ed57cbe59c74b547e9b745ee42eefc01383c7b2f89cb3608bf854fad9e36a1d4

Analysis

max time kernel
178s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
16/08/2024, 22:08

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ed57cbe59c74b547e9b745ee42eefc01383c7b2f89cb3608bf854fad9e36a1d4.apk
Size

5.0MB
MD5

4d5d375611813b9c5cd9e99bf4f20041
SHA1

536905101166d247fc48d3b48f7fdfafefbf7fe0
SHA256

ed57cbe59c74b547e9b745ee42eefc01383c7b2f89cb3608bf854fad9e36a1d4
SHA512

027ed0ab50d57e60cd3a1af7e8db3c00066a8377f3090de3a38b90e834dbdb1db3b97d8748fa2fd0e198ec0bbc2b7de4fb4f401ff059dd96b59dcc138ec62ccf
SSDEEP

98304:z9ddus+vYa3Pzu1+GTp6nh4wclyvyWS9xiEg6223ern9d7uvEjcrjCNco/Krfm5v:gsjp1+kQnhC0KWShgI3A9hDOjCNN5v

Score

6^/10

evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.atrc.tr44

com.atrc.tr44
1⤵
- Makes use of the framework's foreground persistence service
PID:4451

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.atrc.tr44/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
7807bbd636c4e950d31fcecd8c7510cd

SHA1
312b0f3bb5b0638fa7b7fa059d117986f788484a

SHA256
0ec74863b9d15695942563f230d3fbd008bb4516646279bac8abb1aad74018a8

SHA512
21faec6908363240cdbcca0e3537d19e6b029263182f6d612e3a607d056359468e19afb6bf829a0905d62a24650b5506483958aaf58ead32bd0378260c180b20

Download Submit
/data/misc/profiles/cur/0/com.atrc.tr44/primary.prof

Filesize
2KB

MD5
bde929d1e3df4c110da63c42706d6161

SHA1
23fda1a2e140b547d791f058f5b653bbac31d597

SHA256
5816a19e1f9d24aa6124db7157f55c4697ba54bb56b3f82caea29f62162a5c39

SHA512
0eb478ff11b84ba048333b8ba96546f2c420bd581ca0cf666882c064f9ab92fb3bda6fe32c9dabb44badba24c17226292c7bba75924c9a7c23f0109fb1896cec

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads