21b27c0e14e8e4d193e134440f2a863721f80a6d96521ead46bea71e0f89b1fc

Analysis

max time kernel
47s
max time network
156s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
26-07-2024 11:06

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4818d538f62d0f5a94b47cda5ff21236.apk
Size

3.6MB
MD5

4818d538f62d0f5a94b47cda5ff21236
SHA1

b864a6b27e6fce722a17ec27a3b6478ecb235230
SHA256

21b27c0e14e8e4d193e134440f2a863721f80a6d96521ead46bea71e0f89b1fc
SHA512

15fcf1ec37fbcb8835ad88d08aadbc7d465b96958899e16b9b75fbbe2d1861a4cbf1337a8fd04d0de03245cdc448b20a74d7232cfbc4f61d8b6bff2dfe35416d
SSDEEP

98304:O8lGWVMz8PiEI/vw7Dh9EjRJvzhM0o/KrTgVy:O8Ly8PU/o79KnvzhaVy

Score

7^/10

collection credential_access discovery impact persistence

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
collection credential_access impact

T1414

T1641.001

Processes:

com.gurujifinder.mjpro

description ioc process

Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.gurujifinder.mjpro
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
discovery

T1422

Processes:

com.gurujifinder.mjpro

description ioc process

Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone com.gurujifinder.mjpro
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

T1624.001

Processes:

com.gurujifinder.mjpro

description ioc process

Framework service call android.app.IActivityManager.registerReceiver com.gurujifinder.mjpro
Checks CPU information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.gurujifinder.mjpro

description ioc process

File opened for read /proc/cpuinfo com.gurujifinder.mjpro
Checks memory information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.gurujifinder.mjpro

description ioc process

File opened for read /proc/meminfo com.gurujifinder.mjpro

description	ioc	process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.gurujifinder.mjpro

description	ioc	process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.gurujifinder.mjpro

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.gurujifinder.mjpro

description	ioc	process
File opened for read	/proc/cpuinfo	com.gurujifinder.mjpro

description	ioc	process
File opened for read	/proc/meminfo	com.gurujifinder.mjpro

com.gurujifinder.mjpro
1⤵
- Obtains sensitive information copied to the device clipboard
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.gurujifinder.mjpro/files/profileInstalled
Filesize
24B

MD5
9438da4ff03e501a97a7ebaa62f8e281

SHA1
e818b1814651dfc7ed31e644cd041e6624013296

SHA256
b27d73326aabcc15433ac70c341fb379dc2597efd8145698c08d08feb238cb7e

SHA512
c1b150f0b4c046f5f018b82384d8f950d61f4fb54d21f0b599c171285ca05e55a02660fac03005eea68852618c1f627814050f7a34a24a16d57f9e87922495d7

Download Submit
/data/data/com.gurujifinder.mjpro/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat
Filesize
8B

MD5
c2ba785c86305e01a1e866259e2ce3f6

SHA1
3c8217207b3f4e5ed91bbbc4d1a3fa00eec6f956

SHA256
e724c35b55460201b23a2d79f81d3067df858b7c64db2be4324944b2c1782fa3

SHA512
aed76624dc15b713e80b93979bec904e640b6bab69aeb855345be35760c2bc929cce1a4b73445c4806f8ce443b7a9dbe2729da0775a50a2c0ac69ffdf491a942

Download Submit
/data/misc/profiles/cur/0/com.gurujifinder.mjpro/primary.prof
Filesize
1KB

MD5
654d88f97c7a9df02da17d3b3ec1548f

SHA1
996705cede55723e80f019cd03e9bc1f857d341a

SHA256
55a7843808faee02c2b0e2a346cea16192475acc6b465e67fd01043a041b0ebf

SHA512
90d1f34e4de2ef97ae67494cacac5d6cb48b588186db28e95413befd252420cd716fdca0e531694bea1026cc02abf73ab7cd88105c0ee18c6dc5f37abff72109

Download Submit
/data/misc/profiles/cur/0/com.gurujifinder.mjpro/primary.prof
Filesize
2KB

MD5
414e6d2f6521df1a3ff685a7b3ad3086

SHA1
02e380a8a3b9b66e1bb7d7e6b92f9c79bf81c704

SHA256
1838b2d2e5a9f253354b46ca213457a1659f117c231dc3ab3b5472c7849fe2d9

SHA512
1aa38dc2542e88ebe6c0bf02b2d96bcc24bff2dee8b2f5ebb5dabda7f3ae0ddeff2022631cc770663ea087f95517e22cff6ece28cba1ab0320dd7886728b2210

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads