9dafe1f4d66327bf733260347e19b6edde652c9fc7daeeeb0c4d683a464f34f5

Analysis

max time kernel
1042s
max time network
1094s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
22-08-2024 19:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

TeamSpeak-3.1.7-Patched.apk
Size

24.9MB
MD5

1a4303989665d4c6a1a53226caf48bd0
SHA1

a3fcfa2de7bb8435579f6a0c19fdc3fbd8f0fdd1
SHA256

9dafe1f4d66327bf733260347e19b6edde652c9fc7daeeeb0c4d683a464f34f5
SHA512

7bb1bed5647bf3fefd518b34bf7328bb95daf5e2f98688b4fb64252dec35ec80c7f55afcd2ac771d1f8d80f873e4325f3378ea056d1c7a35b2b851c8ba57b033
SSDEEP

786432:GyxsAbwf6zjw/E/cD+7iBD5SqsyXgjut7SSo:nC446PwecDIPqsmeFSo

Score

7^/10

collection credential_access evasion impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.teamspeak.ts3client

Checks the presence of a debugger
evasion

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.teamspeak.ts3client

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.teamspeak.ts3client

com.teamspeak.ts3client
1⤵
- Obtains sensitive information copied to the device clipboard
- Checks CPU information
- Checks memory information
PID:4351

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.teamspeak.ts3client/databases/Teamspeak-Contacts

Filesize
24KB

MD5
d5a4534a18aec25dc93a1ccdebd1ae0f

SHA1
900403ad59da4e3cde21791183104f2ba95e2254

SHA256
75fab5e843a4c62110ca14a886c9c8ed464f5715a7d69bbf2ab7a37438bed147

SHA512
468d80abb8cba54b38359ceb471e510a01d2f83ebfff551e783c2cfb1552c0bde70153fe1c73c0a6c6a0cfc07808a73d7d5aac3bd55e836ba2b62273559036df

Download Submit
/data/user/0/com.teamspeak.ts3client/databases/Teamspeak-Contacts-journal

Filesize
512B

MD5
7a883475995f7079684423fbf99215f5

SHA1
a22608859c9768e04ceed711da31ca348aecee7f

SHA256
f4bba626c91b35bde81a6573131344b3aa85e823e4c01a82968f434729f98369

SHA512
8fe4391324be854b8a85de73c612ad873bf4aca37d4aad40df0cfb52d9551520c6fec5bde5d0a644bbc3899a7eeeb896abcdd2ecd24a34af8468f1291fcfdfcd

Download Submit
/data/user/0/com.teamspeak.ts3client/databases/Teamspeak-Contacts-journal

Filesize
8KB

MD5
a6410151cce53e600feb46821047fdbc

SHA1
2b14b0c6cfd773f836d3fbbd72e735dc3b5577be

SHA256
f50dde13bed5d3c0a7502d65e86c6fb380cc4fb773bd4a4d698970dd5cac6de0

SHA512
463ea830a0c9c414b715815dddcb3389a24e00a9fd349388de12ae82f3a3954eada0c62bc11146980f50f9e43c507139bd75ba06df2211f083826e32fea83fba

Download Submit
/data/user/0/com.teamspeak.ts3client/databases/Teamspeak-Contacts-journal

Filesize
8KB

MD5
74ee0ed97f19ab6d318859b71a5001df

SHA1
88f2c119f2a69bd37e15289936a06695f2d45e70

SHA256
731f7243297a20d72248868afe3df82f631adbd99af83f45b78ec673715312de

SHA512
71657e973e60c5b082ab549fd04e0c71404becaa0c4df7a9f401587a8bb98708b085362c63da010b9f7598c549b72b947624a06b62ce8b662fd689a131a93a78

Download Submit
/data/user/0/com.teamspeak.ts3client/databases/settings.db

Filesize
28KB

MD5
5a87ee6733dda89a453b20f2246ed005

SHA1
f546bf10e72a9d8cb704d7cb8de6102ad22a9687

SHA256
325b3ae461a87d323013e6941f9065c000c9f21644607c98b518e904bbb9e26b

SHA512
4320736d9be5e8a1cc7397ab7faeaf252f33fd40ee2ff5751045fac952ef7d19e45dce047692daf642790da7054653cf90cbdd6206456b0f0d4f8bc1bff3206d

Download Submit
/data/user/0/com.teamspeak.ts3client/databases/settings.db-journal

Filesize
12KB

MD5
d6c9ca864bd84a7b245e94ed3fc43885

SHA1
a5c521b06949d07985b2d98803835342b6127f74

SHA256
664e962487e12a875133dc222f7abcb65938c9ce5a9258173d80a59a8bb86252

SHA512
07ee8bccb363b65ef9ce65f4840d4ee7acd5ff4eb08c40f4bda5d56eda5b745b35dacea5c9bce3851975cc44e496c3b357e14c488a73c7fbba2799f865a65943

Download Submit
/data/user/0/com.teamspeak.ts3client/databases/settings.db-journal

Filesize
8KB

MD5
2b42022eea2bf538768e4e003f1eea55

SHA1
d55172ec4cf4993a422e0061220f5fd0ca14659f

SHA256
de212c740edb73c0f3e0d952784b02b659ac21acdbdc6c8cf8abc78b24105959

SHA512
4cd4127d02bdf41320e8465d9723a34efa29bb206f3c5f4dc7e1944e0b12b185617e5c21a464850cc80b2d25737d2cdf5237ebfdadba07820303597b7b71d236

Download Submit
/data/user/0/com.teamspeak.ts3client/databases/settings.db-journal

Filesize
512B

MD5
48aa17fe0f39d7cba954d5936bb9d9dc

SHA1
0dcdda97f623c6908c112254967bff52cc852719

SHA256
6676ec441fbc18aa4c79dc48be89794f8e25d3d281b0b63b75affbde805ade1c

SHA512
392ad87be06215e0565c7be8b262920c7860e5236bbdfc824979085db0de10a2e79eaed62da33173204730e57d037dc9b14f35b27eb66e43185e91488906a3f6

Download Submit
/data/user/0/com.teamspeak.ts3client/databases/settings.db-journal

Filesize
8KB

MD5
77a49c86eed88dba48ff8238f3b868d9

SHA1
505ea8742b90afad505c46144e1afaee397df85c

SHA256
28a8f36ad7398da2b4b8f9319eeaf02b4fb8b41fecc6842cf1866ffc1ff74091

SHA512
278795901204136fbad0deeb2801cfe3a7277cd2835a89327878525109b1419e06abc726bfa943c6c8d5d9fd04b726eb01d22229732d645078ad3aa7d0014058

Download Submit
/data/user/0/com.teamspeak.ts3client/databases/settings.db-journal

Filesize
8KB

MD5
77df1aab348bb5de6f4eec5437cba628

SHA1
d919afbe57eb8051815953e4106e2b3ad527ac52

SHA256
649f619da7fae76514bea26eaca0b70fa77e8af52ef91636e3f3889ef2bdf4fd

SHA512
830ed5ef132ae6c3e8a814d004b8dff80275e3249c135820e5a7b8268200657c1a7d79efcc0ed29c8607d840bf03d80472ee0c2bbd52f34e2bb010bf188a65cc

Download Submit
/data/user/0/com.teamspeak.ts3client/files/net.hockeyapp.android/telemetry/db0ab381-6633-43c0-a0f9-8c57fe0146e7

Filesize
1KB

MD5
bd5f0ad9c5f466fc79dbe67b60d4ea43

SHA1
937b183be4b46f3d93f20f826dc0756a0fa88a82

SHA256
8419e3de568a06c0daca5d6741e790dc71946f34656176fc34037b98ff44df7d

SHA512
a3603dfb400e916112138cff679e7cb1680f7ac8d1aaea2cb4f9b09d859e87db98cc3eca6e4490668007a7290fb65a39dc946cfeb2abd5ca382e35f2159b13c9

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads