Analysis

  • max time kernel
    123s
  • max time network
    105s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    16-08-2024 22:18

General

  • Target

    kosrat.apk

  • Size

    2.7MB

  • MD5

    8cb0b3c236db2507f56025c491c40ceb

  • SHA1

    0284d884bc5e31e096719871778fa226c6224a67

  • SHA256

    c92bc5ba0b412dc77d4d9e1f0a319c265dd9532b4e2e946a0d93dc0f406298e8

  • SHA512

    29963cfe9936e066b53aeecfef4ee132c07dd72b37b89af27345e1ff4e641e28dac0e925ba721cd3813d5d7c6a59b33c7aa815fa6acfabd8c25284cf4b5d58e0

  • SSDEEP

    49152:d2kasH6YLzeNAbVdILumXE+voBcwrUHZB8ixtWvSt6EF8tRbsiE29GtrC66xhSYs:ZasH6YLzmEyEJcwrQZB8ixRMtR7WtO61

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • com.Mad.api
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4253

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    3d1cc0504b7f91974dd4322c8526a42c

    SHA1

    ff50bd69390ef709ad02e393a7db91abe19dfa20

    SHA256

    4d7d70c2da0c4bb7799b2c082c7371844c47e24f0527e5bec3cb76bea03221be

    SHA512

    6b3b023d85d79269af03a97c0d75f03098d48a243a0b77647dce03dc61faa7282e445b1057fa636dc21b7101d68cb76015525b681485ee3cf4106556aa366bfe

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    e690593919d7f4772c8041a33933355d

    SHA1

    97adb71da9fb04d0af7dee856036253e66d3ca7d

    SHA256

    051f1509aaf5ab0e38e59f70504dc0e7147f9cec1904dfdf291ecb0f5937b87c

    SHA512

    532af585ab587405cb0248bac440b69dc602fd926789c5ccdd476f806c7908b2fd0493295d33aa5414085d7efc90d3ec28bb381c7e85c7f6c01e39fcb4b719c7

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    20b58fc33e02fe2ab667c4ddf8787fda

    SHA1

    8937b0b7fbd603ca7a9f2cdea6f409d2591cf3a8

    SHA256

    06e6598cb93b4e72693bcb54f062e2a79f3ef46028ede3e327d3ff940a339672

    SHA512

    b58aea0070511f32bc47abb9602f92d1cce54c4e6a46800ae386a2a22ef51cf4b38a0eddfb8fdb79e429905d808a480cf092035e1a65cf4f8824e48067397d58

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    d219399cb93b9173187a28e22c146698

    SHA1

    d99353d896020724a3134e7dbdd6a93a2fe978d2

    SHA256

    47a311762b5b77721c37dffa0918ad3483c3ed67f9fff22eb4b781379273d5d7

    SHA512

    0f971eb54c8db739cb0a6d0b0e3e370a1d0f05471380522a106804663f0a1a314cca6c64bf90b6b7aabc1c6b25eb454ef6d605663397e62a4c390d7a396f2813

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    394138bfceda90a31283275021d0a6d5

    SHA1

    3d33b5e467be5f8381d5a28a0cf9e038f672081f

    SHA256

    05b1456a3be9b319a084b40fbaa2e66474c0d55c551ba56ac70170aea0b0b93e

    SHA512

    294f3b09341a4b71efb9eb46625830d175cc69e5cb2b4c2dc77c54e48e8e8a25ac9a5bbc728fff4493a2084691ff5498f93d59424660f45a4dfd1cbff8100602

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    f9ebbaa237d35d6696e6a974fb05ba62

    SHA1

    f7a1657798a970097ec59db23b568e2a697f71de

    SHA256

    e3b9e12914902c9adc9de44eb6f65b19371c04658a59cd9e56499bad559fb26e

    SHA512

    3a824854e298f8df6bcda5b51ad72be9cec62e6fcc367140a9210a7f6e657a0ee0ae15ef7edc537efa10bf5f137cbebf8afffb9b002a2e7c3f8fd065c6ac158c

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    a4547d567f3bd4746ca56029a963bc22

    SHA1

    7e41707912a7350a5a07efdeac5a8e79ac1f1b21

    SHA256

    1692611c380008bc27c8ee7404112096dd8524dc41a565315abddfc8a91f4c09

    SHA512

    98b0aeff48f77228e5a7d0383f0bbb9586f197b944147f59fc0faa290b2c4544f7f10a35111de878da4ae93bdb32a4201ca35b76b32e779918c6d7e6d04fe1c2

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    ea9c0a043a0f72d348418c3c0fd5ec15

    SHA1

    7840ebfa659a0e55f5e7a7bf5ed8b20983c6536a

    SHA256

    6ec997161711a8a60654e5b67da203eca189b212effec5c9caebc34f5b5c0c4a

    SHA512

    95026204705d424ccc54ee7a8c9017ea0fd4d139083db6ee608674dbe719cbae0f04f261afe791249e9063dafd2e2c872808d5b68b75fa5a7256ae692b6faaad

  • /data/data/com.Mad.api/files/PersistedInstallation3131184179129378109tmp

    Filesize

    568B

    MD5

    5a189820fdba9c794d234fde7d31b990

    SHA1

    baf28bd167de82a5f000317700d0d6007c25becc

    SHA256

    997837e27b63dc1cbfdb16b773e7865bd3f65196ccb5c57b49fdcca54a84d8b0

    SHA512

    89ddb41dfc9056531b0d0dbc762a25bc83e2bbe803f45eabc281636023024262b1a21d537a612a1828d04626001a08d581e09013dd7bd9f313760d57c597be7f

  • /data/data/com.Mad.api/files/PersistedInstallation6863354610025041818tmp

    Filesize

    90B

    MD5

    43020746d3718d6cb87061df7478b4af

    SHA1

    ca4905d6f5c55f8efc39ee6d9171ffb7e3354d26

    SHA256

    131418bb4470b0c6dc38c77377d37aea4434a0ee1fcfad3e0125fb15403f097f

    SHA512

    5e55ea75ab0712f226fd10ca6ebb255e86224d92b038eb9ad22c07bc1b32f61b5e01b72adf9cfc00087ba14fca6443c5c404af58fc968a90629a50632994207f