a17400adbcbee74ff45aaca4b6e25eefc9e179dfe69dbea229f6e00793ce85d9

Analysis

max time kernel
3s
max time network
78s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
25/07/2024, 17:24

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Ma Sécurité.apk
Size

26.1MB
MD5

b8794fd5c0a6320b93c19494507d24d1
SHA1

c1b37492de50a9de61dcbf96fc7fa14ac868890b
SHA256

a17400adbcbee74ff45aaca4b6e25eefc9e179dfe69dbea229f6e00793ce85d9
SHA512

2e55404baeec06eb08b208f241a2fa1dee403007e3088aae6395f7673338aeab0ee3461920cd95cd2d4357d8b7e6ec20fdc37c545d560ea4aab9699e55645c17
SSDEEP

393216:bfBvSdNmnhL8t7NwMxkCjRP7QJHooQns8//+O5dThGqVD:zVSdwhQtCMP7n///xdDD

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.masecuriteapp

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.masecuriteapp

com.masecuriteapp
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4332

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.masecuriteapp/databases/com.google.android.datatransport.events

Filesize
32KB

MD5
5ee158b8e0f9135bc9ce3960a59be546

SHA1
354135333026532dc1c7057a4e73158eecbdf439

SHA256
eaada6eba5f810e5ecb3c2445ae489f5b217706628783ce1949343483d5cc59e

SHA512
72257ad36029b9fdf453b885329e55bf89c995cb973ffc52c1214da075634619e24b0a4db77ad9996e3133a62f6e65d5d0fe5fe7016fdd5ebe92f474be69c787

Download Submit
/data/data/com.masecuriteapp/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
5dd4b1f93c0bf0cdf731d8ea2cfa25ba

SHA1
5f48a4bca045775e095957151899870549ac3de7

SHA256
b5b3fab093b5e43927e77d1367b3fa240b9c846a389dd73b4bf8caa1e56f24d1

SHA512
8a6ec62618676bb4f2cf7e75020a333c97433f39fe85d37f57c78bbc5e724467f189f63ce51d86fcb74dee2d50bceb67b77d7c96ea22f19d72df8acb566af607

Download Submit
/data/data/com.masecuriteapp/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
9f22ecfcea32b382daf6820a2b920f2d

SHA1
3e474b60602ee3ed6ff22d17f90db3da2fd579a5

SHA256
b49e0784ad914709e2c3d03616ff16b10e953bd0084fca24c97307b230a114fc

SHA512
00bb0564ca2cf5e640eace66a5ae006bc83da6683b387afe092ee841e3a3eec125ed1fce406cf0c72933887262d2c0acaa1dcb8c914a2b68d23265d9029a2df4

Download Submit
/data/data/com.masecuriteapp/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
7156db7aac540b2cdfa579d0ca2e0b31

SHA1
d337ea1430ac140379cedb18a46850eb38bf80a9

SHA256
db6905ac74d553e584fa8a3a3b1ae3a23fabd58cf95a5d276de4aa40370cbfb9

SHA512
162c79bae737e7b282b40b900608aad3a7f63dbd24430cd3dc30eeaf3a0ddb1a15fd528d5fe5a2e2c48788ba8da7c948ac02a21b8f193c31c441dca9be40f6cd

Download Submit
/data/data/com.masecuriteapp/files/PersistedInstallation8092171103247313370tmp

Filesize
90B

MD5
500ad5018391471080552050214d6efa

SHA1
4e71ec836dce0416eac0c9843dab49861badb799

SHA256
d7d16ec9a9663183d6efdc6cfb89a5269fa70e37d1dc54aad63cfbdcdbbae49b

SHA512
5f6d21fbeb1701d8083fdbd598b9e40fa6c19eeccbf253f08cd652951c9a9928db276ceeaf852dfe05cd67c01d240e6f6f1ee350e9f04778fcf9696959643b9c

Download Submit