Analysis

  • max time kernel
    177s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    17-08-2024 13:45

General

  • Target

    base.apk

  • Size

    2.7MB

  • MD5

    0ab9ec86b5d33b8c4e10be8cae550810

  • SHA1

    a535aafe5f236cf4ae0248d3eb13271ef1a7749f

  • SHA256

    643c1d5240fe9bc4c4beb2799d6647db58c35f8ac0ef40715c9b4a30f12cb4a3

  • SHA512

    a2842a54622e122b75b0be9353aa82d1104cca5ed4fc706482205389b0065a4757218950589432d1e7bfe7ab8a796fc24c8e75f5ba2311f30a2849ee9785d94f

  • SSDEEP

    49152:M/rWK7M6cakjvjyQrmVqjnkCmgXVA5ovP9ucIjRwwNPM/3UrqKsUQtnzjJshp:aSn6caUvjVKVZJglHXuuDCitzVsT

Malware Config

Signatures

Processes

  • app.Madsal.org
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Acquires the wake lock
    • Queries information about active data network
    • Checks CPU information
    • Checks memory information
    PID:4485

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/app.Madsal.org/cache/1

    Filesize

    12B

    MD5

    453a51fc681b0a4c692ee00a84321919

    SHA1

    dd37acfa6178d03c260e960aaba67d01d19ce08b

    SHA256

    f164c2b5fd53b8a772dcab060642b37241218e8a26bb03d9b93040a96978f862

    SHA512

    4243eab3bda6521e575f9441a99c0906ec5637328f51720ae69b8ba85e54c088936424a322b19f7336c58cf3d400207c8cdfcf72c96e0f79bc94b6aa02d36279

  • /data/data/app.Madsal.org/cache/2

    Filesize

    27B

    MD5

    ea1adc3a57eafdcec03587edcf343e30

    SHA1

    358286a31e135ca55b747fca085116fce4a1b2a2

    SHA256

    3e95ce3e224f1179f83093432e03747c3f8b15b84e9052096f9e979d71cdbe76

    SHA512

    a25bdcfe3e68d7a97b25d041fb305651c92cba64c70b1dc25206fb089cca47782d77c07a753ca805f20ec3a7766b5d8937c28c3accdefd8f82e4e12ce2a50f88

  • /data/data/app.Madsal.org/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    fc3fa3f668275e043a55af9a36837b2f

    SHA1

    f78431c329473722251b19861d9d999d4b213f58

    SHA256

    660422bab2fff4c95fa6de6010f470f01eb2e0b3f74657fbe1169bda217a5a51

    SHA512

    05558d8dc184e185721c19a36cdd625d066404d71f81299002955d8a6a00622b0d42cffde554defd1567eb3f795f64797ba3989bcce149d5817a2a1d686daf59

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    b90407a110b84183bfc7f239bdb72949

    SHA1

    b96f1edd0750718f771ac4b1ba36a5580e520d9e

    SHA256

    f46cc4d32769624ba7ec2636f6a8ef7814741b0e259e85018c33f3e888e3dff5

    SHA512

    d11136cbc5a8ba4eec588062e663220ba60353a819b96eb2e0ecdd4c6e4b7967fd8f02a7ed598c101b2c8fe3f2d38ee8a1a9fbc49fcc6d12fd071c42aa2f9fc3

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    aa4cf14ee9e65a63a8fa91fc81283a43

    SHA1

    2e3994bb3d8707de46d6831f2f1745e33fe32b9d

    SHA256

    4b35fed711f696d69165178e70dd4763583395666b345f5f1677737b332312d0

    SHA512

    0744a87dec68140096f673ff1a05406b0151f825a7694ac425998e73864cfb13df4a4f62a1f6f036a55cf761795837d54f1cf6402ee876700ba6372ca03a937b

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    f5f90ae11d064c834f35f013274c0031

    SHA1

    7988c33c7e7888752f1bbb64375576e56d7a10d2

    SHA256

    f045b1014bc5d58f8a7eb2fb22980f6e2b91f66c6a949dcd667177d8a97f0c87

    SHA512

    5912fa5164dad2bbb7c5bae596bfd298a87bb16817d8c2da530c1d1428dc4738c8a476ca8028356ff5997dbd48d325f712bf3eadb23c8f3c146a5a36a7f84248

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    de82e2c94d2718988804b035a46d17b1

    SHA1

    705f5ff19093ad209f2a666085d6ccaed3bf58a4

    SHA256

    29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

    SHA512

    68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    d9cf75fdd1c2292d986f6c3d5d60f2c8

    SHA1

    07ecb1d3a26d952ae5fecf54f36699ab498510b1

    SHA256

    2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

    SHA512

    442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    1935faa6cec36c6b9396fe03d348f3c9

    SHA1

    5f0d7180c3a83abde47617931dd8622ed2288444

    SHA256

    99e9983300c0561295de7ceb7d99dd4c61c35172d5a76ab031f3545934831f78

    SHA512

    15507713949844a618629205a8eec9ba12e5fa70c61dfd1d7f7792f38a19b96976aff8c5c11826d94013d7c0040fe67e69d1e910052eaa17d5bdc5acee4f9cac

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    09538366f5fd3355990e1f794d121052

    SHA1

    06890169584c457880c6801a1f9cad25c816918f

    SHA256

    1a924d1aaf60c4ce86a35918c2d31c699a7b6710887e6a7632e18bf2cb9193f6

    SHA512

    da9717a5bc48a3af3d98a8ea92a06b3083cfa9332a5bc5b994c27ac02ef606d2523fe15e3dfad614fd0532403f450c50c2c8a1168e2824a95751835674fd37e6

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    5b83b92fb6d489e68c12b254aaab6b9b

    SHA1

    6192f7eca58146f3f2528599d1f25951dff40995

    SHA256

    a84d256c973c3bcc93fe18dad8c2787dc87b3b49279ac65aab198dd41b5a4895

    SHA512

    7ac4508fb532a4698e8d4337dbddbb2b8162db92abcda3d11fb7955c1fea747baf2bdfd3ded5280aef1bea2c5a2c4153c0339a2462b27a22fbe4d5804946160b

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    46d8175ddf2e64b9bcc45acff62e138c

    SHA1

    ab0318384c87510fcc5e3aa19eaec7ed714fb17e

    SHA256

    fcea2200e536aba726b9d7ff3ac8579f10cfad67099f9c5fda1dadfbf66ff2f7

    SHA512

    5b761ff07c43537f048e6041a43b85f46ccf5be0d54468a59c2429d77694ac281f26ae406fea870fca36362a015fd5265747f7b5bd6ea2e0861a9d392c5d69a1

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    dda2b067729faed9a10d550f8180e8bc

    SHA1

    365afc2afbf13b1875d9f35cc4495c5550970334

    SHA256

    2a852c0764f99ec0431a96778e2c4a66b1493ca78ad13c825848bf16727b6a9d

    SHA512

    6374a913c7e0a677813b891e097780990056333b9d6974e27b01c363a7ab547372e607903b572e99a667057c4d8a5455c8ca84b391433a3aacfa69b9c380240e

  • /data/data/app.Madsal.org/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    3bc68abb8931e4d58ea8065db7f62826

    SHA1

    17b206de96d35e6f33c87c4ed05939ab61e512e5

    SHA256

    9b307469b4c3b87bd9045580fe874ec59837237c895b6e47ab5a78eaaee91e1b

    SHA512

    8bac07129722281d3f8149ad7e9cb7ca46649551731ea07ccc40d14f01e2545e4fc9ad3dc8537e400ec92499aad2fd65c60307cd48b5ab8cded494d709a7c44a

  • /data/data/app.Madsal.org/files/PersistedInstallation3538343242423571570tmp

    Filesize

    567B

    MD5

    1221d6c006e69a12f03dbe6c1bb0a0b7

    SHA1

    629fbd9e721d91718317f735cbfa64ac385d47fc

    SHA256

    da40e8747cbb7527c1d8c026cbe72f866ab363d5bd4cdd0d14c202f0c6fe6533

    SHA512

    d6beb9363ac179a1206b121a733d0c2f32a40fa16c8300c949bd7d8e4f527d32a83c70cb7b254c5fe6f0145333fe7046cedb49bb0122f9d8dba8c57cec1a5005

  • /data/data/app.Madsal.org/files/PersistedInstallation4919358654827256131tmp

    Filesize

    90B

    MD5

    b5cecf3851c47e97540729dfbfbc5783

    SHA1

    9dc6d7ae4bb4d302764c6b8189aa5f683e99cdda

    SHA256

    13140f15977961100b296163fad86bb542dcb546b438e5eb4c282059b66379a5

    SHA512

    983246b52fd3f93d50809bc17f2640017f66ebce5c216b5644a6642bdf07edaad2816b560962c8269642b04aa71a10e9596a3349582dd335ff34f6aefa7b251c

  • /data/data/app.Madsal.org/files/install.txt

    Filesize

    3B

    MD5

    93cba07454f06a4a960172bbd6e2a435

    SHA1

    5397e0583f14f6c88de06b1ef28f460a1fb5b0ae

    SHA256

    85a39ab345d672ff8ca9b9c6876f3adcacf45ee7c1e2dbd2408fd338bd55e07e

    SHA512

    6b99acba1e4e469610f9227829648fa52e7ad463f22568f0a04188f2d465a585ba077f12d1a527674c338470e79665fd16e54f25553482cddd85845232d186f9