0c0a65d6e01f1f6da465b0282d1bbb304038bb5c870a53b10ee552182a20ed39

Analysis

max time kernel
125s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
12-08-2024 01:31

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

FilmPLus.apk
Size

4.2MB
MD5

eed6c87fa4f201145c9ad7852174ec99
SHA1

b4a07f0dccb45b0a0614049541d8dcc3a52fdb16
SHA256

0c0a65d6e01f1f6da465b0282d1bbb304038bb5c870a53b10ee552182a20ed39
SHA512

89fb0bebeff640f0d6bce1771025e887b5d79b71ba208304b078234d8b800fe25f7e92152cfd2ced41d59eb2563b88d849b71339477e3612435ec25a38c273d3
SSDEEP

98304:qjpNHJtmt7UrasGk0FhCDTgbyee86JTSg7LAqM5Mv/7XUWta:qFNH+aGTFYTg56wT58pa

Score

6^/10

discovery evasion persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.dpsteam.filmplus

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.dpsteam.filmplus

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.dpsteam.filmplus

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.dpsteam.filmplus

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.dpsteam.filmplus

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.dpsteam.filmplus

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.dpsteam.filmplus

com.dpsteam.filmplus
1⤵
- Acquires the wake lock
- Makes use of the framework's foreground persistence service
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4256

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.dpsteam.filmplus/databases/LibGlobalFetchLib.db-journal

Filesize
512B

MD5
7af43aeba951c51e29682ef14b7f1c4f

SHA1
07c3830b490f2effa493703d50b3ee71cac7e4fa

SHA256
6df54859b320b4bd4db1fb4fc596cff7273473a77d5316ce1f19694251996d22

SHA512
13a750f765277087393001f8537004d8a11eac13d41e875ea2a8cc05f22706a1b3235dd3ca32f6e7b931bd8a20713ba786bb1a162a957f6b805646e5b6c28fcf

Download Submit
/data/data/com.dpsteam.filmplus/databases/LibGlobalFetchLib.db-wal

Filesize
16KB

MD5
22176c6c81ab11f8ef6c16045cc4ae7a

SHA1
84dbfff108215dff5a20b6217e76ceca0716213e

SHA256
3d518254302085f0feb84932720d1db6c95ebc5890429aa6fef0f9cb7049b71b

SHA512
c2c33e7ebdd89597b93073ebcb72520733bad5ea922822d24921dfcfbafc992efd81640f4178445f0738bd767f4aa64e338a200e8b146693c8897bad9fcd3629

Download Submit
/data/data/com.dpsteam.filmplus/databases/LibGlobalFetchLib.db-wal

Filesize
40KB

MD5
63621c35d6539bfb205aaa66efe9b8c4

SHA1
dca1c02b25d55715549112decd0e0ade8b3290a4

SHA256
edc18445e439c0c1ee4eb6f0c740740615d282152e44cacf37a34f060ea19ea6

SHA512
ec7045c610ac5ed435cd16feda592bd99e67721278a6fd0c4b7db56ec89599584892aa525fbd814185b4c58a0e1dfb0ccc0efcd13a952e43845f584ea6096c35

Download Submit
/data/data/com.dpsteam.filmplus/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.dpsteam.filmplus/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
88f6f5609d9c2b9c7d38d1124706f0a0

SHA1
b6967731c57f5207cfe86a096eec9be1b59ff844

SHA256
a2fbab476c1f4d60d87791fa51ddfb7f7747f9579a3e5c06188e164057540840

SHA512
766e68a54ad1ad7a0be262531a2e34bb3dd397d56990a406348f10e860003a6e2d89c959e0769fe6485083b96ff19684b8246994fbc067e908fd1de0d4fff87f

Download Submit
/data/data/com.dpsteam.filmplus/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.dpsteam.filmplus/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
97e5f381b2a8c0711d54e323496b94fa

SHA1
6d34e6613db2217f9f72a59628fa187837de2372

SHA256
61f238fcfa0bc8e09308ce4261dd76e1d2a12c81c59296460f8f08ba9f2ddb52

SHA512
0a8079e3cfba9b1e3eb698c796f01fc5517a52a50ef2e4baf835d3f7e7afb182cf4c31554fb0f0f6fe9ac47b5b0156ccd7b71067a0cc400619e48723c3c50cc8

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4c727cdcc3ae02c04fa4d6477c115be0

SHA1
a2025c214232c60c473f8c0bf1ed2280a9b7bf67

SHA256
e3bf40ee636a0538d3c7b871bcfd5ab23f22b8a43c8e2d1035853b45993fb531

SHA512
223e87e2f17b481c2da83ef0b011f095ff311651c049c997d1a9da3cd0b2c87efed2118843b406f46b692149b991706c9cdaa8362b4fa401c0af7afde555866f

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db

Filesize
16KB

MD5
9c469d6078c0f7401a78cb8f71e978f4

SHA1
87d47fd6f646d79eac945cdac53cfc638e976763

SHA256
733cb1aef44e8fe437d821f0ec35cc8052cbef02ea9b68c8c1d3a10e6a9fa095

SHA512
f1f1d7006faa3b4b242f0f5d39529410284471702a4fd20c5dcdeca6c9451d656f506dc9c7c83ac80c2a793c65c95e8d4166343a3fac89d2b6ac38e0e1fe3715

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d24f6aa59449cab32219ce52a0039472

SHA1
c1422dcf9b9ee3870dbd2f0de57ea9bf8c2d5c9f

SHA256
5686d60b8de1896970b68cd863951e1e7146e2f7789482b1e927c77a52427639

SHA512
72a4dff1c53ae85063e3bd92650b8e91a4ded9382deac194dda017653fd6973422ac0ef0264997d35d2dbc727bdf3ab13a90c60cb4f17034c065fe30866072e2

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db

Filesize
16KB

MD5
6b277a3d6fb6dad179a5da6dfba6beac

SHA1
fb627e8c324240a4f7e07a08cd86a022be35b3c0

SHA256
52584e281dfb4c31064f246590148ad4c65f7e87347d29d2b78167118b4446e8

SHA512
77c40a1fdb29bb1848e30ff0c3b6179473af5132b2f4968623ad8a828ff4c218602ffa10561bba5b8ddf8474df4f1a2cfc221ac3a43ce100eb8ddb67aa9c5330

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2403adf8f49617a42e76144dd799abba

SHA1
7aaaa61e80b8c7f8ee7368ecda18fd715ed74b30

SHA256
8d6ff9675f502e1ba39961bbba7c459a4b4996bb0c60ed32e9dea348980ea858

SHA512
e9cb6eadabef247265c14feed0abdd6c389c6ea8b433aa4d93f096b1c2ffc77a12117c5afe724d9b44c85a5ad9a77e83f25ae9144703c6f47b187e6ead32a53d

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
85c2abeb81a48f4f88e9d9323870e415

SHA1
146b780d1b94d15b428b5503957c827686b4cd8a

SHA256
9642d5fd6b0b22fd97a5cd4059ad4d68034c23909de11a2750c3db66b23c4bf1

SHA512
c6d0bc319754fb98f83518dd39e7af33547d3110848ec4cfc2e97826517b16cc36c4513da64c0e950eb5ae3f419f417c8f1ceaecf2ebc6d5f3f9cb2e5c5a63a3

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
e0b9404d8af8c0510c698518501c61a0

SHA1
c4a0cafed8c703dea5123e19d6a875122551d6b9

SHA256
18d2f1df81420a5a6b7327747e5204976fc3462779054aeb2c307e262bb927bc

SHA512
1fa7b0570235d6a71baf76b56833ee89a1544b4a2c52b03bbf89b9995031877308f236d26283813c143d18fb90b20b87d505a3c5ca91b75e525c9a9e2c080c30

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
dea179277f7eace25b1e3fbd4ad09964

SHA1
f30d6c8e891a51b30027e76bac3a9c1b495e385d

SHA256
9da33324ab1de1a57d9c35e2c331d101fd598f3d590c382789d658b71919cd81

SHA512
66e956216e2850b567326173d06be89437f0921c26559dd6b9be0dff23f1b32ab75be8c5569b56a213a619921249e5d31d614d17fac45ac6a18c42fd2eceaaca

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
a77f50df9e494a40efc79adaaddbd5d9

SHA1
091a5038579e095a4cd44cbe880085f92b40d910

SHA256
ce4041e0a3e85af4e96202c4b326a10193b4fa719b40ff9279ef182518c05b15

SHA512
56e5aae25097defdfda3d5117fafa53c3bbd35cc71b6caac28357bee22328c296e16991fbe701ddb8a2e4b705ccab10f0894075181a2220f6a6d5233d9f6160a

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
acdfd1da741a8b244ebd8d6bcb7910d1

SHA1
3df6c2e20271a52a059c1686fabdcc33bd938eef

SHA256
af5c2c24488bd1a9fa9c3b72400638c5f52403a6f7741f52c0fe2769789c6567

SHA512
403d3fef9a506fcf7c44a7646e6cf9ae05f7ea1aa1fdea7b66777cdde11cc1d91b756900f367315475fef8e4ef9442e499d829607608f0d4d589259c64f1107e

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
1e699e054b8f79b21c085bffe14d3ec4

SHA1
92356f06ebb10bef5fded3215b4727e64bff6085

SHA256
8e0f0d5f2e85ccc97a5da0a7f61cc7e13fc4805814e1d426c19db8323a575da3

SHA512
623265179a1602cf6ad5a970b7723fbacfa45bb4654287a788580c87e7fcc502f283966996508e1b1266cffe1c805f00c609588a1407e3f2716b7ed3447546da

Download Submit
/data/data/com.dpsteam.filmplus/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
d1bd711a6f901ad83bd247f64fe0a135

SHA1
8f8d845c3d53da67559d2b07ae569f729fb64f90

SHA256
c8d25b7a7474c14a11b9ec1c490ba6d76d268b37b146b88d18f2281d26c919a5

SHA512
a6ee0fa470b14b206735cc00f1a0869136446110f9104c2dc693aa453accc8ef59e7c42f212fce231a9d6f53903111815f3c59a8b753c9f5d9f41622578925b0

Download Submit
/data/data/com.dpsteam.filmplus/files/PersistedInstallation6301988096966652960tmp

Filesize
90B

MD5
64938be33fc67acb1b80be0815dc3955

SHA1
1374813bea01e2b905f9a322fe1d3df3f13f4091

SHA256
83e54170f56157a3ae7ed22c7c703d847d145a265b6ed203e144ac05d5e0bb45

SHA512
4b4c9568bec62ff3f88a77e3be793a6858910177518a0409e7fc9209544142e8c86951cc6a9dfba941996b25d3ee147a176bb14921285299320e6ae9003033f8

Download Submit
/data/data/com.dpsteam.filmplus/files/PersistedInstallation9097845739045729000tmp

Filesize
567B

MD5
fbbd459befb7b592f63fe00eca8da074

SHA1
0954837f6c9f0c08b6fcbcd349ab15e8e8a62221

SHA256
e2d896aba2bcd90e20777d085e7d9b94f23dda7f07be2c0e749cc08ccb0f5a72

SHA512
f56cff922fd0f79dea5290183ba4006b247631d6d4bb9b283213edd5cd4122f9456162b5858369ec210c8e43949645d4d9dea9743cbea663b9f9b4b98f86616f

Download Submit
/data/data/com.dpsteam.filmplus/files/UnityAdsStorage-private-data.json

Filesize
41B

MD5
16d3e6eac0e79222a9b368edac765b34

SHA1
48d5e621fcdd84108f5750d6905180b622715b11

SHA256
3a518b70256a689906d6740062462e3124aad6e55c5aa47339a87a56e4933ee7

SHA512
d0aaacf86100135241426e2a0e9ba44414aa456cd708124e2f9c3a8037e008870cbcb506d316e4fe7cfe1d6dc3073393989a6f3c29f7cfabd6b0f65057afe747

Download Submit
/data/data/com.dpsteam.filmplus/files/UnityAdsStorage-private-data.json

Filesize
603B

MD5
78291f07c4160b2c642db6fdb03a9ae4

SHA1
9a61cd138ce3a7ba78645366db08b4ccf9c6cc97

SHA256
996757fcd3fec23da7a4080f1021b7db54d2523fbf3f886cc7699802185c298b

SHA512
9a10b31bd349ac7feac85d7d3059aa8cfc9abdd917b116e9b98e47c98927ac1b4a519eac8578d9cb86855d33a4f04c5e323b88c050d8ea2afb4442e50067b202

Download Submit
/data/data/com.dpsteam.filmplus/files/UnityAdsStorage-private-data.json

Filesize
1KB

MD5
c54ef2f9d0d299508d4715943a5efc99

SHA1
4accee1a4bc476186ccbd9e8f37b0f8f0745e835

SHA256
fcd75764ea975dfd54ff654378f440d42f282793e8f4595833f77155800e2948

SHA512
7d280ffaf6f2ef9ec8d17a7a679949331cfe8178878cea23fa1d6cd0a804960c7af23082bfe4011ab397fda3d5850c555f95e6fa4714466e93732b5e1388896a

Download Submit
/data/data/com.dpsteam.filmplus/files/UnityAdsStorage-public-data.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
/data/data/com.dpsteam.filmplus/files/frc_1:936215173176:android:342b1e830fab52502daecd_firebase_fetch.json

Filesize
575B

MD5
01d76387e3e43aa22bfe69b142cf75b8

SHA1
fdfcda17fc1920ad5fd3c41b191cb263ad2018fe

SHA256
315940799dcc02ba072d2aef2efc512c8096bde8fa7654bb6cae3f0c46913946

SHA512
84a4ede37ceb7884651dbe47a992bd2b607900a832afa7a6286cc174baab80f6a816ad957ddb46a3023767b5b0604abfd50ba3564b0966a35cb0809afc2aaffe

Download Submit
/storage/emulated/0/Android/data/com.dpsteam.filmplus/cache/UnityAdsCache/UnityAdsCache-ad53115d8419002571b682c4d30abce2cba7798de7e71639be1f62bd447f3d21.mp4

Filesize
1.2MB

MD5
3abc7a1c4be6d5dac57a536f2b995ea8

SHA1
4b61d1ed97e7c0f9fcf0e5d9dd5b04a3b7cd45ad

SHA256
6a05470278b4ae1f03c77aff1c780fe3f0b5c06bfb16ce4a6edb633a92ed2375

SHA512
ab3ff148deeaf4316f4a434266fa79649fc55b4dd5b38978d55ce5c90313eae07a933136bd63b8fb5de659da82deb31dffa5e9b28c01f7fc144fdc841d110444

Download Submit
/storage/emulated/0/Android/data/com.dpsteam.filmplus/cache/UnityAdsCache/UnityAdsCache-d0d6922bfe314a7bcf309bb44f19cd8969119d693ffed1a8cd636aa6e1f62e6e.jpg

Filesize
8KB

MD5
2d84f348d3f1086a558b7e44d334c428

SHA1
a60f74d5cd2e1bb1f9e3ab11b84f070822598473

SHA256
fc0171e601a811b63f61b34a6a197681038ff17edd95339c48a1f711daaeb355

SHA512
62fc94fc55250a525f56f943075435208ce6b6f2050c14653b67e7d3116b4cd6375624d66772828d0f7b53bdae89ebd5cf7e44d3edbd1dfe9d3338c3aded5f06

Download Submit
/storage/emulated/0/Android/data/com.dpsteam.filmplus/cache/UnityAdsCache/UnityAdsTest.txt

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/storage/emulated/0/Android/data/com.dpsteam.filmplus/cache/UnityAdsCache/UnityAdsWebApp.html

Filesize
2.1MB

MD5
6a94eaf467e31cf022ae1e2def28b062

SHA1
28cde31ef9173cd7543fb5169a6e0badb67e0f42

SHA256
542be2d9c8cfb724c7be840870d719b49bc00ef17e547aa850e2070844264497

SHA512
ffca3a5315a5579f9b89d3e122360cf1c2f19e1f0617dfa19d10899d2fb1ead54047aed3db5027bab54c33103b48a3a527054847346fd364e32027cb0977e2b0

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads