770d534804934da827f9707f12053027767be7767dea1564ee103da2a26e4814

Analysis

max time kernel
14s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
08/08/2024, 03:44

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

com.companyname.x_9club-Signed.apk
Size

21.1MB
MD5

edfaade36b94950302bc7984df36826a
SHA1

a8b3677bfa0287c2c408503fc676219c2d6761e0
SHA256

770d534804934da827f9707f12053027767be7767dea1564ee103da2a26e4814
SHA512

10f9f75da3d7e5a84bea071c183218849d8dbff4d1156aae7af78b04ceea711f1b644e30c86b29d3dbceda717657b822f7f1fcda53e760e726078bb779b49ba0
SSDEEP

393216:4IT2Y9B1xhAjBnqW8QkySlCJPoyWuVSlPsMkhocK3mPWc36+T3KGZYwKf5wfdNp:4IT2Y9B1xhAjJqW8Q5GuSlS+cKfc3ZTN

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.companyname.x_9club

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.companyname.x_9club

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.companyname.x_9club

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.companyname.x_9club

com.companyname.x_9club
1⤵
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4257

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.companyname.x_9club/files/profileInstalled

Filesize
24B

MD5
45295fcf2f56107513933fa4001ec6c7

SHA1
ad4f79c3ff2c73af9aeb79036bba7a3c6deaa6db

SHA256
f01e1c45f9d9fd1533a30eef676ecab6d43715694a5117d55f97b2b03322e33a

SHA512
00415443af73f81298e0d95935f51fef37cc7c912810ed3bd141b381698c42c93ba254586d09cfa112523aca18b169d26532b57819087f7ee698f425079ef684

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads