f5092e2efc63eb2b223767d2278ceba31693d37ea2c2c0959c42a3462a5d480b

Analysis

max time kernel
177s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
15/07/2024, 20:21

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

crypto ice.apk
Size

8.0MB
MD5

42469ce856baa4eabc38d29be21db7fb
SHA1

0bb748c2747b6dbd966393cfb073bd8fa5fb4675
SHA256

f5092e2efc63eb2b223767d2278ceba31693d37ea2c2c0959c42a3462a5d480b
SHA512

90cd0161bae655185299d2cac54ef50b526f8dd624db4d4bf393a2a5f0898d9f425fc30f8a85c9774ecb0f722a07243e43e5cdbc11eb3dcfdd487b15a84791d9
SSDEEP

196608:MklkbloweGpbqUz+idqRxdmid15mjw/LpM:8Z1eGp+k+iMxdLrp/LW

Score

7^/10

collection credential_access evasion impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.cryptoice.app

Checks the presence of a debugger
evasion

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.cryptoice.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.cryptoice.app

com.cryptoice.app
1⤵
- Obtains sensitive information copied to the device clipboard
- Checks CPU information
- Checks memory information
PID:4334

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.cryptoice.app/files/profileInstalled

Filesize
24B

MD5
f93dfb86751d8c94b1d0e75f01c457b1

SHA1
d68cd493977b34310f0a93cb1c9851fc4e7b192a

SHA256
841dc29974e3f6b5eab9f30727d4335e392afa557ed2b9913910f87784800899

SHA512
72065d5957f5a94d5d97dffd903e7cd94b13725793b449a0a71acb3cd9b2aa718b3b449aa03734d9a0a7e884438169775ffd408caf13f14cfb0d2ae68170c9e3

Download Submit
/data/data/com.cryptoice.app/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
7e8039c1b59a7ad6d65db20959444436

SHA1
a9c8853fdcd073008a5efccb4cd7fbe200186a87

SHA256
e1a0437af7b920d977cd65de54790e4e8082706e1044281629e0b55d4708a234

SHA512
ae16a0fae9b3a1fb40ca28147f4b8f87e8001b89e29277fae944bb7bd56208e7f27eb224358291ca7497eb8c7346e19b8ffa2d1b0b6217864fe0651cb17ecd87

Download Submit
/data/misc/profiles/cur/0/com.cryptoice.app/primary.prof

Filesize
2KB

MD5
110e95fd285ba35adb07c246b2c32a1f

SHA1
3aa0fdcce9b3ea4be544bf320f09c04672ae6754

SHA256
efd5ee13db5c62d5fee22816ffb984e45b57a867f9d301557f9cc3a9a3fb59e6

SHA512
140036a3428e16c781534ceab1674fee26eeb0452508b64fe341f255a6249defeff62d43a04938c47d06fbee6bb9d965498e1bc465b759b252e2cbf5e7651428

Download Submit
/data/misc/profiles/cur/0/com.cryptoice.app/primary.prof

Filesize
5KB

MD5
4b244a61be896e6d7c03df570e4786ba

SHA1
2fbd2dd49c9da1bf2a1eee0ce98f214b2b647d0f

SHA256
5c0f2fe0ea76121dc32b18c0354d22d219b4c4349c9bc010c895dc240fdc1fcb

SHA512
3716e77cd2f3beea3f0bd469349875193c41af595cde145157b4f91c9cb256096fe1ebd4e8cb63a2a61eecd657104b8397e94bdaeb41c932b63fb4dcb9cd7d18

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads