71980d14fbcfcf3894768307025b2ea69318ec8c0a42da50e0f6bb08697d7dd4

Analysis

max time kernel
236s
max time network
249s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
09/07/2024, 08:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

junk.apk
Size

5.4MB
MD5

38b1bb4df8ae2e9af5b02a9bb203a3e7
SHA1

bdb483dba40c04d3c1487aadf81a8bf89c305b70
SHA256

71980d14fbcfcf3894768307025b2ea69318ec8c0a42da50e0f6bb08697d7dd4
SHA512

46cd3aac789ad54572a75ab75c05764eb30d716744c92d874d3de1b083e82dcd8e4e26ca138c58a7b4889198824c95e6857174acb89f250ec43f1c10f0d34315
SSDEEP

98304:hIVAJbkWuOP87gLCrhdSEjpjiI0AsS9mmDVufWB/d8OCJimDkAICughWtyQi5JI:hIVi/s/FmI0FS9dVMa6Tko3UghtQi5JI

Score

6^/10

evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.hr.add

com.hr.add
1⤵
- Makes use of the framework's foreground persistence service
PID:4491

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.hr.add/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
f7b03d88e8948c175dd90c4a41e89a4c

SHA1
1a295ff71711fb3d62a343014a3e129f0fd2149e

SHA256
b84e322e14d442c09036a83362350c6d543362ab5bc1f0d10e3085e3ab6c4e4d

SHA512
b4b0e3dbb6d205fad590d0544182c43f0fe4ccbabcbe312fbaaf73436c7b8e6bc42fde14460a8ae02bd72b57ba0f328695e3c6d25220dc44b7e9b6844990b079

Download Submit
/data/misc/profiles/cur/0/com.hr.add/primary.prof

Filesize
1KB

MD5
ebc4d49fa68fd2709647bb2b349a966f

SHA1
4ba356dfb25544dc806b7d723ede9388e766de46

SHA256
e11d4ee17ff15fd3e7689118229699f8842ba9eaba3fc27787b4ea1f5f34ce79

SHA512
21819e3d60e3d107b729e1faa7d51ad61709d6996857078bc3ccb619bf1ad78fa481c20fa6e3c6181cb2e9d4f27630443b7dfdf9a4d7798a703a84922338f3c2

Download Submit
/data/misc/profiles/cur/0/com.hr.add/primary.prof

Filesize
3KB

MD5
881c1ad893645ed0a224f1190931637f

SHA1
fa8b4eab56be3d0e9b2a0cea5f323a9ba85424d1

SHA256
61c9a5358f1804c64e23ee8f35ab3d0f892f637c1e158bd65385b17dfbe1ab61

SHA512
91647b01897f0c5dffddf26adc1d6a63966886855662caa1b633fd733415d533a98c46ce7c62fb15cc7b57082689be3dd8a77f4abe06cc85433bd87b4bc33ec8

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads