a0712c7c0b8295603eb860e3d0ccf7e212bd13880b312afb17f633f756bbb822

Analysis

max time kernel
942s
max time network
1833s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
09/07/2024, 07:55

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

com.github.libretube_53.apk
Size

17.4MB
MD5

988287ff92a778e5d8b8b2ad96dc6a65
SHA1

cc762ac2f47c1883eb5e27645efa1a241ee5949f
SHA256

a0712c7c0b8295603eb860e3d0ccf7e212bd13880b312afb17f633f756bbb822
SHA512

62868bd7ab415760be9ef6bdf41f052c1166ed0b13892cef0823a6851bd7f941869e4664b5ae3be69320ea20573e83dc30bcf65e4b92d3034d78a329fb4ac5c7
SSDEEP

393216:6mqQGVSndsA+2ywImheouD3BvKWL9Mv+GWk19I:6Rmsk03BvlL9W+G99I

Score

6^/10

discovery execution persistence

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.github.libretube

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.github.libretube

Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

Scheduled Task/Job

T1603

description	ioc	Process
Framework service call	android.app.job.IJobScheduler.schedule	com.github.libretube

com.github.libretube
1⤵
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Schedules tasks to execute at a specified time
PID:4249

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

T1603

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Scheduled Task/Job

T1603

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.github.libretube/databases/LibreTubeDatabase

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.github.libretube/databases/LibreTubeDatabase-journal

Filesize
512B

MD5
ba3a3dc8e1b740efe439dccb1089de6c

SHA1
ae8e69112a14a5e568c3da4df09491fdfadb3811

SHA256
3e7147edac645ea95cc44194b1d301cf6260eada5f09ea352a5becd4fd30a5c8

SHA512
df6a4decd20b9a830264963943f2e7225933a3688309fcae219d3c8332d7f54e7a13fc20cc011b8950df9e59afaffcbff6ba1225e6b1dc5528d4dee56814d485

Download Submit
/data/data/com.github.libretube/databases/LibreTubeDatabase-wal

Filesize
16KB

MD5
5fccd806312a0b5ea3e9243974b59bc9

SHA1
3af0eb40d22fbcfbc361cf5e38e258eb3b8c06b5

SHA256
f726ea7a39ac198aecb5d3af1f6d12285477b50ab76c4893b8745db6d8617c97

SHA512
479b0429457f141b2bdb62661ee84e7425f279fad065e95d6a17f7b501a5dbabdf6f62543f56628de3e86deda9cf23b88f4c3fc65ac49683af8e7c90960a79e3

Download Submit
/data/data/com.github.libretube/databases/LibreTubeDatabase-wal

Filesize
116KB

MD5
7c0fd69fd5f07ad71f234b81c7e583be

SHA1
fdaddd17b9208b5647254f453a639910c10865ae

SHA256
05b4a9601eb75c2faa27b56010e37551e2f9895ff6db97cb488345a226e4a70e

SHA512
ea7309cdac76d41cc4af49994abcaeec36f89987243f6d255a5604b78b090210fe6823fd1f1833480a0728ecc952ecd8e740dc29853e88e6e452fbeffcf2109c

Download Submit
/data/data/com.github.libretube/files/profileInstalled

Filesize
24B

MD5
256b8c9a802d5a312bf18ec3e63d51e8

SHA1
fa805804bcf7eca6aafd3882cd24f62a239f8422

SHA256
324d9c4798a8d74ce3df7f97a304e65aa69251cbe31718b003778c60c783deb7

SHA512
561a992b5fee8f2437f041dce1c79eceb5b051e9512085ca4b17b6f24dae5e8995eb8c7e341671be24b02789c53e15756ccf5063eddc169399d1a18ec5e8928c

Download Submit
/data/data/com.github.libretube/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
8ddcabb164b7ca29c6a91e3642f5ed72

SHA1
79b4ec83b77c82624c4c6057ec4c9aab3ea66dd7

SHA256
ca5c8fd9ba6929ea042cdc731dc0f92e4f0aab66edd247276ce17fb64fbd91db

SHA512
f21c14ab2cc8821c083b85e184601aaed92b71af845f384adef0e9a28547d6ed9b12b14d0e7a04b3bd88378a2bb8091847b361301d010169a8ee1ab786f35b2a

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb

Filesize
104KB

MD5
bb29d9a4780a9c3acce06e18b766b96f

SHA1
d235c89bb43538c1e9c711d2aa23b696966543bc

SHA256
9d3dc81cbcb60ba3394dfb546bb3c59200e39c47a5dd441d855642b7bdbe70c3

SHA512
9b75af1440d967d4ff2cf433c4f94009706382fdafb703a903e6fcec2932283699c67673e6ddf5072905eed2a803799931466648cff9292bf96431ed63eaf5fd

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
f87b7b6319816800ae5ec86c005813ad

SHA1
f8ef37e29ff53a40d75bdd4566f578fa64ec8060

SHA256
ce4aac99d9a8b307b6edeb696d74e1d05dd67f97698ce877b68ef1ba7d73a9fb

SHA512
29c44b66fd902fcbc63882ad5e2a329fa65c5e958ef238384a8b6b19e9409db4d80e0f3f5d465a8db18f1fc3644c38b621afd66f33689d667d198371175167b3

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
198640c14f15d48e98b76150bf98ac0c

SHA1
9cb9fde18b21c1762f5f77e1d07dd4e24b055061

SHA256
46e5e358e93536675f694c3560f9b945ca8e5455db1adb724cf12af4e0e88e05

SHA512
6e20bacc0661554954d77c9b4f55dffa0ffd70f7eddaf77805581e385cf65abaf6f38f2598f109f2d31e2f5d8fd16bba9ba762cbd5b4d9fcfcca4cd4a85d36b7

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb-wal

Filesize
116KB

MD5
3701e83722ead298fbe785b75ce24cc0

SHA1
62708e2bd097af0706446baf2da8da74e458f4be

SHA256
6945456a62a3a3c5c1932841772ec4b50fe9270e36c8fda0dbed419f9d3e7163

SHA512
b9bea9555078f81cdd0568dc6bd51c5b2aaa2d588e858992e612ae56ec78552ede1e1dba2ba483e2ccdfda1a0846d95135aa9767a3ee422cc4d7239bed15914e

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb-wal

Filesize
406KB

MD5
0b7cf6a7acb980163403f91fadc16d2d

SHA1
b85e9f29eaa0674c9db46982e95af094dd6efa0f

SHA256
aa38bd66be4d88176c4a506a6bf6df5050d6b9df28fa9a1add67b8b64377d038

SHA512
e1cc6ec1ed2c1146f238d5d74b019bc6b8d5cfc801ff0a48e72ab40dbbdab88f8a7f4fd4a00b801c1cc40cf3f89089f7018a9cae08d051d436c14233aa8f2c73

Download Submit
/data/misc/profiles/cur/0/com.github.libretube/primary.prof

Filesize
10KB

MD5
03532efd24cc50a9260303d94fb5fb8f

SHA1
58fff100e042dd3f3d91927b9b7e079ad0324e18

SHA256
c3a3fb6426da82f081971f179c618539fdcfe8c077b2676f24a3604f740276a0

SHA512
5abb6f696c9cce9048c29c0f9a01fedbc3a67fafbc40049d01259582c0cb01ecb80c4fa24ff9e96989215670f8b743e3d26d69a89e6dfdc801f3b83f2f3bad4c

Download Submit
/data/misc/profiles/cur/0/com.github.libretube/primary.prof

Filesize
11KB

MD5
9811f6034006954b013066504fecb4db

SHA1
677b245af80691336b9a583479b8e9397ab442f1

SHA256
32633d6aac48d95758763a284d9d26833cfcfefb1311c09a54cc2ca4b6813749

SHA512
33eea4ac230805e8b055c7b2e974574e6d37a125b0550feaeecec904085730df6137fbf81d52d4bbbded9ffc163ddffb73eb77b0925b87b7f2815576d4045688

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads