ed57cbe59c74b547e9b745ee42eefc01383c7b2f89cb3608bf854fad9e36a1d4

Analysis

max time kernel
177s
max time network
158s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
16-08-2024 22:08

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ed57cbe59c74b547e9b745ee42eefc01383c7b2f89cb3608bf854fad9e36a1d4.apk
Size

5.0MB
MD5

4d5d375611813b9c5cd9e99bf4f20041
SHA1

536905101166d247fc48d3b48f7fdfafefbf7fe0
SHA256

ed57cbe59c74b547e9b745ee42eefc01383c7b2f89cb3608bf854fad9e36a1d4
SHA512

027ed0ab50d57e60cd3a1af7e8db3c00066a8377f3090de3a38b90e834dbdb1db3b97d8748fa2fd0e198ec0bbc2b7de4fb4f401ff059dd96b59dcc138ec62ccf
SSDEEP

98304:z9ddus+vYa3Pzu1+GTp6nh4wclyvyWS9xiEg6223ern9d7uvEjcrjCNco/Krfm5v:gsjp1+kQnhC0KWShgI3A9hDOjCNN5v

Score

6^/10

evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.atrc.tr44

com.atrc.tr44
1⤵
- Makes use of the framework's foreground persistence service
PID:4930

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.atrc.tr44/files/profileInstalled

Filesize
24B

MD5
ab694b27ad9237ca75f78bc14e7ccb43

SHA1
887dad068ae9b163a4d48dbad74e40c6142eae43

SHA256
015f824156e3378ef3c6745d38c587c3181100c04ee89f35b2531848b954519c

SHA512
af2ef7edf646014564c0ac332f4e6e94bf3b0b4ef5af3a9c5ab99c38cbb28be0391dac6874286483f7d2e6226203a7e4ef16497e4fc5ac47600a4f88d06ba7a0

Download Submit
/data/data/com.atrc.tr44/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
7d81e15d52c868e066fc7f66592fd6c8

SHA1
1ed98a6431bb29199e6d925a9e08d6b1bb40532c

SHA256
3c6a38f57ed7a1366b28cbac1754dc56889520bdbb7e08074ad034b5a75bf172

SHA512
5e63dae4d6032eee8b17996f0abc61fc5dc1957bc95ce88b2722b6597afc880ffdaedb53fc3638f20e6b6166ec662d20b40b929bbe5d286e1b7056dd7adfad9f

Download Submit
/data/misc/profiles/cur/0/com.atrc.tr44/primary.prof

Filesize
2KB

MD5
bde929d1e3df4c110da63c42706d6161

SHA1
23fda1a2e140b547d791f058f5b653bbac31d597

SHA256
5816a19e1f9d24aa6124db7157f55c4697ba54bb56b3f82caea29f62162a5c39

SHA512
0eb478ff11b84ba048333b8ba96546f2c420bd581ca0cf666882c064f9ab92fb3bda6fe32c9dabb44badba24c17226292c7bba75924c9a7c23f0109fb1896cec

Download Submit
/data/misc/profiles/cur/0/com.atrc.tr44/primary.prof

Filesize
5KB

MD5
8365283a6e0443465a45e7230b05d080

SHA1
ff3790eaffc07956c1181ca563a6ecc40eee4568

SHA256
8aa5b42d69f05e8d7696be6f6aebacd5119eb3407dd9774e0ee6b2118d11d662

SHA512
ea1962bb410b8a7a972923a373679301adfcabccc600dae38e2430b64edb415a8c5e463277f39a74b4636058279e1f3b318c28f4bc958668ac4119433a4e8f2c

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads