c92bc5ba0b412dc77d4d9e1f0a319c265dd9532b4e2e946a0d93dc0f406298e8

Analysis

max time kernel
124s
max time network
167s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
16-08-2024 22:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

kosrat.apk
Size

2.7MB
MD5

8cb0b3c236db2507f56025c491c40ceb
SHA1

0284d884bc5e31e096719871778fa226c6224a67
SHA256

c92bc5ba0b412dc77d4d9e1f0a319c265dd9532b4e2e946a0d93dc0f406298e8
SHA512

29963cfe9936e066b53aeecfef4ee132c07dd72b37b89af27345e1ff4e641e28dac0e925ba721cd3813d5d7c6a59b33c7aa815fa6acfabd8c25284cf4b5d58e0
SSDEEP

49152:d2kasH6YLzeNAbVdILumXE+voBcwrUHZB8ixtWvSt6EF8tRbsiE29GtrC66xhSYs:ZasH6YLzmEyEJcwrQZB8ixRMtR7WtO61

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.Mad.api

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.Mad.api

com.Mad.api
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4966

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.Mad.api/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0e84fa10c6b24bd33bb89890203d236f

SHA1
479ebc3ef4dae91f1c0d5f2bef641f2c89ff41e6

SHA256
7f8ca4d91b84a4ad4c1cda76f97cb8e4950ba7dec401c65d3771179c503636d6

SHA512
b495ae644bdf28e7a2d3f6fb91975aedc2236b4932b185a1edecc4427dae1f3dc86cbd59dfe2775227b34f1834db77b8d934ddc032f65100eb69cfbd4e10c7e3

Download Submit
/data/data/com.Mad.api/databases/google_app_measurement_local.db

Filesize
16KB

MD5
1be471b76dd73782f9fe5ecf7b3f300a

SHA1
052c16888ad0b829fe50ee9056d9c74fbacc52c5

SHA256
e9c116cad18a61b0e40a6f552362a5bbc1d3b50710a7f103d31d2ec2c32abcf6

SHA512
c2a3dc06c2eb650178e2847ff3875e0425affea0a22b469ac59d84e9e6da679a2579bf42b2822531fc78a5635b0ab79d39334ec3813215c6b5f97fd65010c60d

Download Submit
/data/data/com.Mad.api/databases/google_app_measurement_local.db

Filesize
16KB

MD5
91bdaf8991c8e381a03130dce36c8b08

SHA1
785bb05157f43bc88cae411ca2483f89b550adf3

SHA256
eebf4e590ca680d7365a0ea312a1be0954f3ad6aa8975cce8a9e79ce44bef6d7

SHA512
702ed3e45a990fa0ef329280fa1d3d2a490dd379d17fcce0ed60ac4979a34041d008725e96eeb7553b371498948d74ba17355fb0710cee6005ab352a8235bb05

Download Submit
/data/data/com.Mad.api/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
96a390d5aaa759ea29124e16e0066a42

SHA1
b631f234683f010e8849455e7f47cc7be720b4bd

SHA256
be2492192aa8af823c8a5f51f77a0acb52e8edaf2101d0756e9fd77357fe7504

SHA512
a834f13db7dc2db738cba9a4b68c11f9c970397e66300a090303f50f7b56fb37610c425963195a3a6aed2c059fdb03716973805e1ebf09f194bf8d2b72dd8335

Download Submit
/data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
3c7de542eb1dedb2b2fd74a8d1f6749a

SHA1
18d384f5559d38aeaee86d2024dd89059e0ecaad

SHA256
5e9b9ef6f183570c325fc29dccc12899f51fa9d464a73dccc89af08e8774062a

SHA512
a42c8d5cf74c7f0cb4d4f3e181464c3ba4671b50f60835286331597ca2e73d76e6f4ad8636f211a1a27c7c8ad8fbad348e1ceaf5adee9273d3d7b68c9be70de3

Download Submit
/data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
21118b3f0d36d710148b9578b19c0dd8

SHA1
44eb965e42e91bf3dbcfd9d0b00579c19febbe79

SHA256
39fdc84ab32e3c5890a98ce1e7999283afa56365718099189491a003dc53dba7

SHA512
e4f0b0d31f181db87839830354d37cd89822f7d5d23c427eac361a2d7b3dd18c1e819948a92b8d49c68c467990a7dc0f79df04f34ad46a9d9c92b967e05c6f59

Download Submit
/data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
c7d44d3a90d4798a9034ad9fda1c2267

SHA1
edaa9da33d64f60ec1df733ef93d3a172e33f0f7

SHA256
038fe1f2b70e88a11ff9015fd96530c78ec46fabba89830f1c794cbb38e3dc01

SHA512
4188cc3fe6d03c5c06a196af68d196c90b6e3979e5b678f28cf461362955570e9ec568cbd91a4fd4c309377be980ea2d10457ae1a43745cbc1888046bfdc9469

Download Submit
/data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
78e720fd52fc42d0c7ada347a0607fbf

SHA1
72fde11b5f5abdbdd25f8d73229387758c24a58b

SHA256
aac9bd0bd7ddaa96e750e9ccd684c3fc1d2f78811497dacec9afebce5db29696

SHA512
4e4bb32f3e933673698ff0bd38fb3277e293e5b9d8a4b0b8faac1bdda2180b538aab15c8d8574a376f44b9e5f506c9581c5eac7a6f0e42aa42ac825a9a15e20e

Download Submit
/data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
a61c8898e37989b8484875d41798f1e8

SHA1
843aa5a1865a1e7615583f54649f073b897eb3a0

SHA256
5d5e3e4ba937a498f2d21cad7ab4fd869aa4f3f5a24ff610a072f8c555792077

SHA512
50a56b8dbc406e2a0fa426eeacb7f88864c242674d2b4aaebae2ffc215ee8c3a6d51ba0ac4573630fcdd14b61ac97bf5fc0364bfb3cef37de361c3c63fe2eca5

Download Submit
/data/data/com.Mad.api/files/PersistedInstallation5163454702338306674tmp

Filesize
569B

MD5
7bade71862d08fda35615ad738e1cc1d

SHA1
6cfd58c6c4ed61806efbacada0d487adf99643bc

SHA256
e4123449139c506de41736003aa2c432b9b36fdd410f7c550c9645d6ca834ded

SHA512
9c15bff5062937aaae3ecbcb1e700862f26a9ca167326de9166d187e5799a994ebb95f908231111fd700b43b0aae40892491e314aeb2b05ca98c06c6a67fde3b

Download Submit
/data/data/com.Mad.api/files/PersistedInstallation7573739436737061157tmp

Filesize
90B

MD5
6151241f7f027d3fbeb15f4e82fd7926

SHA1
2815e964f345e90365bdf977c25d3ea3472f9ddc

SHA256
fb06165860de7d1d38c538a3bb8085ee779a27e01dfb9830dbab8fea781fadba

SHA512
20db3a0bdf33ee11c5a2998b2f138449dbd08b46d29c40155653652a38c488f6957044b4c5552b256730796a59148b5863e6fae913e0d1b03e22bd8e375d6cdd

Download Submit