d1

SHA256
c0c1eac50ccf06a975b912de42e1e1734e1d60bc9928b7328a07e8e9080987e5

SHA512
c028dda002abd85c8dc29789863fc974aceccba828b3f55bfb001eecace81d531aac7cbacf6c5713a851cd7ecfc9e954550d4559ecf3cb6ba3e239ee784310c8

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads