Analysis

  • max time kernel
    123s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    16-08-2024 22:18

General

  • Target

    kosrat.apk

  • Size

    2.7MB

  • MD5

    8cb0b3c236db2507f56025c491c40ceb

  • SHA1

    0284d884bc5e31e096719871778fa226c6224a67

  • SHA256

    c92bc5ba0b412dc77d4d9e1f0a319c265dd9532b4e2e946a0d93dc0f406298e8

  • SHA512

    29963cfe9936e066b53aeecfef4ee132c07dd72b37b89af27345e1ff4e641e28dac0e925ba721cd3813d5d7c6a59b33c7aa815fa6acfabd8c25284cf4b5d58e0

  • SSDEEP

    49152:d2kasH6YLzeNAbVdILumXE+voBcwrUHZB8ixtWvSt6EF8tRbsiE29GtrC66xhSYs:ZasH6YLzmEyEJcwrQZB8ixRMtR7WtO61

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • com.Mad.api
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4491

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    bb85017b13271b70611238ff912ef861

    SHA1

    22cf7a41dedc9be9faa29fb31b62c7083bc75b68

    SHA256

    014dd52985c0db61e420af2770ad14cdd2432dd4d3bdacbd07fc6d7698e0bebc

    SHA512

    37db0c0e11a0ec2ab13262c73daa4fbd21827cdf024ecea980dae7c208021d8dc14c8dd1c67cc7362a639554dae9c378141c8c92eabdab444cd28c1b3d785528

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    81dbbc1dc284821b8284e4a53d089650

    SHA1

    e975d2b5cf32760c953778857fb013b022387ee5

    SHA256

    b368905e96aec0c824f42800c7b2983e96257816b939956471576d12a12ac830

    SHA512

    1a8ef4caa6c8c5932e53e966cf9484d92c04a7feaae82b0f9802deb9adef920ea9885c7918234619449b2f77cfe201103d048ed2fb6d377dc280fcfad904233e

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    efe2621fa4b9e4258ad0a7ac173208b6

    SHA1

    5fedfadcb1afbf1a2d7b14a85e81a1232b8302c6

    SHA256

    c0b2acab5f2a9ea0d7a2050a6ed2b773519fb253a7071b0cdf8425a188d2686e

    SHA512

    6418334d381efb8dea94d62995eecd287085d1aace2941aeda9ecef20e7f31cfcdb4b797f132c193bfe83a45b0ccfb131e0e0c231f807854d6b305c7400a568c

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    d9cf75fdd1c2292d986f6c3d5d60f2c8

    SHA1

    07ecb1d3a26d952ae5fecf54f36699ab498510b1

    SHA256

    2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

    SHA512

    442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    e93ff96922c4b44efed08cc66839a7a8

    SHA1

    47429eeca447cb611574cf3da61aa9618d684613

    SHA256

    6616c5accf39383e0e78e3e7e6c1d37f10f0e30cda567fbf68297a1afef73bb4

    SHA512

    ca55a5f35597b082975e5e8b08118ff53689a261f3d70e874c6de6a6895bb7c86eab6950380293368f75ea26ad9931677824d39e9359c071171d2fde20bf0968

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    5610b1ccd68012134bd1e1cb4a1254b4

    SHA1

    24dd6f7a95b6818f88f2d3699fe094c5d3868034

    SHA256

    40d994ef17c92cf51d12bbfeeb277929cd073dc3ab009cb0d15e37ff191818fe

    SHA512

    ea5daa82acfc57e01cc093b70386169ac84cfbe206ec7c1500811626047154d73f9fe6ea234cd1bc1d8e14fe3b9d34a5fd7aaf395e05ed8674e937d0ed9fc4e0

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    76d0bf19ce6d64a1bc26c5729db0f1ec

    SHA1

    6b87b99c0b41d8fcba0050b0ca1743dbbd93f78b

    SHA256

    c2d4c96e5ce3bda9543d0bd61afb45c60bf9b74407990079f25c6a23676fece4

    SHA512

    8cc63cce28147d7703b2817c22d54e4cc3f776ff173e1a40d36f3df1a6217c44cbe708663288eb88be5bba110e0c9487bfc30bebaebcf67de90cc972b5d42775

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    b09907a6aede0f753c1fe4aed64fed09

    SHA1

    a9e51d7e5ef60b652bb233dc7d89350c031e47c8

    SHA256

    617aac847fd2ef791c23af456d869eac7793ef63a8aa50438a95ece05c0bafab

    SHA512

    7daa9dceb7531a96b731bfe2c0624b4cfff6ecfa56ba45fab08878f2110aed0db47366abf8e5fc99454f7b30debb1223bed9ba1c9613944fd36baa2c83b8c4ef

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    13509a0da75b7b2439cfc337dc998af4

    SHA1

    28922bba4fb97c5f89cb193da2cd0156dfc1e015

    SHA256

    0a8ec16f6d267f61fd6e9771b9740f7c7230d612845289c1cb67541be0083795

    SHA512

    cf7be0a0b6c4f50bb44950c3439567a563d4926312f2015920d208905cb3a15e6e2c8937150ccf13be65176cd9f8dbf43a4b5275b2dce52f83d702302fc0407c

  • /data/data/com.Mad.api/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    898475d1c593087653ecbb1999fdbded

    SHA1

    cd63fc6159001033e2e58b5358004f6b967aada9

    SHA256

    4b76f470406dbba1deb1ce73a2f1f1d7b35d3d32c38551a4bee75413fa337a28

    SHA512

    cf222ad75a52d1c8b8d341d9bd25ae02a721da106470ff42866a37557e0b7c3575d05ed7f12a999643848abb7f83ba68a0afe7137eb41094055f23938c859e4e

  • /data/data/com.Mad.api/files/PersistedInstallation1715231235196489004tmp

    Filesize

    566B

    MD5

    bec75fdeec52cdb732828d25b1625f47

    SHA1

    6395362c92d16874166d0cfd93a0f6e62f6f8510

    SHA256

    dd88ccc4f23fb62c13bcc8c94b787521f78554877168d84d7cae0caa4492e8d2

    SHA512

    582fe684036f524a9e5eb940f128f8727fabd16fda3cde95037886b0c302f86bd36496fa8035f82ec6a50787fdbd848783480097d83e723f1de1713551b9ca3d

  • /data/data/com.Mad.api/files/PersistedInstallation6845374732655740872tmp

    Filesize

    90B

    MD5

    e0eb0eccb371ee8880a18894b79b8d90

    SHA1

    80921efcd86bb62eabdcceaa998661041c984c35

    SHA256

    b525b81ae3b9a630349379ec02e57fa8b14b8b74256ea1e2e1c6366fab64fa42

    SHA512

    ef9c1a1ee94743703b75c2e2ce32f293c7d81636b1770446e2e9fe407ac1a3a3372c78388a46cb33b7f912207f25377e0fe2ba853fd152ba65c2cfbb93b8b79d