8aeeb42c43856d4db91fda82055c209cec00683586215c940359b161f0e70e0b

Analysis

max time kernel
47s
max time network
138s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
23/07/2024, 22:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8aeeb42c43856d4db91fda82055c209cec00683586215c940359b161f0e70e0b.apk
Size

4.9MB
MD5

58dc13d821dee9133cd143018bea3224
SHA1

57714636e2fbb86b0d7dd3a4058455e508e9c5f9
SHA256

8aeeb42c43856d4db91fda82055c209cec00683586215c940359b161f0e70e0b
SHA512

d6059b66eddcb1d8a91540105cb3c0b69dc6939e2e1056d1e0f3f6a50beffb5b495e09661ac0683d3e07d6a62fc42aef7467dcc10ef586ee012204b6338a128f
SSDEEP

98304:k6eE5cFuJqCoCuO5kicCO7p0oINZcUQczQJuK1/JaNqg029klRk:NYuTonilO7oEkK1MqOel+

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.blood.smsrecevier

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.blood.smsrecevier

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.blood.smsrecevier

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.blood.smsrecevier

com.blood.smsrecevier
1⤵
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4242

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Windows 7 deprecation

Loading Replay Monitor...

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads