ec2654fcdaa602671c65fcd7df97643ddc73732e6291b08c5d2db03f667d6a9e

Analysis

max time kernel
65s
max time network
69s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
23/07/2024, 19:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

sigma.apk
Size

254KB
MD5

e640eb702de37deb80c0a763eb67dea6
SHA1

3e58d4ecce983b4489d5f2f73fbb536283f707f6
SHA256

ec2654fcdaa602671c65fcd7df97643ddc73732e6291b08c5d2db03f667d6a9e
SHA512

a9fd31a8b39c845f8ffba5c882f626ac805df3675f75c9a03dfce498b9c07e695858eea75c096d5d2c838ec1fa2219d5fc43d786028bfc35ae3c23e171f04f6c
SSDEEP

6144:Hyr+4R4H6/f5QEgmz0GxRYuQUt9jsJ1zgbyN4V9itG:SFRuqf5/gmzRzMAQzgbU46G

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	net.droidjack.server

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	net.droidjack.server

net.droidjack.server
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4498

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database

Filesize
16KB

MD5
70ab0184149f2a2235ce82b245bb5c3a

SHA1
ee3b0fbc494cf364705fddb1f3ff3503e4f70ffa

SHA256
27df39c9b9de413f6bc5ccd57272857ef5500c20ffc8b4e90e35088b3f4af80f

SHA512
52d291e398d4b4c5d754d02aa2afbce0b8f87c71b60ba5f29f2d6adc6f72318b97d7fc252fbb77a6cc721b6a7c0cf052c58ddd0648069bbeb5ab259089a22cd2

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database

Filesize
16KB

MD5
221df4edf503c794f59438dcba2b4d8b

SHA1
ef3b52db91785a1a0141331ede191fb08a520a80

SHA256
02963339ef9d9a0e89c807f8ca1a1730dfc654b76d10bd39b0f5e5f73cba29f8

SHA512
d79919b49f16f8d390ad3e4669d240426300661319d65346ebe71a2d4611b2358ae3190f1897d0c5308b84314cd3a564b251137cbca1a3176d072d332a523ffa

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database

Filesize
16KB

MD5
913f82854f2a390fd699fa21cdaa237b

SHA1
638e22f46fabfce72e427e741c54ffe689841e8a

SHA256
1eedb8780f1ea3dd123e33eccf42ae7360d92b541630eb97a15d2e3601412fa5

SHA512
34534d4a366e57cd82fe6664bac38db45ef1ac6ad1a047af71300b32f6b6bbb210898e3b6bc7c20adccc2c58e75c5f41aca32ed137896ad40e0b9b75607412aa

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database-journal

Filesize
512B

MD5
0b953ddae3333470435a6eb2ad34777b

SHA1
0bf1a8bcaaad16bf386856d44b6963277091667e

SHA256
aff91b0d5fb3fbc593c2fe72575b9be6b239b16086a2bc58d41c4db4ac035195

SHA512
74246545d22bba2e063652fb2f9d619bd5ec0ba58118b2650ffed57b191c829b0b5b4cac0b2221e5181faf44c7ce0ae7c2d8de8e93e146042395a61f2b37d957

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database-journal

Filesize
8KB

MD5
42310b1774a00226d1bcdec0dc971ded

SHA1
1b2444c8cbf32c250c8f849ce11c1df4c7bbac34

SHA256
57e4531e359e84b7e5611cca662b8b5130eff3bee93c7b90109ef9d0002f9496

SHA512
f359b0d3b36858b91f0c797ce5d042014dcc4059da64c630615affe995090abef75192ea01eea826ca13b83b8cbc5fa73ff2c50320ad3329d241adcd2bfd1c69

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database-journal

Filesize
8KB

MD5
a85df394020f7c7d251a12314b712ae4

SHA1
5d3621f20ac1823af74486bac93cead10b8f2e80

SHA256
74fd4e4470927fe0d20de21274eb9f80b8a46d24841e5b96343d632962e8901a

SHA512
9c66363e3be64997bbcbea85951f2447e04cd572e50e80373ebcafc64d20edd1aebc6736b88cb4f3a1e44aa05d7977441aa056c14c43ee315f7eeb30675ccaaf

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database-journal

Filesize
8KB

MD5
7be27866d7cb631c993ecf01d32b4e5d

SHA1
723f9fc4bd363202bfa7cbea381424cfb8248102

SHA256
b2d27e3fb2bfb4d8b82b3c739b6f6446d39c85ff3e1c0e42b8692102484b6728

SHA512
80156432b4ab19e187e2355486e09f0330e499b15ff47cab921da6ece6c3901fcbbb2ee60a450258ea4f9d924971a9d2ca9d6afec892651a58cb4b0e96a9b511

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database-journal

Filesize
8KB

MD5
250ffc68d028e4d9e0cf51054ea92ce6

SHA1
fe64251d0fc064a20940bcd8f8771c66e74f5af8

SHA256
97d4539a65ba80f351a89c604e18e569387e814de783f7fa930f8e645ad9e52a

SHA512
c8ec6202be1d8190c307d8afb62ef1d041f9ce9832af69cdcc64ae8c134815f46a761bccae549a4d9a83a12ed0a4780f4020afcc2abf96b44f11aff1c957170f

Download Submit