Analysis

  • max time kernel
    176s
  • max time network
    168s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    17-08-2024 13:45

General

  • Target

    base.apk

  • Size

    2.7MB

  • MD5

    0ab9ec86b5d33b8c4e10be8cae550810

  • SHA1

    a535aafe5f236cf4ae0248d3eb13271ef1a7749f

  • SHA256

    643c1d5240fe9bc4c4beb2799d6647db58c35f8ac0ef40715c9b4a30f12cb4a3

  • SHA512

    a2842a54622e122b75b0be9353aa82d1104cca5ed4fc706482205389b0065a4757218950589432d1e7bfe7ab8a796fc24c8e75f5ba2311f30a2849ee9785d94f

  • SSDEEP

    49152:M/rWK7M6cakjvjyQrmVqjnkCmgXVA5ovP9ucIjRwwNPM/3UrqKsUQtnzjJshp:aSn6caUvjVKVZJglHXuuDCitzVsT

Malware Config

Signatures

Processes

  • app.Madsal.org
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks CPU information
    • Checks memory information
    PID:4252

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/app.Madsal.org/cache/1

    Filesize

    12B

    MD5

    453a51fc681b0a4c692ee00a84321919

    SHA1

    dd37acfa6178d03c260e960aaba67d01d19ce08b

    SHA256

    f164c2b5fd53b8a772dcab060642b37241218e8a26bb03d9b93040a96978f862

    SHA512

    4243eab3bda6521e575f9441a99c0906ec5637328f51720ae69b8ba85e54c088936424a322b19f7336c58cf3d400207c8cdfcf72c96e0f79bc94b6aa02d36279

  • /data/data/app.Madsal.org/cache/2

    Filesize

    27B

    MD5

    ea1adc3a57eafdcec03587edcf343e30

    SHA1

    358286a31e135ca55b747fca085116fce4a1b2a2

    SHA256

    3e95ce3e224f1179f83093432e03747c3f8b15b84e9052096f9e979d71cdbe76

    SHA512

    a25bdcfe3e68d7a97b25d041fb305651c92cba64c70b1dc25206fb089cca47782d77c07a753ca805f20ec3a7766b5d8937c28c3accdefd8f82e4e12ce2a50f88

  • /data/data/app.Madsal.org/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    99941ef49876bb76ba0623405d1cae50

    SHA1

    7dde12f57be1d2158e57a89c87a1137fdf859f9e

    SHA256

    db23e1e5af8e2985609095870648adc4aaa1e122ed212956e12be11a4e054e4c

    SHA512

    5f8a551425fef0ff789f9a4f197e916d709c2a2a2696b60c21b7adb501eda391a215b1d61df56b217c9eb6b087ac76b89f9fa34db6f586a9bcb337a33cf46b13

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    0f7af43270b1f1135f90934316690f6a

    SHA1

    b51ea7136eab51dae45374dc00d125218cc6796b

    SHA256

    3ca9a788426f8924975da2535f0cd1b20fec9547bf410e8a838699a3618d5734

    SHA512

    02fd100c0df4ae4caf2fa684cf881099dd7e26e2b8da723f49662c2cb991661a2e3732025825b28ea0321ab35c211657a88841cc56a8a7436de5e689395730c1

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    18b55bd0179f1b41ab09a63b13ed4074

    SHA1

    91e6e9577c114e9eac5395e825605ee3aae7fd39

    SHA256

    9e6b98098c28bc8afd908c1cc71d6f66db53b643f4f26cffc2b85ab53c65b609

    SHA512

    76d244b23f086434663989cd3b564338ecd7f93ebc31316252e02d7924e1fabb07287dae862f6d8cfc293df0b9e840b73a08c45a2aec325e4bf8c5c0a8b38f86

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    69ebc9205b70ce1701587a8536f820bf

    SHA1

    11d18ad7bb81a78206df0583603dfa67865983ab

    SHA256

    853e1bbd67139abf1e00ad4954d7383a0f876d03e5e830db3fb50c202c76e753

    SHA512

    393a1569334587bb9efffb7708ad0a66f5b64fa68992edc8db64fe855f4e435d5d3901f4a5aac6d878eb266e09c111b651e55d73ed02529d535021e7ecfde97a

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    3e881d9a01ca707bed38018ac69f4518

    SHA1

    5820f9351d7cc8082de6e5686eb9f8fedf6fb830

    SHA256

    4a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c

    SHA512

    8f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    57476d75e5987e39598a0ccbdf1706f9

    SHA1

    a4712448c812b647016636bd9c1070649202b428

    SHA256

    6240edce5a0b2205cde7a1b9c3ad0f98ac3253791f13080792f0d0563682535c

    SHA512

    8d7cd65b01c6b223674f24f933a4107e2c71bac49d000b03183eb40db282b9e35d712e1a271c3831d5d3141fd3748a3eb558041118a4a3e350bbdf8b53de18b8

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    0a27881c66db263f1760cc46f27434ae

    SHA1

    53be53b8c15b453d6bf51dceb2086c6e955d6656

    SHA256

    179f937f3b979f613c7b15062661a3d113dd3ae5d85fcdcabbb22137222eddfc

    SHA512

    a3b813b66c974d105d0e3d50046df43c0b4ad00ffad1bf46663ce9ddd9020585e1c897b7adba65fe71bd859733afd16bfe15a0979f6528184f56a232e1fbc5f6

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    77294dd957d0547e09365d0b1eb750fc

    SHA1

    6c1d1c15c78a5e87382722a0b881a0ccd5194b56

    SHA256

    6f3e64f6464f88396c05785ac26a60d6b76a760a447f70b9dbe2ccc9cb6b9a97

    SHA512

    c5da2356fa68e2b329fa00d32630c089a7e64a765f66a9794e5d1d9c790eeacbb166eac1593b94f91021faf8648a86bf686ba899b7dc12339b48eca3c409765d

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    7c54c5e302ce13b65f6359d62a9fb26e

    SHA1

    875679cf52a0f695b4998bb460d79457d60a4e89

    SHA256

    52afe49e3947b8144a95b76e501c2cee3a3a4c64e9974dd6b39adbd40acd6c1e

    SHA512

    0ee60e558e7999268204389f3f9c496e6745ef94732e2514d4de5e3392642ec1621332797c3f3019a7c263ea3f0bd445c097256bdfa5753b6123a3c2e5b9706c

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    bf517bd7604fd2ba23848e8bc59e447b

    SHA1

    c30b35dd4115960c1498005ccc703df8f0381939

    SHA256

    665841084fb33d7b45af306433606ceb09b95530a28802861f03620744c00385

    SHA512

    a4d7d110de93dc019c177192172e1d2d48be5d7a00e12517ce964f0b099657b73a4008e6ab779456ce0366bf9ec3d5678c659125558d2dbba9a1870cd065dbcd

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    9b7a433a8140da97ea302908383f19ff

    SHA1

    8a254cf634581f02f4944ff22e3fad8e56ea5fff

    SHA256

    767c8d089afbb30f99d3b9f2fb439cb3a4969936c59e258b5a9de1562946d80a

    SHA512

    55e7c479727502244f75bb327f49d467e9a5a3b7dc303784e9c1c99f1c5cc7b4c5e851e1dc843b6d601ab23784346fb1dc449724f7445487823aaecce6da57c1

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    0ea8fa8abdf66953874145fd3c6688db

    SHA1

    3afd4ec8b6f7ec0941ade64bfbb69a6d8347afa7

    SHA256

    866803d413b8bd2c67baf69b1bafa9dd31e30a6779d58b602875e9ccf1c9e1a7

    SHA512

    64584aaf0e11d4c7893ed30fa9216994140a6c28f6d601c905bf97615ff3f87e71ed6a820ae89e37833a4e9a60f3c25d2f7eeae7f2cde1c176e3a8faf0ea0d64

  • /data/data/app.Madsal.org/files/PersistedInstallation1703796985335588448tmp

    Filesize

    90B

    MD5

    0dd1981286f16c8b0e8436048f8741a4

    SHA1

    c06a3a2516a5dbf6049a113bae72a60d04a97125

    SHA256

    1f801d9106466a9abc1781608de40b9ce62b5765d78b67885dea39cb4b7d9212

    SHA512

    7c438d9c96245e898115bc77bbec9466572284707a56f6c5b3fb308b22b31dc272db20bb50fa617cfbbe3ca41395da8b685129cb94275b6deea9ba07320fb385

  • /data/data/app.Madsal.org/files/PersistedInstallation5058941134751021630tmp

    Filesize

    567B

    MD5

    d37d2c9abd286f93de980f996d685fcc

    SHA1

    bb5119071c296dcabecbf5a4282d19cced7fc09d

    SHA256

    a2ef848744c376a30c41d85b7cd7f3db93b8a8cfd1a66ec91c1559a59c4da979

    SHA512

    b37441a72779df7a8fd26afed577d5c97d734c5c330f7da6bfdd54e0b6cb594abe9d6dafd7b7f0f53eccfc9efb6024cb7cbb9483a9cd54444ec5aaa9ce48407f

  • /data/data/app.Madsal.org/files/install.txt

    Filesize

    3B

    MD5

    93cba07454f06a4a960172bbd6e2a435

    SHA1

    5397e0583f14f6c88de06b1ef28f460a1fb5b0ae

    SHA256

    85a39ab345d672ff8ca9b9c6876f3adcacf45ee7c1e2dbd2408fd338bd55e07e

    SHA512

    6b99acba1e4e469610f9227829648fa52e7ad463f22568f0a04188f2d465a585ba077f12d1a527674c338470e79665fd16e54f25553482cddd85845232d186f9