Analysis
-
max time kernel
176s -
max time network
168s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system -
submitted
17-08-2024 13:45
Behavioral task
behavioral1
Sample
base.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
base.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
base.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
base.apk
-
Size
2.7MB
-
MD5
0ab9ec86b5d33b8c4e10be8cae550810
-
SHA1
a535aafe5f236cf4ae0248d3eb13271ef1a7749f
-
SHA256
643c1d5240fe9bc4c4beb2799d6647db58c35f8ac0ef40715c9b4a30f12cb4a3
-
SHA512
a2842a54622e122b75b0be9353aa82d1104cca5ed4fc706482205389b0065a4757218950589432d1e7bfe7ab8a796fc24c8e75f5ba2311f30a2849ee9785d94f
-
SSDEEP
49152:M/rWK7M6cakjvjyQrmVqjnkCmgXVA5ovP9ucIjRwwNPM/3UrqKsUQtnzjJshp:aSn6caUvjVKVZJglHXuuDCitzVsT
Malware Config
Signatures
-
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock app.Madsal.org -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo app.Madsal.org -
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
description ioc Process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone app.Madsal.org -
Reads information about phone network operator. 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver app.Madsal.org -
Checks CPU information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/cpuinfo app.Madsal.org -
Checks memory information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/meminfo app.Madsal.org
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
12B
MD5453a51fc681b0a4c692ee00a84321919
SHA1dd37acfa6178d03c260e960aaba67d01d19ce08b
SHA256f164c2b5fd53b8a772dcab060642b37241218e8a26bb03d9b93040a96978f862
SHA5124243eab3bda6521e575f9441a99c0906ec5637328f51720ae69b8ba85e54c088936424a322b19f7336c58cf3d400207c8cdfcf72c96e0f79bc94b6aa02d36279
-
Filesize
27B
MD5ea1adc3a57eafdcec03587edcf343e30
SHA1358286a31e135ca55b747fca085116fce4a1b2a2
SHA2563e95ce3e224f1179f83093432e03747c3f8b15b84e9052096f9e979d71cdbe76
SHA512a25bdcfe3e68d7a97b25d041fb305651c92cba64c70b1dc25206fb089cca47782d77c07a753ca805f20ec3a7766b5d8937c28c3accdefd8f82e4e12ce2a50f88
-
Filesize
4B
MD5098f6bcd4621d373cade4e832627b4f6
SHA1a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA2569f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff
-
Filesize
16KB
MD599941ef49876bb76ba0623405d1cae50
SHA17dde12f57be1d2158e57a89c87a1137fdf859f9e
SHA256db23e1e5af8e2985609095870648adc4aaa1e122ed212956e12be11a4e054e4c
SHA5125f8a551425fef0ff789f9a4f197e916d709c2a2a2696b60c21b7adb501eda391a215b1d61df56b217c9eb6b087ac76b89f9fa34db6f586a9bcb337a33cf46b13
-
Filesize
16KB
MD50f7af43270b1f1135f90934316690f6a
SHA1b51ea7136eab51dae45374dc00d125218cc6796b
SHA2563ca9a788426f8924975da2535f0cd1b20fec9547bf410e8a838699a3618d5734
SHA51202fd100c0df4ae4caf2fa684cf881099dd7e26e2b8da723f49662c2cb991661a2e3732025825b28ea0321ab35c211657a88841cc56a8a7436de5e689395730c1
-
Filesize
16KB
MD518b55bd0179f1b41ab09a63b13ed4074
SHA191e6e9577c114e9eac5395e825605ee3aae7fd39
SHA2569e6b98098c28bc8afd908c1cc71d6f66db53b643f4f26cffc2b85ab53c65b609
SHA51276d244b23f086434663989cd3b564338ecd7f93ebc31316252e02d7924e1fabb07287dae862f6d8cfc293df0b9e840b73a08c45a2aec325e4bf8c5c0a8b38f86
-
Filesize
16KB
MD569ebc9205b70ce1701587a8536f820bf
SHA111d18ad7bb81a78206df0583603dfa67865983ab
SHA256853e1bbd67139abf1e00ad4954d7383a0f876d03e5e830db3fb50c202c76e753
SHA512393a1569334587bb9efffb7708ad0a66f5b64fa68992edc8db64fe855f4e435d5d3901f4a5aac6d878eb266e09c111b651e55d73ed02529d535021e7ecfde97a
-
Filesize
16KB
MD53e881d9a01ca707bed38018ac69f4518
SHA15820f9351d7cc8082de6e5686eb9f8fedf6fb830
SHA2564a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c
SHA5128f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8
-
Filesize
16KB
MD57237409e0640cfab7bdbd429bf821a3b
SHA14c3da934842f8d4835dfe2a9c275a300e5123309
SHA2565c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f
-
Filesize
512B
MD557476d75e5987e39598a0ccbdf1706f9
SHA1a4712448c812b647016636bd9c1070649202b428
SHA2566240edce5a0b2205cde7a1b9c3ad0f98ac3253791f13080792f0d0563682535c
SHA5128d7cd65b01c6b223674f24f933a4107e2c71bac49d000b03183eb40db282b9e35d712e1a271c3831d5d3141fd3748a3eb558041118a4a3e350bbdf8b53de18b8
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
4KB
MD50a27881c66db263f1760cc46f27434ae
SHA153be53b8c15b453d6bf51dceb2086c6e955d6656
SHA256179f937f3b979f613c7b15062661a3d113dd3ae5d85fcdcabbb22137222eddfc
SHA512a3b813b66c974d105d0e3d50046df43c0b4ad00ffad1bf46663ce9ddd9020585e1c897b7adba65fe71bd859733afd16bfe15a0979f6528184f56a232e1fbc5f6
-
Filesize
4KB
MD577294dd957d0547e09365d0b1eb750fc
SHA16c1d1c15c78a5e87382722a0b881a0ccd5194b56
SHA2566f3e64f6464f88396c05785ac26a60d6b76a760a447f70b9dbe2ccc9cb6b9a97
SHA512c5da2356fa68e2b329fa00d32630c089a7e64a765f66a9794e5d1d9c790eeacbb166eac1593b94f91021faf8648a86bf686ba899b7dc12339b48eca3c409765d
-
Filesize
4KB
MD57c54c5e302ce13b65f6359d62a9fb26e
SHA1875679cf52a0f695b4998bb460d79457d60a4e89
SHA25652afe49e3947b8144a95b76e501c2cee3a3a4c64e9974dd6b39adbd40acd6c1e
SHA5120ee60e558e7999268204389f3f9c496e6745ef94732e2514d4de5e3392642ec1621332797c3f3019a7c263ea3f0bd445c097256bdfa5753b6123a3c2e5b9706c
-
Filesize
4KB
MD5bf517bd7604fd2ba23848e8bc59e447b
SHA1c30b35dd4115960c1498005ccc703df8f0381939
SHA256665841084fb33d7b45af306433606ceb09b95530a28802861f03620744c00385
SHA512a4d7d110de93dc019c177192172e1d2d48be5d7a00e12517ce964f0b099657b73a4008e6ab779456ce0366bf9ec3d5678c659125558d2dbba9a1870cd065dbcd
-
Filesize
4KB
MD59b7a433a8140da97ea302908383f19ff
SHA18a254cf634581f02f4944ff22e3fad8e56ea5fff
SHA256767c8d089afbb30f99d3b9f2fb439cb3a4969936c59e258b5a9de1562946d80a
SHA51255e7c479727502244f75bb327f49d467e9a5a3b7dc303784e9c1c99f1c5cc7b4c5e851e1dc843b6d601ab23784346fb1dc449724f7445487823aaecce6da57c1
-
Filesize
36KB
MD50ea8fa8abdf66953874145fd3c6688db
SHA13afd4ec8b6f7ec0941ade64bfbb69a6d8347afa7
SHA256866803d413b8bd2c67baf69b1bafa9dd31e30a6779d58b602875e9ccf1c9e1a7
SHA51264584aaf0e11d4c7893ed30fa9216994140a6c28f6d601c905bf97615ff3f87e71ed6a820ae89e37833a4e9a60f3c25d2f7eeae7f2cde1c176e3a8faf0ea0d64
-
Filesize
90B
MD50dd1981286f16c8b0e8436048f8741a4
SHA1c06a3a2516a5dbf6049a113bae72a60d04a97125
SHA2561f801d9106466a9abc1781608de40b9ce62b5765d78b67885dea39cb4b7d9212
SHA5127c438d9c96245e898115bc77bbec9466572284707a56f6c5b3fb308b22b31dc272db20bb50fa617cfbbe3ca41395da8b685129cb94275b6deea9ba07320fb385
-
Filesize
567B
MD5d37d2c9abd286f93de980f996d685fcc
SHA1bb5119071c296dcabecbf5a4282d19cced7fc09d
SHA256a2ef848744c376a30c41d85b7cd7f3db93b8a8cfd1a66ec91c1559a59c4da979
SHA512b37441a72779df7a8fd26afed577d5c97d734c5c330f7da6bfdd54e0b6cb594abe9d6dafd7b7f0f53eccfc9efb6024cb7cbb9483a9cd54444ec5aaa9ce48407f
-
Filesize
3B
MD593cba07454f06a4a960172bbd6e2a435
SHA15397e0583f14f6c88de06b1ef28f460a1fb5b0ae
SHA25685a39ab345d672ff8ca9b9c6876f3adcacf45ee7c1e2dbd2408fd338bd55e07e
SHA5126b99acba1e4e469610f9227829648fa52e7ad463f22568f0a04188f2d465a585ba077f12d1a527674c338470e79665fd16e54f25553482cddd85845232d186f9