Analysis
-
max time kernel
123s -
max time network
132s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
16-08-2024 22:18
Behavioral task
behavioral1
Sample
kosrat.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
kosrat.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
kosrat.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
kosrat.apk
-
Size
2.7MB
-
MD5
8cb0b3c236db2507f56025c491c40ceb
-
SHA1
0284d884bc5e31e096719871778fa226c6224a67
-
SHA256
c92bc5ba0b412dc77d4d9e1f0a319c265dd9532b4e2e946a0d93dc0f406298e8
-
SHA512
29963cfe9936e066b53aeecfef4ee132c07dd72b37b89af27345e1ff4e641e28dac0e925ba721cd3813d5d7c6a59b33c7aa815fa6acfabd8c25284cf4b5d58e0
-
SSDEEP
49152:d2kasH6YLzeNAbVdILumXE+voBcwrUHZB8ixtWvSt6EF8tRbsiE29GtrC66xhSYs:ZasH6YLzmEyEJcwrQZB8ixRMtR7WtO61
Malware Config
Signatures
-
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.Mad.api -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.Mad.api
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
16KB
MD5bb85017b13271b70611238ff912ef861
SHA122cf7a41dedc9be9faa29fb31b62c7083bc75b68
SHA256014dd52985c0db61e420af2770ad14cdd2432dd4d3bdacbd07fc6d7698e0bebc
SHA51237db0c0e11a0ec2ab13262c73daa4fbd21827cdf024ecea980dae7c208021d8dc14c8dd1c67cc7362a639554dae9c378141c8c92eabdab444cd28c1b3d785528
-
Filesize
16KB
MD581dbbc1dc284821b8284e4a53d089650
SHA1e975d2b5cf32760c953778857fb013b022387ee5
SHA256b368905e96aec0c824f42800c7b2983e96257816b939956471576d12a12ac830
SHA5121a8ef4caa6c8c5932e53e966cf9484d92c04a7feaae82b0f9802deb9adef920ea9885c7918234619449b2f77cfe201103d048ed2fb6d377dc280fcfad904233e
-
Filesize
16KB
MD5efe2621fa4b9e4258ad0a7ac173208b6
SHA15fedfadcb1afbf1a2d7b14a85e81a1232b8302c6
SHA256c0b2acab5f2a9ea0d7a2050a6ed2b773519fb253a7071b0cdf8425a188d2686e
SHA5126418334d381efb8dea94d62995eecd287085d1aace2941aeda9ecef20e7f31cfcdb4b797f132c193bfe83a45b0ccfb131e0e0c231f807854d6b305c7400a568c
-
Filesize
16KB
MD5d9cf75fdd1c2292d986f6c3d5d60f2c8
SHA107ecb1d3a26d952ae5fecf54f36699ab498510b1
SHA2562d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a
SHA512442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb
-
Filesize
8KB
MD5e93ff96922c4b44efed08cc66839a7a8
SHA147429eeca447cb611574cf3da61aa9618d684613
SHA2566616c5accf39383e0e78e3e7e6c1d37f10f0e30cda567fbf68297a1afef73bb4
SHA512ca55a5f35597b082975e5e8b08118ff53689a261f3d70e874c6de6a6895bb7c86eab6950380293368f75ea26ad9931677824d39e9359c071171d2fde20bf0968
-
Filesize
8KB
MD55610b1ccd68012134bd1e1cb4a1254b4
SHA124dd6f7a95b6818f88f2d3699fe094c5d3868034
SHA25640d994ef17c92cf51d12bbfeeb277929cd073dc3ab009cb0d15e37ff191818fe
SHA512ea5daa82acfc57e01cc093b70386169ac84cfbe206ec7c1500811626047154d73f9fe6ea234cd1bc1d8e14fe3b9d34a5fd7aaf395e05ed8674e937d0ed9fc4e0
-
Filesize
512B
MD576d0bf19ce6d64a1bc26c5729db0f1ec
SHA16b87b99c0b41d8fcba0050b0ca1743dbbd93f78b
SHA256c2d4c96e5ce3bda9543d0bd61afb45c60bf9b74407990079f25c6a23676fece4
SHA5128cc63cce28147d7703b2817c22d54e4cc3f776ff173e1a40d36f3df1a6217c44cbe708663288eb88be5bba110e0c9487bfc30bebaebcf67de90cc972b5d42775
-
Filesize
8KB
MD5b09907a6aede0f753c1fe4aed64fed09
SHA1a9e51d7e5ef60b652bb233dc7d89350c031e47c8
SHA256617aac847fd2ef791c23af456d869eac7793ef63a8aa50438a95ece05c0bafab
SHA5127daa9dceb7531a96b731bfe2c0624b4cfff6ecfa56ba45fab08878f2110aed0db47366abf8e5fc99454f7b30debb1223bed9ba1c9613944fd36baa2c83b8c4ef
-
Filesize
4KB
MD513509a0da75b7b2439cfc337dc998af4
SHA128922bba4fb97c5f89cb193da2cd0156dfc1e015
SHA2560a8ec16f6d267f61fd6e9771b9740f7c7230d612845289c1cb67541be0083795
SHA512cf7be0a0b6c4f50bb44950c3439567a563d4926312f2015920d208905cb3a15e6e2c8937150ccf13be65176cd9f8dbf43a4b5275b2dce52f83d702302fc0407c
-
Filesize
8KB
MD5898475d1c593087653ecbb1999fdbded
SHA1cd63fc6159001033e2e58b5358004f6b967aada9
SHA2564b76f470406dbba1deb1ce73a2f1f1d7b35d3d32c38551a4bee75413fa337a28
SHA512cf222ad75a52d1c8b8d341d9bd25ae02a721da106470ff42866a37557e0b7c3575d05ed7f12a999643848abb7f83ba68a0afe7137eb41094055f23938c859e4e
-
Filesize
566B
MD5bec75fdeec52cdb732828d25b1625f47
SHA16395362c92d16874166d0cfd93a0f6e62f6f8510
SHA256dd88ccc4f23fb62c13bcc8c94b787521f78554877168d84d7cae0caa4492e8d2
SHA512582fe684036f524a9e5eb940f128f8727fabd16fda3cde95037886b0c302f86bd36496fa8035f82ec6a50787fdbd848783480097d83e723f1de1713551b9ca3d
-
Filesize
90B
MD5e0eb0eccb371ee8880a18894b79b8d90
SHA180921efcd86bb62eabdcceaa998661041c984c35
SHA256b525b81ae3b9a630349379ec02e57fa8b14b8b74256ea1e2e1c6366fab64fa42
SHA512ef9c1a1ee94743703b75c2e2ce32f293c7d81636b1770446e2e9fe407ac1a3a3372c78388a46cb33b7f912207f25377e0fe2ba853fd152ba65c2cfbb93b8b79d