71980d14fbcfcf3894768307025b2ea69318ec8c0a42da50e0f6bb08697d7dd4

Analysis

max time kernel
176s
max time network
172s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
09-07-2024 08:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

junk.apk
Size

5.4MB
MD5

38b1bb4df8ae2e9af5b02a9bb203a3e7
SHA1

bdb483dba40c04d3c1487aadf81a8bf89c305b70
SHA256

71980d14fbcfcf3894768307025b2ea69318ec8c0a42da50e0f6bb08697d7dd4
SHA512

46cd3aac789ad54572a75ab75c05764eb30d716744c92d874d3de1b083e82dcd8e4e26ca138c58a7b4889198824c95e6857174acb89f250ec43f1c10f0d34315
SSDEEP

98304:hIVAJbkWuOP87gLCrhdSEjpjiI0AsS9mmDVufWB/d8OCJimDkAICughWtyQi5JI:hIVi/s/FmI0FS9dVMa6Tko3UghtQi5JI

Score

6^/10

evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.hr.add

com.hr.add
1⤵
- Makes use of the framework's foreground persistence service
PID:5002

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.hr.add/files/profileInstalled

Filesize
24B

MD5
e921a5e6a2811ff5f2da4f7500e8205d

SHA1
71730fb4ebd2615af4b4a9035a3c020cfa95daf9

SHA256
a090b824ee29a6f1de03ce4024a75d84d064832509bc9c00e4dacf3d8f3fcd77

SHA512
b5cf6898b494557a79af91d3282f983ef697756ca8fc47a611e6d6a2770f706fb2fa66070ff17d4e5a49114551b82cf6479b9ee53261302ee13d28af203589cd

Download Submit
/data/data/com.hr.add/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
5250aed3d0ba13a7b0a5fdb719bc7185

SHA1
1a41bc493b2d732857a15ec1949d6f22ed362368

SHA256
830cfc33eb7dd6ded761b4e19c5d5265db08515570cadb7f247518112000a078

SHA512
db93d5069567147c2e8e6dd6c5aa454070aa9ea6de7ebe55876c702888ca33792eba62ea309de9e92987710817e5a1eb01bff94db282e8db83ba292978f3eeb9

Download Submit
/data/misc/profiles/cur/0/com.hr.add/primary.prof

Filesize
1KB

MD5
ebc4d49fa68fd2709647bb2b349a966f

SHA1
4ba356dfb25544dc806b7d723ede9388e766de46

SHA256
e11d4ee17ff15fd3e7689118229699f8842ba9eaba3fc27787b4ea1f5f34ce79

SHA512
21819e3d60e3d107b729e1faa7d51ad61709d6996857078bc3ccb619bf1ad78fa481c20fa6e3c6181cb2e9d4f27630443b7dfdf9a4d7798a703a84922338f3c2

Download Submit
/data/misc/profiles/cur/0/com.hr.add/primary.prof

Filesize
4KB

MD5
d79628020709505d1a18dbe503fec1ae

SHA1
ddc14339ab49322da1fddb4c29d228507db89fea

SHA256
75aa506db4df2806be792b68e9cdfd5353f937c9c281d8699cddf1278de1fe81

SHA512
c75af4d74ece077fa50b1043093826e1030d23e39bf20dbf387199b834bf98ea84652b83e98d0ac0bd7f0adaa4ee8c7948e707ef2d922abf150662b8bd374929

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads