93af370c16032f2b34ac2280d50651708249a5e4729d4cd8fac05d3af184a7d6

Analysis

max time kernel
88s
max time network
130s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
21/08/2024, 05:39

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

app.apk
Size

2.8MB
MD5

ba4d33a8c94eb2d7964922cfcee82d3f
SHA1

5816ae891e89185f9d13f4592f3e39b5fa0ae009
SHA256

93af370c16032f2b34ac2280d50651708249a5e4729d4cd8fac05d3af184a7d6
SHA512

c6d82fbf055e7354a83d1d9a8aff9767e10a13c5ee43046da3a298f7581166ee286e64c8d211f8442bed8791b0c9154cc4e9dd1f6d8189d4a7e89bdd145b1724
SSDEEP

49152:TTbdsl35rnglmqdJy2WTx8Xt8VaamfvXV+1tda1Mt54OLkf2fbFfNTeMvtu/:THy0mqTy2UU8ViQv+Mt54CjRFTeMvo/

Score

7^/10

collection credential_access discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	X.God.X

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	X.God.X

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	X.God.X

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	X.God.X

X.God.X
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Checks memory information
PID:4501

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ca714fb16bda43329cbccec913aa55f1

SHA1
f7cf393c5dc94f57dc3367b76558ddfb6a4c4dcc

SHA256
1b7c852d13a6da6c301c72547599ad949a3c289899216cb36c94c796738433b7

SHA512
2762d14f23c62f2f160943ce2e9737a4a29e04169bb4db12d48b1a701865b5ad1b1b70f487de3c4ff32aacbd13f3b0e9b50f7ca25c75c4a2fd39332fe80d7aff

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
59e2cafc00cc29ed4437b59477f5ed2f

SHA1
1edda8db0258b66ddb3e24f5fb172c8babdfd8c3

SHA256
3420ab8f00e1e6990dd5113c1e40490f392ea53cd9b690a7b717e37682646c05

SHA512
c35a37329e1a1f35f7348302d45cfffbdcda7e4719ee97fd7996919c95d94e9552689afc51e582f8d78a3c77c1b9b85381dfbff3724a3b0f5ede0c28aadc403c

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0d38efb9df407247acb80ee7ad07613c

SHA1
97a36c3e5cb870618d6ccdfd5a88f35c2f1141ee

SHA256
930d0e7b2eb0850ac1b61c4e13753d7919e007110765be76e3300c48ac169c74

SHA512
8c1654ed6ade52edca5f7df8e6acb20df9ec2a62afddf9d0cc5b254583c12fd0045db21c95f206cbd5bc01f0943dcc831d18e1e8c833092431c511ddab415b7b

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9a46c6879aee5d136ffec8b8aeac403

SHA1
1b5ab5c227cc344b51e92a26fa0b5d703198ef28

SHA256
3dd40b1e18560db85aa5f34f5c9ee3330e32c09801d42ccd196d05ebbf4a1d9c

SHA512
b525b852127a5cae2b3f6caeb781c795fc9acedc2e7e27882bddf0ad864917c6b866567e4b3c2888f7be01fd84b6ecba0dd9d6d0890509f3561be78c039a09fc

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ffbdfd27edbebc04bf32a4eaccb421cd

SHA1
941ca82f7ec391afad731ca7130703f4148b2b1c

SHA256
83036883d09cd4b540dbfd4d964a459c344333107d3d5cfbaf396965aa5e2c08

SHA512
6fb738c3d0fdfc67aeb90753037009d96366bf5cbf93cf40e35d6be46e7b4817c3f7e02169a627517ebb97925d53de8e6fd7e001f20b919fe23e44f67ca5beb7

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ddbe6d8b65c988ab8399020067e13c20

SHA1
9c53aa2bd49dff379ec564673f16104765fcf659

SHA256
cf3cf34f468544aaa27d76a625891762b13a54f73f50f128dad71bc8f8ab73b8

SHA512
d89d3c28334669683c89b2fa8a270847a08f462ac32d3f752a5342912716c4ceed61c68725f17f368cf09e68f8e26061fdbbe58dedfec6f58bcdeb82270d9d3e

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
3dbb23466f12174aab89813f55195b1e

SHA1
64f73249a0f6857ac14ec450ac5cd8ddce89c43c

SHA256
8230232ad607605e930e3c6bf122b4a697cd58aee1e819b64bd12358a272bf4a

SHA512
e0d36715afeb7509395cae19cf83ec9bcec9533515105569528099023407d6e89ff35966cb1fd893603f04c81e98f7c15f7bc21fade6f97b974ad3011fe2e79b

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
3e729ad044c5843722e3e1289f49385f

SHA1
360a679cbc21c8880de4217b3f1e019cee2e3ae7

SHA256
280c06ff60e39dcbd423727934a906b4db26cb71be024440ccad3c72f2bb67c9

SHA512
9080e7ff054d89b343d5504aaeb5b20d4876d22eea5a4739ecb595573922ec953164ab5fff341dade65c637645b0028e54b4032807cfdd1285061baece81db0a

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
4b4fff3dc8d5d337eac340c2a9d89336

SHA1
39c2a361c4ceae3514db55a954bbf8e5dfd369f8

SHA256
8e22725d418be28dd6fc325fe28732b49e9350b8f3d1eb8d1ed4ad12347d67f4

SHA512
8f7d3baaaa06efe9042d1740f377841075cc2742adc90f64b53cd3cb4f1633e903d9d0a8a9561736d0e38350d4807282de031a4b2758d425f232024f577aa56e

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0e5d3b1f54ac47a07da94eb28c7ec47d

SHA1
f38a51ccfbf61652e144712ac70e7c41217ce4c4

SHA256
dd10d01b7cf3f1c2670fd0c9cc44aadfb36c73f9111da812aa44927f29f74973

SHA512
a9aff383302ac3a0345ec3a27a910e23437473244a8860156af1541f8fc0c1c887d783ffa067ef197e04c555754f27c7285e028447df895fbdd2c13f3f5187c8

Download Submit
/data/data/X.God.X/files/PersistedInstallation7166144315692200580tmp

Filesize
570B

MD5
a9ade7dabd6ebb74a451ec48964916f7

SHA1
df62ecd5268e83a22404b7932767e02753132e59

SHA256
3606307c702260df48341dca5c2763da95376ecb69abe1f81301f17461b4f8ec

SHA512
20932111d8aef083d6c8f0ec24597d0e3a04d235db75e43a9e453d0416b0bd4a8067bc8609a9bdb79c86995e03c57e619bf323aa5ae4e8b4b9eb61accdbf2524

Download Submit
/data/data/X.God.X/files/PersistedInstallation8723633040111500247tmp

Filesize
90B

MD5
8b3e0e5fd1866427567bc09a266a1a6a

SHA1
edd203c7a91411185fcd392b609d1d04b727666b

SHA256
227b10b01f6bcc1d7021abaf3d4ad4e1373c07ff9290ad91af5e81a138998278

SHA512
44e2d3157961d961a3ee0e94d57ea9bfc40604ee5df96e82d98d067348ad9805ce872d0fc6f2000af7b55769b9af3d4ac79f620e820ac597a92202fd18801ec8

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads