Analysis

  • max time kernel
    123s
  • max time network
    130s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    17-08-2024 15:04

General

  • Target

    app.apk

  • Size

    2.4MB

  • MD5

    38cca61c45f8473e92603f63361f1b49

  • SHA1

    1729f9318882c1f2c6183a9782cd1347a70336c6

  • SHA256

    439e53498cb3e748000300269bc2aef86d1edd918d75cf1fbaa7fa9137ce939b

  • SHA512

    936f2b24e03efc16fbf8fa42d1da8a95e104c2126b61f10aa79ccca6579ff927e15cf499ef73271ecd9c245c317dce6ebb1f5d9365e6f826f68999a760be6a3d

  • SSDEEP

    49152:HQtQEZV22hZDft1rnIxlPntEEXil48G4/WEbGq7yMu:HQyYMkDfUVErl5Dyt

Malware Config

Signatures

Processes

  • mad.net
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks CPU information
    • Checks memory information
    PID:4314

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/mad.net/cache/2

    Filesize

    62B

    MD5

    ab4d0b667cc74cdfcf9d0fe250dfffea

    SHA1

    3ba08895661fc2e360ad8c8baa3b31edd169850c

    SHA256

    b90924af71920e56b43023317d07c73be286755fa6cdbe36228201e3f99b0190

    SHA512

    2bc400502ae045f77ccc47955601b8a18d2bd6451584b19c9aa86748dd04c1e7f5a65d91bb7bf904b9af60e94825dd144df0b8cdc5e562d0480072fbf51f85f7

  • /data/data/mad.net/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/data/mad.net/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    55caeee1a1d8d6d8445439ef673204f6

    SHA1

    d1cbb28ec57ec613d07f78883c615b9705bdb303

    SHA256

    2076fa77a0b0b0cfc1d06824098b2d85b77fd99839296147dcddaecdaf5129df

    SHA512

    9f30a76f6cf8672a78fc321aa260339baeda9999cf859c5b98ef68bc78e98874ef0f1106d6a4700c03eba49e937d03fc092bac67cc317debf3dad57ed745993f

  • /data/data/mad.net/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    2c527218ffdb57fefd72cff53ccc200d

    SHA1

    86d6c3caf38c23a9994578d3b7a609f3c392ec3d

    SHA256

    5b01908f7f283e852b6654fc1b7c87549ec3d7617c14462a9bb1154bb1a6eb82

    SHA512

    7465e7331e17fc5b2f746e8e1353a541faa76bc144164222ac70a86861ae970e1dcd4fd672e0644facb622572b34c9ce96ade9df5f1b37e59a0780845ac20c94

  • /data/data/mad.net/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    0e1af35071898fa02d97d53d02e21cdc

    SHA1

    ff39db13bc574290da3998a9f13a23bd7bcc2f0c

    SHA256

    b0fadb1a50d5b8769a7122960e69514c18fe102da21955cd2ef0ab2e49d7ac81

    SHA512

    479928f09d04ba0cb7717d41780be5ca73f1a3801164d2135f81e987fa693c3f406bff2fb7d00cddd5cffe8bb680ac43e3c9d0f2568595bcc4f4c1cb2546ad5a

  • /data/data/mad.net/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    632f893bea279dfb239fecc97880fd9d

    SHA1

    4079d08d5e07063bfb7abc73888ef2858f15539e

    SHA256

    0607de5662a1c179cc40d5c7470abfc5285adb4bc2b34f2f725a72b70acfe249

    SHA512

    37196936f7d477edc0dd5a58032060805cb39f95019921c3606e9a613b46cc2cec49ec4aabfdec511ebd15cb3b57b9696f7e0c73ea4c5fbeedb700cec26600fe

  • /data/data/mad.net/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    3e881d9a01ca707bed38018ac69f4518

    SHA1

    5820f9351d7cc8082de6e5686eb9f8fedf6fb830

    SHA256

    4a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c

    SHA512

    8f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8

  • /data/data/mad.net/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/mad.net/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    a49d5297ec081e0f9fd5d004d9da3039

    SHA1

    2e4b7b6c99d96ce2bc222c94577128b81bd1a574

    SHA256

    fcd72aab80756f0f29cc35253261d3da9eb2eb47eb9e543bf38133a0bbcc9f46

    SHA512

    0bfa0db384033877b0b43ea4a29c555621ec7d256b87f881131ae3966df6e39204531bbdc010caeecbfd3f00ea4ea94c4ecdf7af8b321218985fe33cd97d1baf

  • /data/data/mad.net/databases/google_app_measurement_local.db-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/mad.net/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    3321c6f30e4c4cd7f6f8a2aacaa20b1a

    SHA1

    b797f0b16688f87c20a7f71030e60f7fc57e54fc

    SHA256

    eb21ecccae2df260c4d65489377c92a1d51d02962f1dfb4b203662143de0bdc1

    SHA512

    8d1f711bf49b7a0a76c44dc6d1bf3eb353f59d6f085e05d8664dfee67c62d71a5ec1797b0c89efad76efa346d2ee9cda91a58003c497e30f9321252b82742bde

  • /data/data/mad.net/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    57a8ba7ef1953884ae19475657f43117

    SHA1

    db175e4748f00c1b63362565bc23847c35e948db

    SHA256

    35eb7e6ff66c3408cd2b2a96bcb45f0e2a62ff610690ac5d757d7c69454b09c2

    SHA512

    d704266b91e630123e854dd4b2a7212a86528c8c3de7045c1902cae9977b789d0ee8ba5aadc3868dc708ddf81bc78b21f6231f9b1affe3aab93c25c5901aed5e

  • /data/data/mad.net/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    2b537d6f3ff3a4f56592a41df1b4e5c6

    SHA1

    0636366873f1adc500384522683602d9ec45e91d

    SHA256

    e542e987bb345a2283df8a49de44f5fbb38a029fbd4f86275b6bd0c5146abac2

    SHA512

    9985b7bb3d2c44f0c5b22f55b2adc1a9e2552269326ee9ef0451e1cfd24253ed0806d04b9f7fae389bcd1975433fbf8f0d70cd64bed0f1939611489ac05577dd

  • /data/data/mad.net/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    b09882c1ea01495139048a06327d29e2

    SHA1

    9c833a17081be5baedc4471964d1c4902b71da81

    SHA256

    7efe8c3829fa32871aeba991ef44800a73a1827d1f193c3f702f34ea3f8dca6a

    SHA512

    f49bf9d4962e42f97e9a809008b8bee61a4336c6df478c0fc6bb95c4b34b8ecd76cc68a3e2f2ed018dae16a15238c33d67792d0b4ce21bcb2792dacc80549cf6

  • /data/data/mad.net/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    027af8d951e2e025887e7876abbcced5

    SHA1

    d862084d439cc4aea833d094ba35ab840d1d86b0

    SHA256

    05d37225d9b89db8761cb942cc270e3af239e1883caeb3bd6fd6349252e5f2a7

    SHA512

    3e55237624118dd4f86005f094ad523b01c3c9b32df54ae89be3896b8ae61f3ef0f588bb572204104e34165ca3959f7f74088213187228aa2b1d07a3e4836b89

  • /data/data/mad.net/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    977c5eb1dadcfc00bbf0a57779ae0af4

    SHA1

    8f8bf9ba8f7c463b11f5ddda60d6fbde7a8eb59f

    SHA256

    5e55758a5a38f2b38baae3d2b59fc982ba346783a8a6c99913c732e75c8cba74

    SHA512

    f9946eddb4b8fa7aa3466214ad4214f49b751940c0e2059eeb5d4ce8fe8fefa12a51274ea2fcace1b9d5396b3d89f7ead38ac247b2a80bb65dc2b7b94db13109

  • /data/data/mad.net/files/PersistedInstallation2143065562628635618tmp

    Filesize

    90B

    MD5

    42b71f1711039541f4af607542d9a1f1

    SHA1

    9cd1bdc3766703c8483227939375118ff72519b8

    SHA256

    154b0e9bd9ce72f7ef732206094f3bf9183eed2566bc89de729229cca462b636

    SHA512

    57e79c2e5653764f86be509a93b8a94667202380518665d3330c71f7866e3da85a26f01b4ade1239ac6f2aff8eb94a2cd6a2bfdef65c3cd0f8b656bbaf490794

  • /data/data/mad.net/files/PersistedInstallation2754164275761046019tmp

    Filesize

    567B

    MD5

    845cd905785ba3a19d3e3278e7e678aa

    SHA1

    a8b9adb56ca10ccf46d50e87ce32dbbd07c89fe0

    SHA256

    83382426199acb1d743a073ab63e69e89d5061e7276f45e7942c8a850f6380d2

    SHA512

    ac7f2031a935047ac7374f457d59ea750d07bfbc9342cf2a5d3ce3f4ed29254dcd2632a853af4745191b31e16472d587d608f6219459ac55622244500d36ad7b