a3a764e9c97606af14d4847f6816167345bbc2c0f7157e9e4dea1a3db7eee7f9

Analysis

max time kernel
123s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
09-07-2024 09:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

base.apk
Size

2.8MB
MD5

c700a9f32dd2d42392572a3d827fdf36
SHA1

9728797ec1e93515da9c56215c30a6634f6521aa
SHA256

a3a764e9c97606af14d4847f6816167345bbc2c0f7157e9e4dea1a3db7eee7f9
SHA512

0ab84572d98ff8e3d0f04ffaf538352a89b35cf10f0f37167a84ad4053bf1411065423cdbebd5f5e09103556ba17d2cdc2bde9c650ea38b572fbc88bce0b4f74
SSDEEP

49152:z/YuZrOPQV2VEtUbCdNHcsan4xy1OpVRsm9iqhDc37njsgCWhqTco+Tcdwy0OPy3:bZVNUboNHcsUwDRf9iqhYLnAPWvo6swT

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.mycarroll.app

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.mycarroll.app
Queries information about active data network 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.mycarroll.app

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.mycarroll.app

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.mycarroll.app

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.mycarroll.app

com.mycarroll.app
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4621

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.mycarroll.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e73b7190488b18e96154c5ce40e4a6ae

SHA1
e6516f146cf3552bdd521ccca956d6d0d7a4ddb8

SHA256
906efad5ae6944c6c0d8452d0562bc2235fbfcded098e4d5ec60569d22c0d2b8

SHA512
b9aea0ef231c7ddd52759936d2420f2fbd0e3e723ad3f5368080da82b53ab6e29e6c19839bf315d924c4c2d33e92fcb7442d9ddc5a3581121fc8464117b0c03d

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
9e93ee6ac871f7a2a78469342ee11818

SHA1
e97af15708a36f2ccc46eea7ec9f7eeee04646d9

SHA256
5338254a330997f066a4f6d82cb2dd3b40096e8c0bcf1e3892897f4535c10c7d

SHA512
db009a5db94beab98406344b6f66f6bef296511385eeb2e070e7fc800001dfd75a31065bd480e0ce8f8dea6385bd3d96d6a2ab4916edb15df2ef07b05cb54a12

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d66c36cc59bfb6cd9f9c967f6fdd01db

SHA1
efa01cdc7e93cf6a6245df4b29787fe58e9a8826

SHA256
fa85ad28356658119d96d33c40ab5d24ca02f8538884cd3766887fcec18abed9

SHA512
1049d60cd93fdf85289c573e6a66c039f816b010bd00315877d5cae48f0aa04c3f918cf744721386bb355e0acafc176e37804f57a96306e29f34d4dadf9d9b0f

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
a1bcc4f242479d4c7c166a29f2216203

SHA1
1debcda38126f95f5b1d4f67127f70a31e8608a3

SHA256
83a7e87307541928386924f23cdc852f72ed8bc1d00073a21e301b0cacae278b

SHA512
396c5345af7a2b74d8cc4fc29fd5ad30978671b84493db9c255e784ba5a35dda015069929a6d58d12811930bc8fc0b29aa2a3b703196aa7421aeb39d102cce31

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
a57eb40d6ff81aaadd8bcd5b0be58599

SHA1
272cd8b001bae3d780add216bc144e77ff3e50f3

SHA256
bfb7c0a80a1608222e4001db5c8b68af35bd854de2e490d01f79e6240fd4850e

SHA512
a9e59367970c55e50e1d18852fe0ea33178eb41bb4498f00d0f417ffaa67567a0a6d9d9f9880ef5e93b272b1a6d68ce3d51f4a99d998fe30cbd284b9e3f81268

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
b08daedd1ae074f42edb6aeec1949d39

SHA1
9eee155c318311dd8ff8d75e7be076fd5185d8bb

SHA256
d9a0b23779cb054e85f1164346c883b678f063c83cf63be6210bec5721fff7f6

SHA512
b805858d2f383a5a62e4b2cae1f049f4d804d3f588e0b496dc629989bd900e017c9588f5bf00a1ed35b6718d9256acb8a382ad557726b2849a13d439cae52183

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
be3d2d6cbbb09ca5d69423daf439134f

SHA1
88fdaed32ebd44b1a0cdfc52175c28bba44b17d6

SHA256
e99b5bee1ce51d843c4700958f9ca760f829531fad677862decba7b1510db55f

SHA512
fd56e94ad23a774e2e22d866ea347d3a312c1def40a755c2f6ba6323977ad425bdc7e147daa4d1f73418c2393151ab6ab4d33e7cfeb83c03280a9033e592661f

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
13b7a8ec65ae49bc4981a34007aeff25

SHA1
ec115adbe3ecf4dd4c27f6cd9ac0ee22d9bccc8b

SHA256
e9071e52bf33796e63335eedaf4b885f6d332eec78a2723d868b4a9a668878b9

SHA512
87072947a392e797b46c6471d0c381735dc961217fc3fc3d92333c6096996f2453e190a9e71ba9226f2915f8338fa9ce4f01d412693199003f23f46ab127a653

Download Submit
/data/user/0/com.mycarroll.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
6235c3e3e174c956d9b4549f51a7cdef

SHA1
77245c90dcd9ebd57eac2f164565c3cdc899dd8e

SHA256
cdb1da4da98c0a6ebcd89e9819bed953e47f86649ba88d57b707888592d97190

SHA512
2833d0ffd70051de599adb53e16ccb8567b6662cd824efab6608668806dea48107d815fddcd5b6cd80b0ca0b17b5a3bf686f1b351565add0f43500ebb9fc81cc

Download Submit
/data/user/0/com.mycarroll.app/files/PersistedInstallation4779244433340771543tmp

Filesize
90B

MD5
8a44c9616bc3c6d52df7b2efc0bc328b

SHA1
dbe304ab2c0a007272ac01b2b649e9c1992ea47c

SHA256
cadb4fd814f1c74eaa5a49273d125a6e37d099f1ed45bbece18193b6845b8450

SHA512
949c5907e38c10cc298382f49e2c056ad42e6a6eb6808fd542ed16981bf26aec2da172c498f157b1c067f4b14665b5a7f95c68e62fe7018c2bae2d602644c48f

Download Submit
/data/user/0/com.mycarroll.app/files/PersistedInstallation5060631681483169087tmp

Filesize
570B

MD5
1ac95af3a5754400e4c05dfaa49701b6

SHA1
19921d03f1ed61691a9224030b2bae18926ea300

SHA256
ada785450d6526e3815986345870bb60286227851dbf54bb252e5adc4b7ad48e

SHA512
ce8f3c78caa959d1749ad98ff8e1a9825bec3b5b5de6be4ae85003efde08a9c824a937d5b1c36222fafb5187cd2e8c6e947ab79b299453cfa5622a4d03833fbf

Download Submit
/data/user/0/com.mycarroll.app/files/port.txt

Filesize
1B

MD5
6f8f57715090da2632453988d9a1501b

SHA1
6b0d31c0d563223024da45691584643ac78c96e8

SHA256
62c66a7a5dd70c3146618063c344e531e6d4b59e379808443ce962b3abd63c5a

SHA512
f14aae6a0e050b74e4b7b9a5b2ef1a60ceccbbca39b132ae3e8bf88d3a946c6d8687f3266fd2b626419d8b67dcf1d8d7c0fe72d4919d9bd05efbd37070cfb41a

Download Submit