161c8274f6530ee56fc2435577b52e32ebd8e2876dcb0c072898ec112f58767c

Analysis

max time kernel
156s
max time network
130s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
16-07-2024 10:48

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f20a0bac3df3c4d724579608f10beb1e.apk
Size

5.3MB
MD5

f20a0bac3df3c4d724579608f10beb1e
SHA1

a0aa8c2686309aa0ffe8e63a29d7fb74f5338c05
SHA256

161c8274f6530ee56fc2435577b52e32ebd8e2876dcb0c072898ec112f58767c
SHA512

c6e5ac138d9bb62f244f679e934bf435ad913633114b613e72ad42411a2f5f2256e399ae5fa5d9ce48ecba0b9d9840f04363d3aa8eefa7ebe37006e4bb122171
SSDEEP

98304:bX6vH0fpdsCl039pnVVuzpVMAPHS8rf/O+T1LU2ksCqWxi1dcAX7LZoTwr5xpiT0:GvH0fpstpnVMVMAPHZhpLlksd1cA9pN

Score

7^/10

collection credential_access impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.example.shineinterview

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.example.shineinterview

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.example.shineinterview

com.example.shineinterview
1⤵
- Obtains sensitive information copied to the device clipboard
- Checks CPU information
- Checks memory information
PID:4512

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.example.shineinterview/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
9b6cec3a47071095de9ebd9170339ee4

SHA1
6a936d598bf1da76f9dfc9be7092ba6ba902db12

SHA256
f983acad8752bcc42e9f973762b5f2408c589bb494e0c3426d226614301afbef

SHA512
73187e207bbc7b9577ce222d806fa9607407c94bfe6f478d26b8f8ed9d74aee26c909bb2b01ee9c81a1b10e872b5da9f0ad0d6e8d688c8a7eeab4643e4eda29d

Download Submit
/data/misc/profiles/cur/0/com.example.shineinterview/primary.prof

Filesize
1KB

MD5
a9c5111aad72022a092dcf2436762c8d

SHA1
26a467b78bc11a467f4606a31e6b3fc2ea72f0cb

SHA256
dc7cb49f8558b6696e2d2a8bf432ae36735e2aaebc0697f3745d97edb6e42a76

SHA512
d86a5a4b4d30f148b6c115d7ff192e796a91a228a8f9314fca355a558feaff343eb55bd5265cf543ab61f0aba5d0352fc9d6ff2d38aca1592075855167919d33

Download Submit
/data/misc/profiles/cur/0/com.example.shineinterview/primary.prof

Filesize
3KB

MD5
6a2a259191df6fadd3f18945be4fe176

SHA1
6d20a89da1e60a8357f847361792da7ccb40a41e

SHA256
9e4abd33cd917ee3268691382322fd12158b390f02c3495e556d444693ff41f3

SHA512
09044b761bdd735a046a84108a64bcab733012ea1ed87a3210bae05ec38af8468a4f29d52937f7553c978bb88e6a5dc17e57be50b151c3b9aa763f3881f887c5

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads