Analysis
-
max time kernel
177s -
max time network
132s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
17-08-2024 13:45
Behavioral task
behavioral1
Sample
base.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
base.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
base.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
base.apk
-
Size
2.7MB
-
MD5
0ab9ec86b5d33b8c4e10be8cae550810
-
SHA1
a535aafe5f236cf4ae0248d3eb13271ef1a7749f
-
SHA256
643c1d5240fe9bc4c4beb2799d6647db58c35f8ac0ef40715c9b4a30f12cb4a3
-
SHA512
a2842a54622e122b75b0be9353aa82d1104cca5ed4fc706482205389b0065a4757218950589432d1e7bfe7ab8a796fc24c8e75f5ba2311f30a2849ee9785d94f
-
SSDEEP
49152:M/rWK7M6cakjvjyQrmVqjnkCmgXVA5ovP9ucIjRwwNPM/3UrqKsUQtnzjJshp:aSn6caUvjVKVZJglHXuuDCitzVsT
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener app.Madsal.org -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock app.Madsal.org -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo app.Madsal.org -
Reads information about phone network operator. 1 TTPs
-
Checks CPU information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/cpuinfo app.Madsal.org -
Checks memory information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/meminfo app.Madsal.org
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
12B
MD5453a51fc681b0a4c692ee00a84321919
SHA1dd37acfa6178d03c260e960aaba67d01d19ce08b
SHA256f164c2b5fd53b8a772dcab060642b37241218e8a26bb03d9b93040a96978f862
SHA5124243eab3bda6521e575f9441a99c0906ec5637328f51720ae69b8ba85e54c088936424a322b19f7336c58cf3d400207c8cdfcf72c96e0f79bc94b6aa02d36279
-
Filesize
27B
MD5ea1adc3a57eafdcec03587edcf343e30
SHA1358286a31e135ca55b747fca085116fce4a1b2a2
SHA2563e95ce3e224f1179f83093432e03747c3f8b15b84e9052096f9e979d71cdbe76
SHA512a25bdcfe3e68d7a97b25d041fb305651c92cba64c70b1dc25206fb089cca47782d77c07a753ca805f20ec3a7766b5d8937c28c3accdefd8f82e4e12ce2a50f88
-
Filesize
4B
MD5098f6bcd4621d373cade4e832627b4f6
SHA1a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA2569f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff
-
Filesize
16KB
MD5fc3fa3f668275e043a55af9a36837b2f
SHA1f78431c329473722251b19861d9d999d4b213f58
SHA256660422bab2fff4c95fa6de6010f470f01eb2e0b3f74657fbe1169bda217a5a51
SHA51205558d8dc184e185721c19a36cdd625d066404d71f81299002955d8a6a00622b0d42cffde554defd1567eb3f795f64797ba3989bcce149d5817a2a1d686daf59
-
Filesize
16KB
MD5b90407a110b84183bfc7f239bdb72949
SHA1b96f1edd0750718f771ac4b1ba36a5580e520d9e
SHA256f46cc4d32769624ba7ec2636f6a8ef7814741b0e259e85018c33f3e888e3dff5
SHA512d11136cbc5a8ba4eec588062e663220ba60353a819b96eb2e0ecdd4c6e4b7967fd8f02a7ed598c101b2c8fe3f2d38ee8a1a9fbc49fcc6d12fd071c42aa2f9fc3
-
Filesize
16KB
MD5aa4cf14ee9e65a63a8fa91fc81283a43
SHA12e3994bb3d8707de46d6831f2f1745e33fe32b9d
SHA2564b35fed711f696d69165178e70dd4763583395666b345f5f1677737b332312d0
SHA5120744a87dec68140096f673ff1a05406b0151f825a7694ac425998e73864cfb13df4a4f62a1f6f036a55cf761795837d54f1cf6402ee876700ba6372ca03a937b
-
Filesize
16KB
MD5f5f90ae11d064c834f35f013274c0031
SHA17988c33c7e7888752f1bbb64375576e56d7a10d2
SHA256f045b1014bc5d58f8a7eb2fb22980f6e2b91f66c6a949dcd667177d8a97f0c87
SHA5125912fa5164dad2bbb7c5bae596bfd298a87bb16817d8c2da530c1d1428dc4738c8a476ca8028356ff5997dbd48d325f712bf3eadb23c8f3c146a5a36a7f84248
-
Filesize
16KB
MD5de82e2c94d2718988804b035a46d17b1
SHA1705f5ff19093ad209f2a666085d6ccaed3bf58a4
SHA25629110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39
SHA51268f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e
-
Filesize
16KB
MD5d9cf75fdd1c2292d986f6c3d5d60f2c8
SHA107ecb1d3a26d952ae5fecf54f36699ab498510b1
SHA2562d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a
SHA512442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb
-
Filesize
8KB
MD51935faa6cec36c6b9396fe03d348f3c9
SHA15f0d7180c3a83abde47617931dd8622ed2288444
SHA25699e9983300c0561295de7ceb7d99dd4c61c35172d5a76ab031f3545934831f78
SHA51215507713949844a618629205a8eec9ba12e5fa70c61dfd1d7f7792f38a19b96976aff8c5c11826d94013d7c0040fe67e69d1e910052eaa17d5bdc5acee4f9cac
-
Filesize
8KB
MD509538366f5fd3355990e1f794d121052
SHA106890169584c457880c6801a1f9cad25c816918f
SHA2561a924d1aaf60c4ce86a35918c2d31c699a7b6710887e6a7632e18bf2cb9193f6
SHA512da9717a5bc48a3af3d98a8ea92a06b3083cfa9332a5bc5b994c27ac02ef606d2523fe15e3dfad614fd0532403f450c50c2c8a1168e2824a95751835674fd37e6
-
Filesize
512B
MD55b83b92fb6d489e68c12b254aaab6b9b
SHA16192f7eca58146f3f2528599d1f25951dff40995
SHA256a84d256c973c3bcc93fe18dad8c2787dc87b3b49279ac65aab198dd41b5a4895
SHA5127ac4508fb532a4698e8d4337dbddbb2b8162db92abcda3d11fb7955c1fea747baf2bdfd3ded5280aef1bea2c5a2c4153c0339a2462b27a22fbe4d5804946160b
-
Filesize
8KB
MD546d8175ddf2e64b9bcc45acff62e138c
SHA1ab0318384c87510fcc5e3aa19eaec7ed714fb17e
SHA256fcea2200e536aba726b9d7ff3ac8579f10cfad67099f9c5fda1dadfbf66ff2f7
SHA5125b761ff07c43537f048e6041a43b85f46ccf5be0d54468a59c2429d77694ac281f26ae406fea870fca36362a015fd5265747f7b5bd6ea2e0861a9d392c5d69a1
-
Filesize
4KB
MD5dda2b067729faed9a10d550f8180e8bc
SHA1365afc2afbf13b1875d9f35cc4495c5550970334
SHA2562a852c0764f99ec0431a96778e2c4a66b1493ca78ad13c825848bf16727b6a9d
SHA5126374a913c7e0a677813b891e097780990056333b9d6974e27b01c363a7ab547372e607903b572e99a667057c4d8a5455c8ca84b391433a3aacfa69b9c380240e
-
Filesize
8KB
MD53bc68abb8931e4d58ea8065db7f62826
SHA117b206de96d35e6f33c87c4ed05939ab61e512e5
SHA2569b307469b4c3b87bd9045580fe874ec59837237c895b6e47ab5a78eaaee91e1b
SHA5128bac07129722281d3f8149ad7e9cb7ca46649551731ea07ccc40d14f01e2545e4fc9ad3dc8537e400ec92499aad2fd65c60307cd48b5ab8cded494d709a7c44a
-
Filesize
567B
MD51221d6c006e69a12f03dbe6c1bb0a0b7
SHA1629fbd9e721d91718317f735cbfa64ac385d47fc
SHA256da40e8747cbb7527c1d8c026cbe72f866ab363d5bd4cdd0d14c202f0c6fe6533
SHA512d6beb9363ac179a1206b121a733d0c2f32a40fa16c8300c949bd7d8e4f527d32a83c70cb7b254c5fe6f0145333fe7046cedb49bb0122f9d8dba8c57cec1a5005
-
Filesize
90B
MD5b5cecf3851c47e97540729dfbfbc5783
SHA19dc6d7ae4bb4d302764c6b8189aa5f683e99cdda
SHA25613140f15977961100b296163fad86bb542dcb546b438e5eb4c282059b66379a5
SHA512983246b52fd3f93d50809bc17f2640017f66ebce5c216b5644a6642bdf07edaad2816b560962c8269642b04aa71a10e9596a3349582dd335ff34f6aefa7b251c
-
Filesize
3B
MD593cba07454f06a4a960172bbd6e2a435
SHA15397e0583f14f6c88de06b1ef28f460a1fb5b0ae
SHA25685a39ab345d672ff8ca9b9c6876f3adcacf45ee7c1e2dbd2408fd338bd55e07e
SHA5126b99acba1e4e469610f9227829648fa52e7ad463f22568f0a04188f2d465a585ba077f12d1a527674c338470e79665fd16e54f25553482cddd85845232d186f9