a0712c7c0b8295603eb860e3d0ccf7e212bd13880b312afb17f633f756bbb822

Analysis

max time kernel
940s
max time network
1838s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
09/07/2024, 07:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

com.github.libretube_53.apk
Size

17.4MB
MD5

988287ff92a778e5d8b8b2ad96dc6a65
SHA1

cc762ac2f47c1883eb5e27645efa1a241ee5949f
SHA256

a0712c7c0b8295603eb860e3d0ccf7e212bd13880b312afb17f633f756bbb822
SHA512

62868bd7ab415760be9ef6bdf41f052c1166ed0b13892cef0823a6851bd7f941869e4664b5ae3be69320ea20573e83dc30bcf65e4b92d3034d78a329fb4ac5c7
SSDEEP

393216:6mqQGVSndsA+2ywImheouD3BvKWL9Mv+GWk19I:6Rmsk03BvlL9W+G99I

Score

6^/10

discovery execution persistence

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.github.libretube

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.github.libretube

Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

Scheduled Task/Job

T1603

description	ioc	Process
Framework service call	android.app.job.IJobScheduler.schedule	com.github.libretube

com.github.libretube
1⤵
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Schedules tasks to execute at a specified time
PID:5059

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

T1603

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Scheduled Task/Job

T1603

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.github.libretube/databases/LibreTubeDatabase

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.github.libretube/databases/LibreTubeDatabase-journal

Filesize
512B

MD5
129632da755b4702fff4505616e50217

SHA1
19854b4de434eb43375475db8630572f437c1f84

SHA256
070423a524efcc56b333d75ebf5d9b88629a6f7a060e0b9cded6d33da74c9dce

SHA512
0ee578d613aff82e7a93d4659e2c170888a62ab15e7b5b2001b39d3d056bd32391528b2185107c02a8f34dfe32b1dbda298b4d533873f52d30283c229fa65a7a

Download Submit
/data/data/com.github.libretube/databases/LibreTubeDatabase-wal

Filesize
16KB

MD5
730ddb89c5b46fcdec7e326ebd47f63a

SHA1
92561a5cd5a7b8e0037349e526399bf3171bb650

SHA256
a162aa68bd1f4425b6e301f3e28b5070e273d8f5f3ea86d4e34414ea0a9e5e71

SHA512
f08269eafee3cb0abfe55ca57df4658e43bf338e32a42fdf8a29c5a1a6123bb03f776ecc86e31c1d2ac9014c1f3ab62716fd8d7e4de9fea33081e2d6ccf9768d

Download Submit
/data/data/com.github.libretube/databases/LibreTubeDatabase-wal

Filesize
116KB

MD5
336b29b43e9138c42dedff560a8c0faf

SHA1
9c942d77012b3dbfb2fb4825e07bcf37246f1a37

SHA256
4f96988214b8069305d41754a911422e7ca9ab5a0ecb586e52a39914ab58e6b0

SHA512
f09f43849f1b939f92e3720344512aec0a2ed3a320e75588dfb7f83b17437a8d67b2f3d88cdce539cf346b00c986fc606ec938f8000d628be58fef3551953006

Download Submit
/data/data/com.github.libretube/files/profileInstalled

Filesize
24B

MD5
272c3529c8cc942aa3eee01b5eb8a4e1

SHA1
89190ecf7af70bfd0ef9fac901840bfbdf734ccf

SHA256
7ce7315227b0f596549353b9a41621cb526337f2e84f7fe378647a0c3e5e0268

SHA512
3b27a79517fa840f4faee7bf84c56b51df7668136e385b47e08333aaf574191b912df34e61a3ed537a4d2e30faff1fbd8d0bd97cb91f91e6008249e4812964ad

Download Submit
/data/data/com.github.libretube/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
bb77ec34a126cc450779cee63972a018

SHA1
24757c64ea730e4a48e83077209f39eb63d69c98

SHA256
b0280504c3cada522bd316952a2a5a5a97eae3506eb7dfc1e4552b6eb6cd5af1

SHA512
eb7c568911a3e814845e28c5a0d80e9aa104a6237ccca323a304bebfebcba2c83fec3fe217dbd78ba206bc45e676ae71eb746dc44e5a1237c35a2bc9dbe90003

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb

Filesize
104KB

MD5
d83bf788b8edbace90dbdb90e76de239

SHA1
a8629a7d372b5c1231381815f284fd46e7aade7a

SHA256
5b7a4837f13f0620cee292f28a9007a57410ac726a3680a38cdebd1a170fc35a

SHA512
5a3c934079dfc100f779742f0f7f610710f5bdeaa6c51d24d4530c38ef2cba94dd27d5b4e17d5e47f59404e1d78b4af910fbc7b32ec010f5f2f2e333ae7b7cba

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
7e4aa698e78644108da56605c8756c4d

SHA1
b2a958ca15d99b594babd06cfb10eba247476254

SHA256
674bdd2d08100b2bec10ed598d1a39477670b16fb90013aec1095d9a5cdca893

SHA512
d8bf812c88271088a935e05cadabe957efca222b39707d5e0683ba32638230d64c78ed38ad4a70432f99346d6301c7a7d95d85c54b3fa9c72b94d888a065987a

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
6bbc1d15768c781fbce0f82417b65cae

SHA1
50016f842d6c96878eaef848d3db93f6a8d2cd74

SHA256
da744a7e73471256129729d45537741bdf7d56f5b80d33de555d339f2c68a4ef

SHA512
744a512ccf98407f0e939f0e8a11173fc68414a76dadd441dae450275c7a14990a554886cc1a0e8423f32e0bf8c3a8917e2b7509c25cab2205e823a6f89775a8

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb-wal

Filesize
116KB

MD5
50c9925cac81116f73aed9c8e0e050c9

SHA1
a7edb1ed9ce6bb131ea33ced3a053bc5ea982657

SHA256
f6cee372c48f17815b7bcf427c766b6bd09b36d70d2d08e98a968890bf7316cd

SHA512
c0d140b55503a48abff22eddd6ca9343937277b76b4b9fbd82782759d70eaf7edf7baa7301b1ff0c1283a6a886b1f4ce375419270b4cca415cc688076cea4ec3

Download Submit
/data/data/com.github.libretube/no_backup/androidx.work.workdb-wal

Filesize
406KB

MD5
b745de3ab523c033d9cdd8426f7f5762

SHA1
3df3552950ea8a0b91f40af722c6030f47852a24

SHA256
055d12b848c8ed7d7803fb834d95b7c854fae71308690591515b820ac2103e2a

SHA512
06b024f160a4714a3b4e8b172af23cedbedb4b953411d6a20dcdb10f889941b65b3608056eb5b8401f6ad058d0d8ddbf8692596398850009453340da3789c75b

Download Submit
/data/misc/profiles/cur/0/com.github.libretube/primary.prof

Filesize
10KB

MD5
03532efd24cc50a9260303d94fb5fb8f

SHA1
58fff100e042dd3f3d91927b9b7e079ad0324e18

SHA256
c3a3fb6426da82f081971f179c618539fdcfe8c077b2676f24a3604f740276a0

SHA512
5abb6f696c9cce9048c29c0f9a01fedbc3a67fafbc40049d01259582c0cb01ecb80c4fa24ff9e96989215670f8b743e3d26d69a89e6dfdc801f3b83f2f3bad4c

Download Submit
/data/misc/profiles/cur/0/com.github.libretube/primary.prof

Filesize
11KB

MD5
f63c8bbeca766b129064ecff1195a4dd

SHA1
f0fe863c111b2ecfdb504246f1ac94f1135faa0e

SHA256
41ffd26e1cc85694167b63fddcd5c811a0d6e13778e97f55cbc35e87667a9374

SHA512
dc04211d5397edcc425765b9354c82b71922e3b402ca489b71b9cb9d078fd639e327c3d5b10c8874d67fcc7bc61a773c4b125d3cae865f307862d89da8c969e7

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads