d4a255aaed769628ebd643d87f66e16920b17de96d89aa931c60ee596b61a60a

Resubmissions

24/08/2024, 00:12

240824-ahly2svfph 6

24/08/2024, 00:02

240824-abtejsvdkf 6

23/08/2024, 23:11

240823-2593yaseqb 6

Analysis

max time kernel
145s
max time network
145s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
24/08/2024, 00:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

CrackMe.apk
Size

42.9MB
MD5

36b183d60ebe7521f3e97e22c5252a0b
SHA1

4e905c80b108513cea82de05af112651b431e451
SHA256

d4a255aaed769628ebd643d87f66e16920b17de96d89aa931c60ee596b61a60a
SHA512

8b75c50ee061f5b27823b52651fb063186cdac410b6dacb37b839baf5f113ebfde52e453e714bfc4d10019505639dc2e812bfff62f88542a82a3c5eadbe97916
SSDEEP

786432:UGOLEzUTwOg6dnk3P+zC8ejwS04PEEBfZ6i2/QdTDMSoK3BXAOsDtfh:TOAzridkfGReUS04sEBx6P/uDMSr3BXC

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.SekaiCTF.CrackMe

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.SekaiCTF.CrackMe

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.SekaiCTF.CrackMe

com.SekaiCTF.CrackMe
1⤵
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4263

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.SekaiCTF.CrackMe/cache/ExponentAsset-68ea4734cf86bd544650aee05137d7bb.ttf

Filesize
164KB

MD5
68ea4734cf86bd544650aee05137d7bb

SHA1
3c6a09fcc6a454924c81af7dff94fc6d399ed79b

SHA256
9d0d55a303bfd13b79a87721f65185e93f235e2d77fe398b2dca67ac519915f5

SHA512
5d55a41b845f3a3ae9b08cee5258348dfd83dac5f0a0e48159cd85c141c614a02f8f474fa683d2bfbc451d49dd3b749820662d403b2e3fd3f16a242eaca64115

Download Submit
/data/data/com.SekaiCTF.CrackMe/cache/ExponentAsset-8a36205bd9b83e03af0591a004bc97f4.ttf

Filesize
164KB

MD5
8a36205bd9b83e03af0591a004bc97f4

SHA1
56c5c0d38bde4c1f1549dda43db37b09c608aad3

SHA256
4e147ab64b9fdf6d89d01f6b8c3ca0b3cddc59d608a8e2218f9a2504b5c98e14

SHA512
e96b43b0ca3fd7775d75a702f44cd1b0dfd325e1db317f7cba84efdf572571fe7594068f9132a937251aab8bd1f68783213677d4953aca197195fbe5db1f90d7

Download Submit
/data/data/com.SekaiCTF.CrackMe/cache/ExponentAsset-b3263095df30cb7db78c613e73f9499a.ttf

Filesize
241KB

MD5
b3263095df30cb7db78c613e73f9499a

SHA1
b5281fbfa43129abc3e412dd938cfcf0b77de999

SHA256
eeb002b25911df52eccaa4f5b303778ed7f48a9b07852630551e9f15cc709f33

SHA512
cf45278cea007f2ee55eb67c10cad90410360917136911205e471f661ab066413c71dc04eb1b99641a17e06dddbe781185018868bea0562b4baaae5c4fd59e61

Download Submit
/data/data/com.SekaiCTF.CrackMe/cache/ExponentAsset-b9b73bb26e21c298cb780fa83943d538.ttf

Filesize
90KB

MD5
b9b73bb26e21c298cb780fa83943d538

SHA1
a1a32dbe0eaa116da8fbfb6afd81ee2077151e57

SHA256
8fe405374d31b1144d03684f3749b1ab200a3229c574554ccc4aea3bcac58499

SHA512
fa6bada61cb53f626985999110671178199e5f8978cf8e571f0808ce7cf4457834a4b230b70b9595574e2e369b0cda65d7af379d447653d0689881a94b63b439

Download Submit
/data/data/com.SekaiCTF.CrackMe/cache/http-cache/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/data/com.SekaiCTF.CrackMe/databases/RKStorage

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.SekaiCTF.CrackMe/databases/RKStorage-journal

Filesize
512B

MD5
0a0b5149be11d0b287c27095864754aa

SHA1
176f1e68c7df236dbdb9816b7966109d19a73562

SHA256
877bd4229a0e5ae7880f95c51cfd27241125b2b46416bd8b44c6c8eb3b601abc

SHA512
4a32523910c15c49bff5ca0a4c12f85c1dbfe0d549572f0e37f6fe7eb41d2fb73290d5a42d4de5fa281949621275c3e3d8e4d572e71bcbc2af6f4ec5a2feb54c

Download Submit
/data/data/com.SekaiCTF.CrackMe/databases/RKStorage-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.SekaiCTF.CrackMe/databases/RKStorage-wal

Filesize
56KB

MD5
dfdaf8bc8ea6e0076fd4cd1638c32b3e

SHA1
2efcff4e68f264104764da10fe252bac9e788c83

SHA256
63198f17a0c70273bbdacc89e96480120a8412002062ab2f7e594a216d626ec5

SHA512
a4982b9808d2927ff16c845d8674468d3f2d6fb711835398f6b0d0a7c6d2374487e477d34613800be32068b58133e4975758508d1898519ff1830d6d5e3bf6f2

Download Submit
/data/data/com.SekaiCTF.CrackMe/lib-main/dso_deps

Filesize
296B

MD5
9c9ff3ca9d8487b44dff9591f9bd97c7

SHA1
d4f16d229bd5c9cbb17b018a2e4c272ae7889425

SHA256
38a705c6638c0cbae2283f3feb77143bde5d5a7a683ad537ef4d16c23600a97f

SHA512
ff6613db64ae6e919db335598804be3b731c467cc21203fa255ec4bfd22846a5d8660b21b4038117027eac95158508248e49d3b1287e077d74371a5f3528d306

Download Submit
/data/data/com.SekaiCTF.CrackMe/lib-main/dso_manifest

Filesize
5B

MD5
c06857e9ea338f3f3a24bb78f8fbdf6f

SHA1
c5a0a2529d2deb60fec041b4fbd722a2ebe31702

SHA256
957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

SHA512
29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

Download Submit
/data/data/com.SekaiCTF.CrackMe/lib-main/dso_state

Filesize
1B

MD5
93b885adfe0da089cdf634904fd59f71

SHA1
5ba93c9db0cff93f52b521d7420e43f6eda2784f

SHA256
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

SHA512
b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

Download Submit
/data/data/com.SekaiCTF.CrackMe/lib-main/dso_state

Filesize
1B

MD5
55a54008ad1ba589aa210d2629c1df41

SHA1
bf8b4530d8d246dd74ac53a13471bba17941dff7

SHA256
4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

SHA512
7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

Download Submit
/data/data/com.SekaiCTF.CrackMe/no_backup/expo_installation_uuid.txt

Filesize
36B

MD5
c30b4a8aed38f791a00d795058045059

SHA1
2e565c49a4dbad5a65cc3a6e14f96d2df2af4adb

SHA256
7dba8a183fb64d622fded532582efc8489fb1a30ff3ec0b2e944ee60950118de

SHA512
69ab9c3779a1b6b03fec2da001ba75d2747d1f29835e2fe4d499eec2114ebaa508fff42465ffa6bde5f49e2a24d90cd8cb25667070705b7e1e20817b5b94a463

Download Submit