a3a764e9c97606af14d4847f6816167345bbc2c0f7157e9e4dea1a3db7eee7f9

Analysis

max time kernel
3s
max time network
185s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
09-07-2024 09:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

base.apk
Size

2.8MB
MD5

c700a9f32dd2d42392572a3d827fdf36
SHA1

9728797ec1e93515da9c56215c30a6634f6521aa
SHA256

a3a764e9c97606af14d4847f6816167345bbc2c0f7157e9e4dea1a3db7eee7f9
SHA512

0ab84572d98ff8e3d0f04ffaf538352a89b35cf10f0f37167a84ad4053bf1411065423cdbebd5f5e09103556ba17d2cdc2bde9c650ea38b572fbc88bce0b4f74
SSDEEP

49152:z/YuZrOPQV2VEtUbCdNHcsan4xy1OpVRsm9iqhDc37njsgCWhqTco+Tcdwy0OPy3:bZVNUboNHcsUwDRf9iqhYLnAPWvo6swT

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.mycarroll.app

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.mycarroll.app
Queries information about active data network 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.mycarroll.app

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.mycarroll.app

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.mycarroll.app

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.mycarroll.app

com.mycarroll.app
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4963

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.mycarroll.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e653b1da206841d8a61a050e2cbe71a0

SHA1
5e343f13f2c47cb3174243388bcc9f216574e2f0

SHA256
df8bfddd04a7c17b5b5f82b5240ab00a7b9348b4c016ea9926a6e849cec1a7ca

SHA512
9e8d2f513778eaf5d47c0ecc2206d218c143e3ba7bd6d09b2cd0d15515be329da1f78b6e4b041525bd7031c42869bf6e25e465d24695c95302d8187b6b6cda88

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
cae057ae3a12d4490309bbbc72de506e

SHA1
299cd1541d8960894b1c8fd17fdc0e797e0a9353

SHA256
cb5843f7e240f2c3ec4c8a233e4526361e9d7ed6738e57c5d7da77d2af66c360

SHA512
e66982f8598a8a7ff38a419fe6eecc8c2164f4bfae6a5cebfde6f0155a2fc07826c4ae5c167771310b3a01db1804715fcc71e246c6e7ab1d9dbcc1bd2dde9c05

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0839f8c581dfdf65880caba5a7616ab0

SHA1
ebdf29731a0dbc2e6a7635c5e0b48809c8a2604a

SHA256
11581246bba4375205b47342c742ef280de6fa5626eb189841dd217db7b95a2c

SHA512
18abe78b7e71eb5ac358e7b2e88ec558cdd1d25540148a6e392fd5668551b444b61d913e47cb0025346786948eac81743eff2b40e3c052650c7664dc2588ab78

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
c00301e7e6602a9b7f71a64aebcbaec6

SHA1
e5f752f87c1b5be610efa05c053bf49dec173067

SHA256
f849a1f1f02c778ebf1adb9b11c98a821c2d816dc5fc2f11b2b2d68c62c433bd

SHA512
96d2f8cf5426efeac46a634e09b171b37d76c39c80076021f20b9a0135bc2c976d0819987a3be0c66eb2ba53c38a95e45f6fed49553caffd6dc9e8b707ef5502

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
4ee893d1b7a5a349c467509f719553e8

SHA1
82e25cb227c3b82dbb67c2d3986ca216c7c0263e

SHA256
b600cfc53ff6061c4923d95dd97ed4ae752cb5da900a0e9b4adfd953cfd6baec

SHA512
d7707873ee8faca2264a4ea57d271d2dddcb0f17de6d3da05bfa6884a7035d2ee3b777993d36a6c342b7475009bc04c109bb2ebcb8acfa4aad135d4dfe8414f2

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
eaa3ec61a8544448065c381db83de359

SHA1
a064a1add722418173d5bc26994fe9b09236e700

SHA256
cc2283a33bf23ee8005023b0525d5e7cbdc92a1f6c2484caf89171eb1fdd4a50

SHA512
abb26dd031578a6e3188e48a94dbe5f8d72fbcbb23f21f72623e3e57b1173408be71882907a2fb7e805a69f48f8150380635cd428acffb05d65728c2b3e7ee5d

Download Submit
/data/data/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
db25f4b66de022ff4991d8d30832fb03

SHA1
eb75bf9a5bd4b6e1eb792e8e2796dc5ee4f1f99f

SHA256
a69b6374f9e308b0c289a729cc7a441a7c49fc36a884ed7546832e6cfe6f0c16

SHA512
7a9144d3759b18478c4db23239cb30b692daee48d5767c146eb4d9c18cb36cb9f4b427f64dc6d9ac52e4eb7cd4aa0450a1b7d0e283787ff5f4afc96b937e0efb

Download Submit
/data/data/com.mycarroll.app/files/PersistedInstallation301012949031762985tmp

Filesize
90B

MD5
c3112fbdb5c6d82c861787f637009e85

SHA1
fbed6979d39ea43f4c124349052d2306e8eeeb01

SHA256
a3e3d8dfaac5ec5174e19da4252e4656fa0c6e7d3ba21c454a50d225b022f846

SHA512
64f4de05b6691ef647b9f812393f8ca9d66b435ac65ec95c81e915a2520726e2bcf695a16ac03923bc65073e43e8b665351088c2033c0dafc019de853e0a2209

Download Submit
/data/data/com.mycarroll.app/files/PersistedInstallation4802585745547801207tmp

Filesize
567B

MD5
7a91f59f3d07ca2184c2d017f9c93daa

SHA1
efb486475dfadcd711cdac2f1d3970ae18f6a5c4

SHA256
a7b345201e3e364918c503cffef9caa0fcf119c8b0dc8e00b8f28b9df7c333d0

SHA512
3b07da4e90348a5506d47a9dc07e000ec08598158318407351c0b69f829efa5fb11f96ee5414dfa2f6b63c5d7dd17b96adbbcf5723a6b72a7e474a231c5d7845

Download Submit
/data/data/com.mycarroll.app/files/port.txt

Filesize
1B

MD5
6f8f57715090da2632453988d9a1501b

SHA1
6b0d31c0d563223024da45691584643ac78c96e8

SHA256
62c66a7a5dd70c3146618063c344e531e6d4b59e379808443ce962b3abd63c5a

SHA512
f14aae6a0e050b74e4b7b9a5b2ef1a60ceccbbca39b132ae3e8bf88d3a946c6d8687f3266fd2b626419d8b67dcf1d8d7c0fe72d4919d9bd05efbd37070cfb41a

Download Submit