Analysis

  • max time kernel
    19s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    29-08-2024 08:28

General

  • Target

    8e00e43db6939f7aa53999cc8d8d687625c42a1c707ca74b9d540514cdc7d65a.apk

  • Size

    2.8MB

  • MD5

    4c307e6962c91e6ba9a7a85f662f5db5

  • SHA1

    c76926b8d6af7f8718510c200f2083f842ba1ac7

  • SHA256

    8e00e43db6939f7aa53999cc8d8d687625c42a1c707ca74b9d540514cdc7d65a

  • SHA512

    17112c92ba8ad9a36ff8104b6102d33308effc4f520f3f430b2dc00ffd50b1efc4b9ed6b675597b57b9809e805ddaf99553069a7882e62f0c6191c85a4e52cc4

  • SSDEEP

    49152:uPSe9096pV6rX+Q1VpBaHoIkoo59X9SABZ+nm98mFBXAwtWk0ESkbU6Yf:uqe9b2rX+QFMIIkh9tSABAngW6af

Malware Config

Signatures

Processes

  • X.God.X
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks memory information
    PID:4270

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/X.God.X/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    d286014449329c54816b4f908af5f127

    SHA1

    04036b615edb80696daba8637d21de61858e81e8

    SHA256

    8df330ddd91a082806db42dfac35513754fdba19970ea8a813d1c81ec89ec2bc

    SHA512

    3650ebb36b63e6fb058b4a1fa74351d2513fadd9d95779706385a422a2f2cd7ac412179aa9be61b78cec25d9f59d226849e69fc9dcdca2b779bcb8d751e93eef

  • /data/data/X.God.X/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    6e2b3cd0ca10a8cbfd6d61ebb0b9ec60

    SHA1

    f08fb3b788b5c43611bb5a445850a9a874b9e36c

    SHA256

    ab3b8973ba2a279d8c629d2378e615088753847c0d0d354397f055d935d6796b

    SHA512

    ab3a634b1f0d416a6d4ad3101f1cf21d900dd4735fcd017048069aad6c41fa769336140579aea7bbfe7c770e502f70a568c6908c50059aff10b5e020e28d35b4

  • /data/data/X.God.X/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    102375e00049feda5231ca80eeca05a0

    SHA1

    207ff4a3ff7e904d6c8ae134afd2b470dace36a7

    SHA256

    6f1506fcc38e3d16a6fc286e68700e058036a494b8878feaa5ed5e919adc85da

    SHA512

    a83913bbcb16efce02334c0d0c602c2bf6ccb00fe537a2a587f79fff0f8f0bdd9b8fa1ab9a73f353f46a405da2a11cf4ec0655d0ed6ee7b08ee277e0e55477cf

  • /data/data/X.God.X/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    2b2a9dad2dd07ae66753fc1fe5ad066e

    SHA1

    0e2c189da625a3298197b1e4881d8cf2a6a94a49

    SHA256

    54667efa95457b228039d1b1254dc370c941e53e6874c7fb2b1dff7052439109

    SHA512

    53f074d95385f6bd4eb97a2c113bc0abb0b74911caeac0260dde249df0f6edb623ee177bd73a6e41f0dbee12d127355cdf936e8063de07154e964b06c0690ba1

  • /data/data/X.God.X/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    3e881d9a01ca707bed38018ac69f4518

    SHA1

    5820f9351d7cc8082de6e5686eb9f8fedf6fb830

    SHA256

    4a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c

    SHA512

    8f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8

  • /data/data/X.God.X/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/X.God.X/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    d0dd47c54dc7fc40e2f383bb0d317c78

    SHA1

    cbd200266500fd327cd86523547aa8ad7f45c1de

    SHA256

    7cdbff5bde131fc6040911c89f2ea5f61ee9d0c3f6e38094ebbedf493504eb7d

    SHA512

    a4c4a679e478a8fd37059c49d7edaf78e3bb31aeff7154c7196a622d43a5a2c3e04eaa450af708a9fa1009ed6850b0a88a6a18198135d00211fad76df438b6e6

  • /data/data/X.God.X/databases/google_app_measurement_local.db-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/X.God.X/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    5bdf3c495b58db6014a02e8605d5220f

    SHA1

    163f2c7bb11776a9e6c6ab9ef4878de7fabd06e7

    SHA256

    8a5eb4379ebeb8631d79ab8f44e6735f17b608ae4cc70fa1aac2821204857301

    SHA512

    5e469b038b534f4a929b395abde393d56af4f4f376df245b55e81ab3cd67f8f7c4c68801609a0e1922e02364382201e854bd778b395dddb476d9ce15ff053d0a

  • /data/data/X.God.X/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    6f797b64e2d947855943182460008cd6

    SHA1

    916f1b3e441810bb78e1ba91fa674aa4ebf7c5ee

    SHA256

    65d9935c60fc2e5fb0b9faf51e3ef772b8fecbdad9114e78fd302a855783e625

    SHA512

    76b194c1c12f04372f055b18fae68583cc6edc8c4c4d859b27b1fcd826c26f77a28c1ecedebf441b6b55f1dc7b6c60be8cb36b8ef7394c3db282682f72c22825

  • /data/data/X.God.X/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    418e1945cadd6aa26cde30046b030f29

    SHA1

    1eb69f39ab13ce57b0576bfca12c14292e9ecb42

    SHA256

    ac6faa65e7d7835d50db81d6ec0be9df633f6a40469d793ee92f0e596c4c32c6

    SHA512

    c77ecd7df88ec4d7b34f97773f816542e8afa0763c258b80cc1fdcf1ec9a7456139353b20ab3ed7825c846e16f0a7669f583048f2eade407bdb791ede0454489

  • /data/data/X.God.X/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    991dd64527d14e46ce908e311ced0c19

    SHA1

    05a1407fdfabe25e15b1c3519ccc50d825808199

    SHA256

    a6332775cdafa7f5742588a3a340419fa6751df73b6164183a5c157864d6d580

    SHA512

    7724053de93a5de0fea2b332ccf468888e37a02110a67384c01c93ab4433889a671caa172ee59e1b317200334f5436f8e9fe60c851947ae437b6bcd4c34d0b55

  • /data/data/X.God.X/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    7adf6505479693f098e4891dfec8b6d9

    SHA1

    d6b1f15044636d73ffb13057b731fc6655c8a12d

    SHA256

    996bd0bece317afb3c81a0e111b3d7180e6c833a31a20b5b040990021a015470

    SHA512

    fbed21eb196c34f0397f0010ca2c943f5d666752eb34353ad8288fdeae88202423b4e3f25a08322cdac045bdc2171f776e8ebdab6f5344135ad1a75e6edf5db7

  • /data/data/X.God.X/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    1cd9b6655ee0bdc2a6c64f0768d65aa8

    SHA1

    2625fe0d62bf5d5973e81c4fe577a561b3e44006

    SHA256

    1491548854fa8f850c40d067ce12850d85f70126ee12298a3963ebd8878568d9

    SHA512

    07d4acbbbde627ec8db8011f3cd2c6864b4f9f382c34d354b5ca29d1ee71a66f01154d3f6a49d52aebb041e2ad58ea2d905f8bbf18aeadc0a7c7254b977158e9

  • /data/data/X.God.X/files/PersistedInstallation6590536194573467670tmp

    Filesize

    569B

    MD5

    a8687c2d602813bd150c2f343840ab86

    SHA1

    0f7301289c72213390a49c6fc929abb8c8e30d87

    SHA256

    fe8edf1c19976d9ad6e818fa09a5a6af56b33be4a74ebf3d96e5bd0eae44925a

    SHA512

    46f4618d41e00b08c2ae3b28b8a7d924295b2edef6b1fb990e1abd765f8d0254ad44969305222ed68dc522719a2e562b50ae76c276fbc75b86ae0fa118a8a74d

  • /data/data/X.God.X/files/PersistedInstallation852077802510592925tmp

    Filesize

    90B

    MD5

    544f4b0ca45bbae595f2c5e7bff053dd

    SHA1

    5a34deaf5608c900b2cfd29781cd452c7f2b9ca0

    SHA256

    d38099e973b7d1d477b1163a53e30ff0de9125b7fad18999294f6fc7647d6e39

    SHA512

    649be757cbdbc323617cf75305073fd5eb07696dc9f1efa6c95e0fea713d34aa5338a53b3ddd4a23c35112ee50fb28bdddabd7208e314e38163c471dc5b1c611