Analysis
-
max time kernel
20s -
max time network
157s -
platform
android_x64 -
resource
android-x64-20240624-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system -
submitted
22-08-2024 22:03
Static task
static1
Behavioral task
behavioral1
Sample
cbd21b9f8ddbae309bd9f4db62ef4b9b7ed3c92e8f1d4bc3dfdd74ffc02b5f1b.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
cbd21b9f8ddbae309bd9f4db62ef4b9b7ed3c92e8f1d4bc3dfdd74ffc02b5f1b.apk
Resource
android-x64-20240624-en
General
-
Target
cbd21b9f8ddbae309bd9f4db62ef4b9b7ed3c92e8f1d4bc3dfdd74ffc02b5f1b.apk
-
Size
2.3MB
-
MD5
eadd14da8252ef347d9377b349eff559
-
SHA1
2d6682de29fbba649d78609af396332252695806
-
SHA256
cbd21b9f8ddbae309bd9f4db62ef4b9b7ed3c92e8f1d4bc3dfdd74ffc02b5f1b
-
SHA512
614326ee30f5334eb0c98d7d7b07ce21f0c93b44c77681fdbe4c4bccae6e63a721623ce6d4b1791e4c4c39834478a2a50d6f540b36cbf91c28dd07771caa577f
-
SSDEEP
49152:7AHfxBqLC0imdmZ/jm6FFWhw5CQnkHxUAs:7AHfxBBmdmZ/j5CQnkHxUL
Malware Config
Signatures
-
pid Process 5004 phising.ap18 -
Queries the phone number (MSISDN for GSM devices) 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver phising.ap18 -
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
description ioc Process Framework API call javax.crypto.Cipher.doFinal phising.ap18