19390c5069814743cf75a979e733e54846b26c38fef6e6063d2127d8fcd6dc25

Analysis

max time kernel
121s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
26-08-2024 01:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

19390c5069814743cf75a979e733e54846b26c38fef6e6063d2127d8fcd6dc25.apk
Size

2.8MB
MD5

a9c325de4633252138fb2892717feffd
SHA1

c6e2cecf49e761cae125c8a7f1469535cc71d5a6
SHA256

19390c5069814743cf75a979e733e54846b26c38fef6e6063d2127d8fcd6dc25
SHA512

52a665c9016c4351bb59ef3a215895132d2e879b46cf4d3977bc6ae550a450f65d7860f7d99665d174ef54a5846f81d7ed2269a333290b1617d89b87c8d5e995
SSDEEP

49152:DTbdsl35rnglmqdJy2WTx8Xt8VaamfvXV+1tda1Mt54OLkf2fbFfNTeMv0HDHN:DHy0mqTy2UU8ViQv+Mt54CjRFTeMvWHN

Score

7^/10

collection credential_access discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	X.God.X

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	X.God.X

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	X.God.X

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	X.God.X

X.God.X
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Checks memory information
PID:4610

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
25255f6d62506bc60aac329b8b4c4b4c

SHA1
e4564e98dc45bde393a70237d8dbb6f9dc9bb5f7

SHA256
7b1a2ff9293785eea8d55fdee026a0b19379e39c89ef8ef9b68fabdbe4059b9c

SHA512
a8baffb3baf506520dd3934dc2a2bbb8e4d96a02a9e5293030c26b94d3ea73bf53c7305daec823f6c23c0c5ff7b68e0f7480d6f51955690017f133db61777283

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e17826038b5912c302952af78a863945

SHA1
b0be818be1d86f4f1a5547d709875ccb5e66e30b

SHA256
7aa0712032114fd915ac2ca1ca50497196873f12ec0eb79ffdced51db1c09096

SHA512
c906ccaadd174b37883d287882be1818683474f9b086b7579271ec62f6f04d9480cb0a7cef8a6acbc9a5fd806fe22787edd34fee28cc83564bbbcee5a7dcbd0d

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c811f000fafa5ea3c5e4e772790491da

SHA1
299463dc1fa70fbabb4cae4bd483d8c48c7b7049

SHA256
3897fbdeb3785b8669bf067a48689bd965487cd62167b3906d0e6cc0774e1eaa

SHA512
fcd229fcbb0947689fffb8fe90d749579a8d26cae743b137c01d0b92b3ba9e72ea9cfb96ccb47c7f0dc0f63ede786c93daaf954df0f64e687e62fde51dab3916

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b9ea7279404191ee2abe6f39dc6a976b

SHA1
601f06184b8a6daf238784591a4eb6f454ad957b

SHA256
ef0632832259505dfe13d16824337cd94df2bc91a6e9085707cc74aca1cb7073

SHA512
fc949ff2d866ac3af572176d66679816bbc7adbca0283d0470e692310cf83cb3a0bb5ff8045e694fd1dc24e8e9e03b1d617a87ee77120eb3343e5ba227d3f518

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
d42728d2b5d798421e1e515ea770e798

SHA1
99a7954c6d55ad4470c6b91eb0dca951475e00ee

SHA256
a1d72e009722d9d4e02a2ca450c5f5c63fef91e2dd0c6a5421a41687f0bc1aa2

SHA512
fdda3c17c24a394a4ed17f5946d309f81d20b59106b230de78ebe9db9e9c76853b560e82abef6f2f9b76e0af933da07fc6b74205e90c9cfed40ba1c8e5987d7f

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ac8c3e5e6ad37f7b14edf64aecfcac2d

SHA1
52ba85641afe9ba6d3ec0fc63a445fb3ef832f3b

SHA256
8733c8c33cd3b46575dbb85dbe58d53c88687d9034c4855f4381d149f44b8529

SHA512
537baffb1cf55c4be00e7b1922b9435d2711e13b8e37d1f3e8d04874c4be2c897f215c3b60d2ab6acac5843e716380a1cc89b0fca54bb873cb77b82b91be6f84

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
ee2a4fd8a22346c8a1721b270f9f8e26

SHA1
ab0832b2c09bc788208d0a032fda288237ea7774

SHA256
d9673ff11ecffe84b6e0c11463595bd04107f0b655f12a4d4a2bcc8523f3d089

SHA512
0fab91acf7633668401a1ea9383a055224cdedecb130bd40f9bb3ce843b39ed5e9268b1e8798fa2ec776da2c473e41a72989d66c86be5ddcd67860fded4e7703

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
541a7572219c41f68b53953988a0e912

SHA1
9dfcde54432f115bb4120b3cad85c1105095813d

SHA256
9773d1ffbd3984d75792f547a9dd60e837ff681d4f583879ec1d751b6c4b9d8c

SHA512
b06c0ea0bb627e5c6993a7fcee98b13c564acbd0899e52d965380f8cc4acf7babd8eb7ec49c3568042ea12a6e52503667b94d98ef90990d3a51e2bd2bd10cfd7

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
1002f10b23b262d0f823463cf7658817

SHA1
f955e36d4ed640dfa80a041b9956714039e55831

SHA256
f3ff41f60cc45c9c69741a818a155f7a42dca535da3510c941cfacccca5dfb30

SHA512
0ebfa846c819d021b132a9bc60de3ccb29914f35227050301739e8824e7556c4a043e9cd682a0737ce4531e18faa65c7f4524559a6e0feac807edc70552797aa

Download Submit
/data/data/X.God.X/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
b15114df37fd21a45fdee167a1a18bb2

SHA1
a20cf5629b611316d0084604fb10a8ed7ca726bb

SHA256
37d5e641939eae4dac9634a7c9949d34a083af3ea8481bb7bfbf021efa4ed94c

SHA512
354ee4b35811f37b671fdac0ed7b9c035e7dcfc0afbed39b2f927213298fafe920253c487d43e34b8962c5e1f525ec1a33dc5aafd14384a13712702d789702ee

Download Submit
/data/data/X.God.X/files/PersistedInstallation1128760668332383624tmp

Filesize
90B

MD5
923e5b3d3a68a4a412d9a574415373e2

SHA1
0a1d5f49ec554e588174acaf7d58d392a83efd95

SHA256
ca288316bc0a5c7e36ed2e9635e58d34283a1f8fb3cc26b43ac5cb1faa3f11da

SHA512
5c62199cb93f63cf30222742d62135c7b5c3b120fb100590829fb0f79e11b633f524049c0f7d70bb4a305116047f8dfbb5ff58a240fbd39ec04ac0161d030ea0

Download Submit
/data/data/X.God.X/files/PersistedInstallation8209809698490261094tmp

Filesize
570B

MD5
7110cfa4d37f7d189c1ec215ca822061

SHA1
992eede5967bfd6af4fcdcb81b6e24433c8a64b9

SHA256
847590d0f4c604318bb4e935b1c4f5d601c42db8059eb8ea9562ead10b9275e8

SHA512
3d22fbae16f8916ea749851bfab097b936196521d304dda92665650d7e0ee6f7cbc1c76db51d1d7a998b7faf9bac0f41eede47eaa5fc57333280e5ec3d59fa81

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads