8dcaa1da85fe95504600a669410c5075011406c8dceb947e4bd9066d6e693aaf

Analysis

max time kernel
168s
max time network
189s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
23/08/2024, 17:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

OK_v22222222222222222222222.apk
Size

14.1MB
MD5

123bcad1e5a579c21b3cd222f5004051
SHA1

885c7fa0e2e67636405c019561e15b73629305ae
SHA256

8dcaa1da85fe95504600a669410c5075011406c8dceb947e4bd9066d6e693aaf
SHA512

f2656382422a33c8cb146771b55cccd56e3978ced13d2b666f8dd90102b7999f215eebef4702855eb75dbe6defa0daff59d3c5a0d769db9f76f38c0b86719191
SSDEEP

393216:vdgOO/h+UD5HcYQ6N2iUR9+S4Dwcupq0avyW+tpz:tOMQ8AN23RAS4DoxaCtZ

Score

7^/10

collection credential_access evasion impact

Malware Config

Signatures

Makes use of the framework's Accessibility service 4 TTPs 1 IoCs

Retrieves information displayed on the phone screen using AccessibilityService.

collection evasion credential_access

Input Injection

T1516

Screen Capture

T1513

Keylogging

T1417.001

GUI Input Capture

T1417.002

description	ioc	Process
Framework service call	android.accessibilityservice.IAccessibilityServiceConnection.findAccessibilityNodeInfoByAccessibilityId	com.OK.cn:script

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.OK.cn:script

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.OK.cn:script

com.OK.cn:script
1⤵
- Makes use of the framework's Accessibility service
- Uses Crypto APIs (Might try to encrypt user data)
- Checks memory information
PID:4378

com.OK.cn
1⤵
PID:4408

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Input Injection

T1516

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Input Capture

T1417

GUI Input Capture

T1417.002

Keylogging

T1417.001

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Input Capture

T1417

GUI Input Capture

T1417.002

Keylogging

T1417.001

Screen Capture

T1513

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Input Injection

T1516

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.OK.cn/databases/IntentTaskDatabase.db-journal

Filesize
12KB

MD5
246a03305adaa8b3c96e89c5b1895d95

SHA1
91d7ce079b882c5687b602b1d219bedc2adcaf61

SHA256
0111ff24e3cecf3dc12eace3e8140ee2f3a0bfcac87a5b4bd71931c1561037cb

SHA512
24c9be76e9d3f140d079edc75fb874863ee8897632397f633bd28a5c7a739a2d165090923df1b876a7b8e9a7edfb59725e1a951e75a5980bae4789074fae0bfe

Download Submit
/data/user/0/com.OK.cn/databases/IntentTaskDatabase.db-journal

Filesize
8KB

MD5
04f05075aaa78682b199643b53840fb7

SHA1
7befa00ccacbd4831640c7a77742d5ee23a39c2a

SHA256
ea7e78da7b4e005503476ae4599428e942859f2bf31743ed4c0dbfed62906aa4

SHA512
cae92d44d76d9146356c9f7a54b6505dd9b093d6053856b6cac499906a636c991fe83f7912ad859ab9abd91856ce0e19fe5cb0bd34e64e1691c29e5b0cc72e1d

Download Submit
/data/user/0/com.OK.cn/databases/IntentTaskDatabase.db-journal

Filesize
8KB

MD5
7ebf8807da9449cb595a404ee6cf8c13

SHA1
8cff226332c18ad6f90c95b485e383f1c8429931

SHA256
a469d7f37b5a6252064179ebb4d230b1414df65b1c4a9f8ad336a402ec9d7cfe

SHA512
b59083b8bbc26e84f596bf0446ee383a1ab7ed90bc69f812f7311c414ee998d01bf0d4b6aeb5aa4464d7d618268a278c8944fedd3da6196ad94f58282bd5c785

Download Submit
/data/user/0/com.OK.cn/databases/tray.db

Filesize
28KB

MD5
d6c658410ba0819f68f572efbdcec1e0

SHA1
dc1d01471817e666447b95f54e9debcf9e336a5e

SHA256
e1cca27ebeea70e4bbd85927f8a581894c39425dbc2dd150c97075f46f48007b

SHA512
1fbc4b9f575b83c63c5876398535962c31ec8ca036c94f35c837116f1be3b32bfa85f818f043bc05d64da40a3a240124b43606d4ef9dda9a584ece58d5fdd3a5

Download Submit
/data/user/0/com.OK.cn/databases/tray.db-journal

Filesize
20KB

MD5
5605d0158e42c5dbcf3a951106faa147

SHA1
4b9bfe7ba4dccdb13acdfc08c024bab021cdbb56

SHA256
39100bb0df1dd58406ce3acf4eb6904407a345d6f425bda7bb35a71f2e8be9be

SHA512
08f3d8ac9791358b1fc48e241186454f2c928894cef052e9784df9d8ec68d31a7e8bb6713b177c5224193bbc53f98809aa045470b1c6b9cd69d61e615dd5d2c9

Download Submit
/data/user/0/com.OK.cn/databases/tray.db-journal

Filesize
8KB

MD5
2d6c866a7c2a90d463b8df52fd9e2dc1

SHA1
db3390d78bb70003bd9766ea8b2f9d997ae710f3

SHA256
c34527232e832a13744057eec19ab5fcb54437e255d7c8a04964e510b01fa331

SHA512
d1130eb9dfd0f8ecd47d0da318b8e04f72f4c19983000b7a5fb9ceeca6a5694878803b2fce2f2237573fb8185f932ba6cba60b8c7aa63c860d2515b5d6507998

Download Submit
/data/user/0/com.OK.cn/databases/tray.db-journal

Filesize
8KB

MD5
5763cfa4aac1ae523b3008c573c56892

SHA1
6db46a35e6ddb826c1d25ea276d3dd1247293052

SHA256
16e9c962b9947724aca58a543097c5f8bf9c8250c21170615acac1e3f74284c5

SHA512
084aaabcfda8366c79ee2970d4606696ba0d7e67538c4c03d82504fff9e3516c2af77c7e031738f7b1fdccf855548b9457dade424ce8d4544c73df4aa9fb7032

Download Submit
/data/user/0/com.OK.cn/databases/tray.db-journal

Filesize
12KB

MD5
95a609dcb9f5faab76e614b59702a088

SHA1
21293baa99197cd2d4de4a602243dad4544a97e8

SHA256
c624ddacb5e51a804a71c86c9f888030c842909027f986f0fbcab023049ae8d0

SHA512
e6c6804cde8245a7a15a24b899e5d7e6569ecb639e8d5bf093a0fab672965785094fd3ddf554d4fa48550dc39a651ae662c75b245f95fe65b22e6fbecbe6c9b2

Download Submit
/data/user/0/com.OK.cn/databases/tray.db-journal

Filesize
20KB

MD5
76e5732ae4402bafa8bc74a5aab48f8f

SHA1
af438a23a716d489720f2a5f0de06858670afa4b

SHA256
dcc5b4ed7502ea3af8ed494f5d116138c0560e9f7a61b98fc9ba2a3cf28dd0e6

SHA512
243105780f47aa9107ffb3ec2b180e8bdf80495daca502ae1be8f64205a9930e962f135fb431389fe782ad6f4fc6d1be0311ce4576228b2cd557f0b9cc453023

Download Submit
/data/user/0/com.OK.cn/files/project/0.js

Filesize
10KB

MD5
c572f0017c532193e3dc8a462fb18268

SHA1
36747377fd9e895153feff244a7abb0d0c1e5b23

SHA256
47769f16415e1bdf188a26b8a88b8992eb0b7b712354d91ca68d762689426fa8

SHA512
021b30a681bbace5dec29fa68ad45a56f21453f1b5b957fbe78c701dec51001dc0d1715173e98c9e154e96b2fa036c3bbd606b433c862114433389c592fca7bc

Download Submit
/data/user/0/com.OK.cn/files/project/AndroidManifest.xml

Filesize
843B

MD5
b1877312c705373e47cd6d5dcad70995

SHA1
99dc9f5b1603e0a1fc0e73db95f4630769e393f1

SHA256
5660ff873ce2e98270777949a1cd276f22ceec0cea75cb31d2dd147283ebd865

SHA512
c69398a54bc1259047899439e1dd2beab6871286ce85a2a5fd05c46bd7190edd18195447e18b81b2baa8ca84705bac46b6e9864372ad706ff4eb74e32d82c227

Download Submit
/data/user/0/com.OK.cn/files/project/OK.zip

Filesize
101KB

MD5
76c406fd29cd159ca32d3807bb8c6bcd

SHA1
c23801d9fe093d53a6edc4fb21a44b739254f29c

SHA256
19bc05dcfcad5b0a8ba2b92ee1eec4529f7396cd7f7f03483e7631b03135b6ea

SHA512
28d19314066f10008fe3a4431fca7a89a8eed5aec0a41a5522b7fe7192e00c59a8c79128a142d07b459c2a3a7f9c12137958d1ddbdc34d837855544340c89805

Download Submit
/data/user/0/com.OK.cn/files/project/a1.js

Filesize
2KB

MD5
732f36a6f3140d7f54f63b6976bed111

SHA1
ad38314e80cdeb8b900a2c05081770dc7ecff7dc

SHA256
9dfb1d96562ba0a893ba60feb4173acf86253913468241942147c7b2ec016a7a

SHA512
9383fa18883d2cd1144c6387872ac05771683f01f5b2d2c4d1a2125230fc9a205b3a2f77fcc1bee52cee376c7b72106ce62cb4dbdcc9674f1843d70f34fa4596

Download Submit
/data/user/0/com.OK.cn/files/project/a11.js

Filesize
54KB

MD5
af6869717101d006dd8c3adaba788ff0

SHA1
e9f35cda62d2b048161b8bfa53a55771a12fdae2

SHA256
aa24791333c34b5c0afae0a5ce521e8cc784f42b6fbb6d9c5e81477fe157ad9b

SHA512
f6d1242eeed96e06d3e4704f130f075291c904787df9b334be710fedb9ea2a3acf57b8178b210215b61cfe227a731fb3f79367cd3f18ad72d52f17911fd05e11

Download Submit
/data/user/0/com.OK.cn/files/project/a12.js

Filesize
31KB

MD5
0cb275965cb5178d8a13496de6568f06

SHA1
f3d276dfff7c86cab3fd1e316f96f64de6d75e7a

SHA256
9eb6f981b98500958a3d02519449750393c01b325a2a284e17cb915e62ae37ea

SHA512
0829395109543ee9b15fd2763eebd8137c8b29f1fb834d8162d03a3b54a80eda3512a5b71d8d0d0558d1fe0092eb819807bcc03eb31e19850db248c88908cdc4

Download Submit
/data/user/0/com.OK.cn/files/project/a13.js

Filesize
88KB

MD5
41d24bc42e993cc1e008fedcb5103a94

SHA1
691db26c3a2c31346e0605027711c93b9dc64e37

SHA256
92fa33b0bdade64201eff7c21edf90dab5e83ef4fbd69e1a42fb794a93f54fac

SHA512
96129f63fe383e5e4a885f0c4fd7db34d1ca5e6210528e3cd3368911b01d440a665a9919fc91848c743bcde3392d260bbaebfa91cc8e74fb6f98c9d172e333f2

Download Submit
/data/user/0/com.OK.cn/files/project/a14.js

Filesize
10KB

MD5
128237b7fd8bee307ed4e8105f8dae3f

SHA1
5f2c4f58ab33f4031d9189393ddca62c9eb499e0

SHA256
15be5f119ff88a4071d3a834600f2eeba695a414570f46b584cfdda4d01a63ef

SHA512
a958f28a3f611284fa8f2c2f456552046fdf45d883b60b03bd1b70344bc55ac05cf47aed873a5c20ca714aab1f165811d61d6e69a69fbd6d4c6804bcdff60c37

Download Submit
/data/user/0/com.OK.cn/files/project/a2.js

Filesize
2KB

MD5
cc06c2df237db13f78fa99ca96f9061d

SHA1
8dce434e9e8ccab58dc30109c55de27bf99b03be

SHA256
0b638734f3243f320258788d1bae49da99fa69c1eb45e7b6176b3854bfab3b6a

SHA512
8bf042e1b4d4665c836d45bd3a50d243e098014ad16b62cd3fc488a83c303078e4db70423725f9a8cba7ec5018b7b6c800b82858ac079136eb49069f849d07f6

Download Submit
/data/user/0/com.OK.cn/files/project/a3.js

Filesize
8B

MD5
28e91b23ec78678f9753fad9e2360a1c

SHA1
ea5987604b53928bec6263864bd53ca8b5d0b675

SHA256
2d8797dce902342fd7a6db527a8d904063865e38bac9e3b8f875d67df2430fbc

SHA512
da3a53be56345f2d36af185c5da3416f8cf973c19d563d4bcbf7326c2757b0f7fb4f1c3164d0753adec7c7836d1bf4d2ddd207133c329c0bc6f3b20dc17a8fa5

Download Submit
/data/user/0/com.OK.cn/files/project/a4.js

Filesize
6B

MD5
5a6e1c45de18185f6f674cad97aff68e

SHA1
360e87d9555ceef45466030aa46445d0bf2f432a

SHA256
79a34c7b851bd3a54ca08ae2b5e18b3cabe7d20b98710a2d1be0c3b9748a4b4b

SHA512
17e1fc7568e645eb9366679de510d99cf9a1722f1db3015de0645bdcead1baf96b9ddfbbcd8be3b33b1d1515bb7eaf581cf669e17eee89755b24c233856c6ad2

Download Submit
/data/user/0/com.OK.cn/files/project/a5.js

Filesize
6B

MD5
ede38d228a849d2b91ca5bf532225eb2

SHA1
b9aecebe07a4d8e12580b15b5de07634e522faa6

SHA256
3b7013ca2afdf2ae10d754dd9246a825e6c896db7733b2e83ac99e48bc5904d0

SHA512
0c6865e982737e6adad4096349f33d0332044c93c6b519c193f1e5d1ad1f3016ccec2d3acfd2dd2b149c80287500f4412e1c2f46807606a9a02d29b065295a15

Download Submit
/data/user/0/com.OK.cn/files/project/a6.js

Filesize
6B

MD5
e5e64b9df937bdec3f66fc37ec2e830c

SHA1
dd315b9a2a4d827f35d720fee0ba31a347ee2a3c

SHA256
a7c3716fd6f3293fc5620db3bc4f482d96f8dab5967b99d4d7bf5eea77c57c28

SHA512
7558f58c52e8068ebbdef501eb8f44e83f7dbe8869c84d779951f56fc87915dfad31dc36b5b9b170c08ea2362a8b6387c25e944cac07bd4931ebb2e7bdf78700

Download Submit
/data/user/0/com.OK.cn/files/project/a7.js

Filesize
6B

MD5
ccaab17b6bd8d0be8bc509710ce21ff5

SHA1
bf8f1c7703ca6c47f2d547b171512bc6fc28b4a9

SHA256
4596c7141f40915fae80880d04b429f21a4d726349464dd914bc5ecfa2dc9691

SHA512
dc62c029d9bd40ef02676ed017bee5e7479cb1bac2043f4457863d7fc6f4240dc9fc5ce71601f7702dbc06a568fa9872b50f388dfbb8c405483354af24d3bc8d

Download Submit
/data/user/0/com.OK.cn/files/project/a8.js

Filesize
6B

MD5
ae4b9cc0460f1a9766b8f56bc5c67969

SHA1
57dfb221ea1ed892232a5cb8cdffce865662c384

SHA256
3bde3b317b83c1e0dff42252115bc360abf45eb09ebd5f4714995b8a3f6b6844

SHA512
5d661a8e960323fa1e2670f95bcafff9bcca2aebb5173a24f8e35eefc59b63c2eae73be3f38be14960e09a49c697535211cbafb72d672396d86cab3097041ff6

Download Submit
/data/user/0/com.OK.cn/files/project/images/ic_app_logo.png

Filesize
229KB

MD5
485e4e6273c94a0e550f9b56a49ab9f5

SHA1
6ade2221c8c372fd0d4c822cd435f77b6e407fdd

SHA256
dd2f4eca5e4e9a0b9eb4b549f4b0a2b27993a895379783dce405713f4cb1c705

SHA512
a97741e7e21a4506cba157e910defc811b8cfa38f51422cb24ca27e9e424d133b0e9db311309b008ad4252eea8d05e632bfa6c412244d9e1dab655d57341f11f

Download Submit
/data/user/0/com.OK.cn/files/project/ini.js

Filesize
148KB

MD5
0da4788d98e82920adfc263e83470385

SHA1
9088f0012cccd58fb2b3f889b6d846534f4fcf39

SHA256
763dcbc0fe7bf8c88d49a1f0448d484c21bfacb2e0be237a929d4de1b256c97a

SHA512
5d152344e6c0ec840996636f977b8f16eebb0dd31822acccf39500d8c9751a6a243a844aa5b1cb7b59ca678e3a254b3d9d73b0ce393eb49e6e6ced551ee0f1a9

Download Submit
/data/user/0/com.OK.cn/files/project/main.js

Filesize
1KB

MD5
92fcee880b116a9dba2e843e9e3c6c6c

SHA1
37ae474212078b139de1d40404b241fa4a817759

SHA256
3eb5c7feb2c7b86f0bba658adbc28834680a82a18bacd45b521b42b47e041594

SHA512
911bf7e0d165caa851c846bcc09e5707e49353a798db8a32fe168bf5c4af575da7105a09b46d5b4078716ecc5e8af8252d8094ca975823b9af6e2d7a3d00f0fd

Download Submit
/data/user/0/com.OK.cn/files/project/main.js

Filesize
102KB

MD5
6eb8e9dcbc48d67641e1fbc83e828183

SHA1
3e3a1006e9798744c944c57fd4d9bfac194815df

SHA256
fd8a66440a4768a0c19151351bf4e467d210f0891869fc69ef5836961b174b84

SHA512
9ee835f44c0b24fe961d6b7ee2a2f0f6015b34bab0d221e2083cd4d9e36f7e9dc02c17410f00e776fc39bed15165a4f6dbf5885612e5a5f4bd75042e59f4ecc2

Download Submit
/data/user/0/com.OK.cn/files/project/project.json

Filesize
858B

MD5
2c87a777bf460fec57d6fad8f6b9b476

SHA1
caab3c54883e708165013aa2b5d2a2cd60956d23

SHA256
699e6c67c593c0a8b989258dcde0d7f39456592a87d93922fcb77424f460b9f7

SHA512
2d1865ffe73790fe36b3c7258b72261fe208c1fa7cb25425d7047afa694386cf931cd53fe39d30de574afcca8506b29970b6983e4aed61fed2cff6a48e6f8a35

Download Submit
/storage/emulated/0/15.js

Filesize
3KB

MD5
db31c4279fc4dbd3850f9b81c8d0af7f

SHA1
9c90e6a9610e87b65c9473bccf643772230640c7

SHA256
9f4a0cf76391fd5f03b15d3a77474cedfdbd5aebdfb46a833d1476bdcefe5f1a

SHA512
a33987d703bdf3f875fd7a77fb1e5bcf375a4232d4a0f406fe490969c70059074b22491f45ecb4532c383a30c75e65269429994ce7b24e7b6bb18196548e5be8

Download Submit
/storage/emulated/0/16.js

Filesize
4KB

MD5
a21640645ba3fed455c66db71299cae6

SHA1
67f518ac83b1b7bc3f13dc4f3f0578c80924f1a1

SHA256
a6f021aeee0c216ae2fcb22d1121a5ef728cfcafb5303f1e89a6ee4d75748416

SHA512
3fac1e7bbd7fa2583f3007de27034d8633319370dacd13777e7f698cb6caa58e2927541606d32db403933f6fa0e89ff2a4b3d1ca9d2a3eaec469153b1991e9f3

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads