15255e2e349f2965de58bff86807db92cf88c3f5e554961572e6ecaa920d9a03

Analysis

max time kernel
96s
max time network
112s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
11/08/2024, 15:51

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

origin.apk
Size

31.3MB
MD5

ece486ae4aae6f18609526fbbae908ec
SHA1

2d9ce34094baef393db56ef39477c9d24a3a8505
SHA256

5cb6fe7d1e0b5a78e3f54a636bde74d72ab1bc9521fac32daca1d86545e55369
SHA512

dea3d4288d3b3c324f36837361cd0c1a21c06f964228444c8496adacb50432d068c0b81d0cc0fc39bcfcc1ed4f61cb280bf70e3cf7e873a6f9009f3e2f660041
SSDEEP

786432:5c8LPltJLNle67FGPMs/8f1WYudd3/GBfmiMvK6U1bYx/k4l2wW:OoJhV1ucOl/Qfmn41bGd2wW

Score

7^/10

banker discovery execution persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.maxmpz.audioplayer

Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

Scheduled Task/Job

T1603

description	ioc	Process
Framework service call	android.app.job.IJobScheduler.schedule	com.maxmpz.audioplayer

com.maxmpz.audioplayer
1⤵
- Queries information about active data network
- Schedules tasks to execute at a specified time
PID:4325

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

T1603

Persistence

Scheduled Task/Job

T1603

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.maxmpz.audioplayer/databases/com.google.android.datatransport.events

Filesize
40KB

MD5
7907b14d86fca3bef6a3f0a6eb15aac1

SHA1
17fb695b5691565da56dd6749323a7aeca9b8b2a

SHA256
b1083e506f9c7552d1e99a3f2f1bef63c70bb259b8959a35f60c3dbc39c43634

SHA512
fad062fb75e4676a3a2b23fbb74a49bdfdc58241829be6b1db0d7c0ca2b9bfd2b31b0bcc1091e7c44549c33d93b59c40d0555e95df952daf8ce507b854b69916

Download Submit
/data/data/com.maxmpz.audioplayer/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
dbc3be26e5262ba0f086cf4caa3d1fe9

SHA1
3233fd49e96f176e20fee0f9b96c530a081bdcf5

SHA256
724799132cf0f23d7cf18979ad488b7ed4aed60a3368f685e0d48886e99ed462

SHA512
15799d233d8729ed98ab1e5648e0b04d23715c9267d56bb2a3643479588a77ced4555993bcf1118efee5e367c8c7ac825464e548accd0d88ab9106a86794221a

Download Submit
/data/data/com.maxmpz.audioplayer/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
b7e2a70396c5bbff574f460a20eb5e7a

SHA1
6d598b59f6be71f6bf272d65e7b6cbb742840d95

SHA256
279631340f76fec2d2d73505a571e0c9d12b1fd1b82803a66acda69ba22691a6

SHA512
31d822a3b4bd43f35f4ea44fd2e9b175950ce3cb8b76ec12df7a1e68dfbbdfe119410208ee607432a94311237116ed8fcc897a094a94674225eb761403f707d3

Download Submit
/data/data/com.maxmpz.audioplayer/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
07d6390eba1479cb05663e3d3e4def58

SHA1
eea5f9a7ccba7b9f845d5ec8817b016b7a80be45

SHA256
7f8ccc22bcf6f7c9b0bcf18285801b3100f24894b6f69bddd3368e75af18642e

SHA512
3121baaae79fb71b6b181db65af27a92f0dca96f5f40e8e3c08a3154d95e516758a6b2caf1b4442128f96e7712f74cc28bc4bbf76f0ba9debfc000cfad8f8f9a

Download Submit
/data/data/com.maxmpz.audioplayer/databases/com.google.android.datatransport.events-journal

Filesize
24KB

MD5
ca0c6bc0301ffb3e4480fb5b0786096d

SHA1
4fdf4cf004d7f9cd8f1cffbf414813cb326ee8f1

SHA256
2de465f5908fb1859890627efbbaac555f0798dd52557f1f22f06a193268fc00

SHA512
fbfd64432b5228a88d1520241430445f11d913a8720ae54e8fe88025bb52d159e926626d0cb6c9719290510a41b84b6563f42196e2dc047b7551fa97f7f88927

Download Submit
/data/data/com.maxmpz.audioplayer/databases/folders.db

Filesize
528KB

MD5
25094f078529c4304643c5715c8e2669

SHA1
b9f03d5ea62fabd15ae7ada34afc7deefe41d510

SHA256
fe9077c452d9425d10c1550b9b24bbe392c59251520bd417ede625f806ad0c38

SHA512
e7aac748d73764bc49e0322ee91a38f0717dc6a907aaeb404ff6d8b662821a8cda1d0bf0d1ea64859891d677a726ef9237eaa9a414d40e331d846129fdf70a5f

Download Submit
/data/data/com.maxmpz.audioplayer/databases/folders.db-journal

Filesize
512B

MD5
487b4d6ef29a6b4a9922283fd97e59b8

SHA1
a3c07316c31bdceb4bd4ac403dab1b23bb842d9f

SHA256
d6e1b3b6c2ff7b9c370e331b3ae6bcaca64ac726fc85425d2456c7664a1ba048

SHA512
ddc4b02b3d385494519c7a25d0e7fb0c5f5d1bedcc52ca949775ea81156865a76f2b73e061b295fafbebb7a7625d77b733ee908fcf0101b981300fb5ac3d4b90

Download Submit
/data/data/com.maxmpz.audioplayer/databases/folders.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.maxmpz.audioplayer/databases/folders.db-wal

Filesize
16KB

MD5
d335d1b6e638587e6502f595ba11a93f

SHA1
2dce6be1dbe716830574b5708eea629a4bc15c3b

SHA256
ac41ddd73809995b61e53f628e6df038117dd9fe391c041f8fab96369a275ca3

SHA512
43c77194f69aa99811e044eea484fdf0a62c56ca8ca0cb986761f2f533e64df516be8e897f31e278e4e0c3d5ec7c1f0d71634a9ed83dd6d3da3991af0e095ad9

Download Submit
/data/data/com.maxmpz.audioplayer/databases/folders.db-wal

Filesize
539KB

MD5
adf44594afe923dd0ebacf9e311fe7a9

SHA1
fcb433b722ad770331108862039e00a16602d0e0

SHA256
5a486473c22c8c91c34411ea0e86979906b92dcf5f44fba56ef737fbff83b3e1

SHA512
de26f57e5a3a6437806ce8bcdaf8287a08d6b2a2c594925f191a5b52d8864010d7d94cd6f7f2b3387b9cc3c0f3be34b8fe22efe58bb71358194d489c5fae354c

Download Submit
/data/data/com.maxmpz.audioplayer/files/fsprefs/com.maxmpz.audioplayer.client_cast_analytics_data0.17722406383002787

Filesize
301B

MD5
ed8f6426f8edb5485be77efa9bd187cb

SHA1
2cad97264c54045416cd1e31fd1c7618356ac902

SHA256
eb4b83bb445d3dbf1917de63e011e9edfca606da6bf687d1c52a23344b1d72f5

SHA512
76e6866a26501daed7da02d5029dc0ec4e9f0feff35e4d877e520ae031398866f5d51a9d25b0eaf025d42898592d078a9b33c68ef1e233a774fb811e407e1674

Download Submit
/data/data/com.maxmpz.audioplayer/files/fsprefs/com.maxmpz.audioplayer.client_cast_analytics_data0.8052803516626189

Filesize
255B

MD5
a757af5a4f70e53741e8e89930e87b32

SHA1
0d4e91b83de288e785902b157afc2c8ab24db1be

SHA256
8b5f87988d776d3f4c57262ce5890c195c2206c7687996e8bc897c98c9a5f5d3

SHA512
4458f8f3b8962ea73c90d8f9c1edbc6ff15de13c49694cf0dddb7db7ca514812ea5603799e2241912ad6ac164cf48e8a423c083232d8ed29913ba6d7b0b0bad8

Download Submit
/data/data/com.maxmpz.audioplayer/files/fsprefs/plugins.reverb0.6808529730355364

Filesize
161B

MD5
9232f46791b18fd19bb51045d37f923f

SHA1
69b226d534d3c369cc98a2ba074d4652c4bb96c3

SHA256
a6e001d342371af44b124f6caebf052ed78f8a80d104a9e2da17f7f691ea6851

SHA512
4b696eff90b27ed5d47aa5d4f577426b887a44113fbfd9a6227f4add711afd18d4c51bed59abb685c2b1d993660bee579f19f64ad227abaaf9d6826024ffaec8

Download Submit
/data/data/com.maxmpz.audioplayer/files/fsprefs/plugins.tempo0.11951226309740814

Filesize
63B

MD5
26be2bbbf34a9314527ee146a54c1283

SHA1
7c38a8e03d1ddc118546e215dbcf282f875b7807

SHA256
3571786403caae667736ef207989131905b918ed52a366f34042dc8a99106a9d

SHA512
c7b50953decdf88081c05c1b6930086b0441448b7d71777e9dac63531639704b35a8b8554418a47bb1656d4df3bc26d4e95c944a6c90ec978eef95a0a610976d

Download Submit
/data/data/com.maxmpz.audioplayer/files/fsprefs/skin_7f0e015f_0.17885728418875646

Filesize
127B

MD5
fd363e822d3921bb77a2221b23658390

SHA1
a35ee11b7c0c64dd0f41bf8af8e34aeef4dcf8a6

SHA256
841b780caf75e41c3b476909bd5dfe13eec9ef13ddfcd81ec113339247fd41d8

SHA512
f50ec50f77979d73733b42c86ffa3e13638cdc5c952de19ea233ffb3c23de149189724db7694fcf897913fcb8dba57784752dc29fa70746e8c47a2ad0e19f6e3

Download Submit
/data/data/com.maxmpz.audioplayer/files/fsprefs/vis_presets0.1899876974707675

Filesize
30B

MD5
45575ea89d354b2b6fd38aa3cf61576c

SHA1
8e90233316c2e62c952dfe1b41ac86bf8d5b47ef

SHA256
68a99e0f08d947388366584569115771a291149796ae7880ef5f52984cbfca5d

SHA512
8de4afbbf1eb4418dff6681927a6ac6516f8996b8beba05ff0799f1106ed064fe8f8c32dc053559a96432b979339a3529d36840fd996e833be4d9017c9df196d

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads