f8fa164519e2c23f32cd7ab220b98707807b237dbb5ddd5f0b159bcfcfdc0187

Analysis

max time kernel
9s
max time network
137s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
12/08/2024, 22:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f8fa164519e2c23f32cd7ab220b98707807b237dbb5ddd5f0b159bcfcfdc0187.apk
Size

2.1MB
MD5

0c419c11cb98ffb50e63515429bebed9
SHA1

e6825cc877695323e07fff80285cdcbac1565275
SHA256

f8fa164519e2c23f32cd7ab220b98707807b237dbb5ddd5f0b159bcfcfdc0187
SHA512

bf8d2def370a5e74a546a6ad2ebe2c62fb3e747960bdb10b3db10349116fd37565c0a77d6264da8654ba26a0c09a74e6f1c9d51bbf4b890d527a7ebce6b02382
SSDEEP

49152:rITrz8Gu/06Z5hlPXjlLgdaTdJEypSlErppIi23Jpwy:rITrze/061lGsTvEyAoIi23JpV

Score

4^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.g73ju.jh75

com.g73ju.jh75
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4269

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.g73ju.jh75/files/profileInstalled

Filesize
24B

MD5
c9057dcd33333f6f84ff21b833872518

SHA1
bdf17ef467492b6ac7f3dee2ea2fac1d1ece993b

SHA256
d644e4103a1be4cbee9f55088b82edbfe53b24e94bc2c6286b3669686c3feaf0

SHA512
d42fc30078f82a67a2da6052e51645be56500e1d1a8ad223939da645ebd24d9145aa7f4a7030cb156a7728262d59ab966e74ee7d8593b02c049d83a33c18c56f

Download Submit
/data/data/com.g73ju.jh75/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
8b4fc313ac3bbe127ab4ad7f780754ca

SHA1
0e7f574398f0afbb70a4b36e4efe3ef51acbdc85

SHA256
54ae1c1e2ebcf5098f7c6ef1a36ded62fdfa5a4f4d44c3f953b03348a3dac75c

SHA512
0b7142d5ac5772ba30abf60e45120773fa92b3d0a31d5e756a6d98edd9ff0fd24e1d52d0bfa8ea719cfcaa4a345d8742513256acc2be2633d72ca196fe9fb275

Download Submit
/data/misc/profiles/cur/0/com.g73ju.jh75/primary.prof

Filesize
1KB

MD5
8c98821b463feffe3ba2b7f8f8cc569e

SHA1
1853c7ef00bf83ce8bedeedf532a94709bcdeedf

SHA256
b2120e98c78d7c404a9f2d14011cb9f10aa18c51f604099d8ddc664a57ee9b36

SHA512
3afa8ac1f012120f52b3e25ef8693726e5acd77310ff56da6cb3584571c1921842d85f3606dc200d799dd0d4f57a5750b22f2dbd8d43b152392f787f35a77f2b

Download Submit