Analysis
-
max time kernel
20s -
max time network
154s -
platform
android_x64 -
resource
android-x64-20240624-en -
resource tags
-
submitted
05/08/2024, 12:12
General
-
Target
27d34f126fb57813025ae124f6d30e29.apk
-
Size
3.5MB
-
MD5
27d34f126fb57813025ae124f6d30e29
-
SHA1
3d8f90d730536d0890135e0f92c155050ecc74be
-
SHA256
c158dfff0900881cc3da933361109b2c37dde2b645cfe501903ab485241eb5eb
-
SHA512
17ca877b84fbe523dbafd6d21c7de1ed24f8de9a2eeed04abca657c8c1df7040a0de1de541a74ac52f784c5249744f622f1b4427dcc9af2ab3b87916f257b02c
-
SSDEEP
98304:NtSq/i981kX6MewPpFSa3l+BwC2sumGVZEqVu69P:iq/i98Qa2f3l+Bwx1ZEn6Z
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Requests cell location 2 TTPs 2 IoCs
Uses Android APIs to to get current cell location.
-
Queries information about active data network 1 TTPs 1 IoCs
-
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
-
Reads information about phone network operator. 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Checks CPU information 2 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
-
com.cicicil.webviewshop1⤵
- Obtains sensitive information copied to the device clipboard
- Queries information about running processes on the device
- Requests cell location
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
Network
MITRE ATT&CK Mobile v15
Defense Evasion
Execution Guardrails
1Geofencing
1Virtualization/Sandbox Evasion
2System Checks
2Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
181B
MD55f1a61cd768d1d0d2ba1f41af39ed1d6
SHA1e9efaab032c07d485ba10b77448eb05eafb5a8ce
SHA256323711ea097e99a032b55fd7c52e319f64c28762778f63760046ba3f368bc082
SHA5122a89c90459c010d2e0a943bc5fd085d0472d9c167e827dc7d25843b66a88e284330827767c4978a96ac3c763fa18242bb225590973fe0ca2fd321d28b04e4d12