Analysis
-
max time kernel
89s -
max time network
132s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
24-08-2024 13:24
Behavioral task
behavioral1
Sample
Application.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
Application.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
Application.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
Application.apk
-
Size
2.8MB
-
MD5
369c156b46407d1c995957540d919557
-
SHA1
7bebd8b3b5104d1fe2ed39ef60574b58c38f4eee
-
SHA256
d793fe45400bcea8b3f7e0acb6a64eaf3a7ef3f45042bc787aee4469d63bb0b1
-
SHA512
94ca26375baaf0fa75f9feec26c188ad410a3a1ac4d33421fff227d8f85be7a898c65346009e90ebfa3b3c96d1026ac7328555df3c1b8c075a5e611cb5c2f47f
-
SSDEEP
49152:CTbdsl35rnglmqdJy2WTx8Xt8VaamfvXV+1tda1Mt54OLkf2fbFfNTeMvP1fX:CHy0mqTy2UU8ViQv+Mt54CjRFTeMvtfX
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
Processes:
X.God.Xdescription ioc process Framework service call android.content.IClipboard.addPrimaryClipChangedListener X.God.X -
Acquires the wake lock 1 IoCs
Processes:
X.God.Xdescription ioc process Framework service call android.os.IPowerManager.acquireWakeLock X.God.X -
Queries information about active data network 1 TTPs 1 IoCs
Processes:
X.God.Xdescription ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo X.God.X -
Reads information about phone network operator. 1 TTPs
-
Checks memory information 2 TTPs 1 IoCs
Processes:
X.God.Xdescription ioc process File opened for read /proc/meminfo X.God.X
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
16KB
MD553f12a9ac81593e537b2d22a80b9bbee
SHA1baf965392c93fb1092201074112b01460af5c2ec
SHA256adfa7ae159016fa7f94b9d86fac60097b0e778473ca9641736676e4661473a3f
SHA512ef539c99bc0f23b7449aeca4ce37892f644742a7e751fe4b1c9eeb0de15eead85330a511356b8dc6971acb078cf95aac7494d3172b07a34d5f7373f1bd3e4b73
-
Filesize
16KB
MD5db3ed4d88f03b91ecbae9fe7c20aebd8
SHA19a08f07e55c8c68fbf326623eedc6e55aaf4c869
SHA256e9c82199d39dae593a623a54817b67db6c03aaac9c368fd5caf322513358dac1
SHA5129c92d6c63989e66fe662b36e983512541e06d0df8cd20f1621aaccde1a5abfc41bbecc04f645825e0df32b05dd2531ec28b46f7537156ed8129979957cfa95d0
-
Filesize
16KB
MD5ff3deb3c4d2e73ba4bc7ec443365e9e6
SHA118e08277bc166815b1a78898540221723df8103e
SHA25631c8b57342e7e3f0c0dd99f19aea8154cf52b21e87f64fce30a11990a40307ae
SHA512c4684792106869273d5ad55f23bf380540666f3772101c20fbbd1a2952d007f8ea2316c1b0345129aec6a9645852dfc62c01f00054b3bf73cb29d71ae75ea531
-
Filesize
16KB
MD5dc44da675e704fc4550bf78706a4d59f
SHA1166dff20ebb088a86d3417f445601070d775d3e8
SHA25634bf9d0411f76fc231811169c46ab67ee76895d2717ff539b58494ea8295baa1
SHA51270421eeb4629e8329edcba6a1619bf43460f7551281ac0ccedd74619ad5f0f41fd0575bac8fc5da2de7c151bd244920b07ab4121d9e2acba683e94ba99e2f294
-
Filesize
16KB
MD5de82e2c94d2718988804b035a46d17b1
SHA1705f5ff19093ad209f2a666085d6ccaed3bf58a4
SHA25629110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39
SHA51268f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e
-
Filesize
16KB
MD5d9cf75fdd1c2292d986f6c3d5d60f2c8
SHA107ecb1d3a26d952ae5fecf54f36699ab498510b1
SHA2562d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a
SHA512442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb
-
Filesize
8KB
MD5d0c6f6265130e141eec6a0b9f73adbad
SHA158a82a783452b07a568b00e521509400ba82d65e
SHA256a88a4c608c3998d4ccbacc85702ad63564ec7ae6aaf4f891906e26526b809a28
SHA512b2af206c720d9250d2a84349b340e292bcdf863be94c46679dcd91385e331f7fcc1c98c4a8b421dfc28edcedf3f7180552a11093908113cf4a3b760266aa00c5
-
Filesize
8KB
MD584ef3ab5430b5d9b0bda88521fb524ef
SHA1633853efaac5d5bc101e417e2b9a1adc7770b2a0
SHA2568baef0133e5af3c0735b9edf66bdb9bfc09c637bf5ee41ba3c14b93a7848ae83
SHA512f500bae845b62c4a254dc008436f2a851a5bd5de26832d81f02ca88f42608a566e5f22faa698af10c0c8e81c5062832dcdacc94068aadedc0d07c4d1651c810b
-
Filesize
512B
MD594be1667b8c2c5487443a75c79092890
SHA1e3e3a29bd97757e866697a6622f14f6b7062f68c
SHA25609a75c4431677890f9b26fee46cbc6d62cf1d8801aa19e2107d0999e9d489f63
SHA512fec3a18bbcd450e249c2e280a37cee568185733787950d64e8ab4fadd0623acd91d977caef192547fbb797f89addfe45d13298cb5cc401477d2eefbdc096519f
-
Filesize
8KB
MD5114cb1f609ff5e9d2e4f40874c7cc17c
SHA1d544581660c241e87747d23d27278832b8c5a70b
SHA25696028c3d76164ea4fdaa22fb92ae27ccaf2b9d41ea71fa7b93af31785f4f4673
SHA512597aba70ee093dcf8729b82c272956b1625003584b28adc95b855ca7dba035175df4641213bb45b8916c3dff9f7b87a0abea73c0ee58e38ceb7aefea6605310a
-
Filesize
4KB
MD5371146157dcb9c5eab836a64afd6cd98
SHA1830e2957ec65dca34123fdf39902ea5192ec01cc
SHA25616c0f6e9ce0ccde0c5452f9218b0db1744553af8fe37950e01135ff8650f27a0
SHA512cde1ed7da637879970f94a42a70300d57ea31bb12b1a8afc18dff2934edac6a2bf17e3fdaa65505b2a26553ad1ba107e9c5b0af506d19f65e1789a33b9d27dd0
-
Filesize
8KB
MD55950fccecb6ffbb069f439319fa58985
SHA1d4ed15889446860fe7231098ae0d1444e1f04604
SHA25687a0a5d44e9fec540ce474b6b30a000b954a3f82e906b649bad8e3164b698df5
SHA512a6a6006a81bcd7d5dae7ccf476cfc219b78c76c7bd0ca21bdacadf6693ae2569e28b3bb6cd9e70e2ffececb3a0d99ace9f77878499a3c086fcbeef41ac4d5760
-
Filesize
90B
MD5f62bc946ba0a31539d9659a646da65b9
SHA1e3a148790327cac623f4da329df795beecb4217e
SHA2563bc79ae004eaed126a38e5ac459966aa57b1e7eb9bad3b3baf49523d3a5ae769
SHA51256c7b7dfdb866523b5987c1280c505b391bc2c98b12163cc61d78c92e391499f5e7a3a77732e68582de2bc705fb781f704e3093efe56623b713992c1376b2900
-
Filesize
568B
MD5355923072fd6732a6d6bdf883eb7aa80
SHA105dec66008e85639f06f8cd09fed9638606a67ef
SHA256bb6b229b8ace9f0afc3edaf0c7b3cdf4f318fe62e6bdf3266c966095b662b9c6
SHA5125f700d65cb437c7ed8ea7b22361d0336502fd250b221a0d0d5525324007e6311ced47ce3c9d5bd01af7e4bf9df6a675e1906c4da457494bc08403bb93d878779