d4a255aaed769628ebd643d87f66e16920b17de96d89aa931c60ee596b61a60a

Resubmissions

24/08/2024, 00:12

240824-ahly2svfph 6

24/08/2024, 00:02

240824-abtejsvdkf 6

23/08/2024, 23:11

240823-2593yaseqb 6

Analysis

max time kernel
66s
max time network
68s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
24/08/2024, 00:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

CrackMe.apk
Size

42.9MB
MD5

36b183d60ebe7521f3e97e22c5252a0b
SHA1

4e905c80b108513cea82de05af112651b431e451
SHA256

d4a255aaed769628ebd643d87f66e16920b17de96d89aa931c60ee596b61a60a
SHA512

8b75c50ee061f5b27823b52651fb063186cdac410b6dacb37b839baf5f113ebfde52e453e714bfc4d10019505639dc2e812bfff62f88542a82a3c5eadbe97916
SSDEEP

786432:UGOLEzUTwOg6dnk3P+zC8ejwS04PEEBfZ6i2/QdTDMSoK3BXAOsDtfh:TOAzridkfGReUS04sEBx6P/uDMSr3BXC

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.SekaiCTF.CrackMe

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.SekaiCTF.CrackMe

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.SekaiCTF.CrackMe

com.SekaiCTF.CrackMe
1⤵
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4255

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.SekaiCTF.CrackMe/cache/ExponentAsset-68ea4734cf86bd544650aee05137d7bb.ttf

Filesize
164KB

MD5
68ea4734cf86bd544650aee05137d7bb

SHA1
3c6a09fcc6a454924c81af7dff94fc6d399ed79b

SHA256
9d0d55a303bfd13b79a87721f65185e93f235e2d77fe398b2dca67ac519915f5

SHA512
5d55a41b845f3a3ae9b08cee5258348dfd83dac5f0a0e48159cd85c141c614a02f8f474fa683d2bfbc451d49dd3b749820662d403b2e3fd3f16a242eaca64115

Download Submit
/data/data/com.SekaiCTF.CrackMe/cache/ExponentAsset-8a36205bd9b83e03af0591a004bc97f4.ttf

Filesize
164KB

MD5
8a36205bd9b83e03af0591a004bc97f4

SHA1
56c5c0d38bde4c1f1549dda43db37b09c608aad3

SHA256
4e147ab64b9fdf6d89d01f6b8c3ca0b3cddc59d608a8e2218f9a2504b5c98e14

SHA512
e96b43b0ca3fd7775d75a702f44cd1b0dfd325e1db317f7cba84efdf572571fe7594068f9132a937251aab8bd1f68783213677d4953aca197195fbe5db1f90d7

Download Submit
/data/data/com.SekaiCTF.CrackMe/cache/ExponentAsset-b3263095df30cb7db78c613e73f9499a.ttf

Filesize
241KB

MD5
b3263095df30cb7db78c613e73f9499a

SHA1
b5281fbfa43129abc3e412dd938cfcf0b77de999

SHA256
eeb002b25911df52eccaa4f5b303778ed7f48a9b07852630551e9f15cc709f33

SHA512
cf45278cea007f2ee55eb67c10cad90410360917136911205e471f661ab066413c71dc04eb1b99641a17e06dddbe781185018868bea0562b4baaae5c4fd59e61

Download Submit
/data/data/com.SekaiCTF.CrackMe/cache/ExponentAsset-b9b73bb26e21c298cb780fa83943d538.ttf

Filesize
90KB

MD5
b9b73bb26e21c298cb780fa83943d538

SHA1
a1a32dbe0eaa116da8fbfb6afd81ee2077151e57

SHA256
8fe405374d31b1144d03684f3749b1ab200a3229c574554ccc4aea3bcac58499

SHA512
fa6bada61cb53f626985999110671178199e5f8978cf8e571f0808ce7cf4457834a4b230b70b9595574e2e369b0cda65d7af379d447653d0689881a94b63b439

Download Submit
/data/data/com.SekaiCTF.CrackMe/cache/http-cache/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/data/com.SekaiCTF.CrackMe/databases/RKStorage

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.SekaiCTF.CrackMe/databases/RKStorage-journal

Filesize
512B

MD5
b032094a12c0d6e09b1e03a69915b5a4

SHA1
c2358a10ce1cc505a0d5571741a77ab27f5b358f

SHA256
0591b1f78050760c945fdf8df00b42fdeba148f8de6986f9e3b17659b85f50a4

SHA512
41b7249381b888ab16fb80c141a8daa93a8dd90729af5a86f65aee8e319e8b4347452b187262a6602ba7dc021ccdb97d573a89ad30773bda54e0c63065426863

Download Submit
/data/data/com.SekaiCTF.CrackMe/databases/RKStorage-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.SekaiCTF.CrackMe/databases/RKStorage-wal

Filesize
48KB

MD5
c21098b4fba42ff635cb7c21606b8e8a

SHA1
b958eb42407fae39937b12e0a626e57de4834b1d

SHA256
47ed4becf7e664326005afefee328c04a700c475249c672774e9dbeb70acd913

SHA512
801119eae26f66dee2d9125add27193b1370202dcb0585c17407c3693ba6049c97511f16db7d4c9bfad4477b3bf4baa3a031cf8e8c3679fa52da4d017b4e5743

Download Submit
/data/data/com.SekaiCTF.CrackMe/lib-main/dso_deps

Filesize
296B

MD5
f4287089b558cd66641a43698b1afebc

SHA1
e3a2928d8d9aab81eb2c2d7b0886bb8a8a350c07

SHA256
1dd082daeb84508a73d6e309750b9dadf99242057e78c6a4ed36999c125f0c07

SHA512
1a2c6802a2a595e2f8b4009aae3141522adeb22c2fcb67b40af0a57557a727a5d7234f4e9b941c206b7bb9ead2e0357b708b174289e959d272141bc38948c76f

Download Submit
/data/data/com.SekaiCTF.CrackMe/lib-main/dso_manifest

Filesize
5B

MD5
c06857e9ea338f3f3a24bb78f8fbdf6f

SHA1
c5a0a2529d2deb60fec041b4fbd722a2ebe31702

SHA256
957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

SHA512
29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

Download Submit
/data/data/com.SekaiCTF.CrackMe/lib-main/dso_state

Filesize
1B

MD5
93b885adfe0da089cdf634904fd59f71

SHA1
5ba93c9db0cff93f52b521d7420e43f6eda2784f

SHA256
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

SHA512
b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

Download Submit
/data/data/com.SekaiCTF.CrackMe/lib-main/dso_state

Filesize
1B

MD5
55a54008ad1ba589aa210d2629c1df41

SHA1
bf8b4530d8d246dd74ac53a13471bba17941dff7

SHA256
4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

SHA512
7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

Download Submit
/data/data/com.SekaiCTF.CrackMe/no_backup/expo_installation_uuid.txt

Filesize
36B

MD5
0d4b0093e344b4e19fabff2c79d19dc3

SHA1
81f9c818d9d35a1a4a21f75f8e2d3d58e35edeb4

SHA256
8ade2c1419b380dcfd947bd65b5b1a5d30f097e92077f342666eb6e64ee79aae

SHA512
d0824ba83e5a7923b0f2764c86835e09e7167b4bab56a0b9dc34b4eedfac2f893ab80a0a94e1a9be2fe2d9db64c4991e67b215c57993a272beff151a8db67493

Download Submit