707af85272a6b82812716f17210be4f0f3cdbbda5423a7b1547390df5a24a4f8

Analysis

max time kernel
87s
max time network
133s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
31-08-2024 14:37

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Y-TV PRO.apk
Size

8.5MB
MD5

5c898cdb727a2462fa19948e31d7b72a
SHA1

0dc9124efab4d7d54b274ee5bd6fbe6f77a0cd6a
SHA256

707af85272a6b82812716f17210be4f0f3cdbbda5423a7b1547390df5a24a4f8
SHA512

0eae47f5ac918d8dce762bf19cebb057f95c0bbe643e7e0fe9d198adf2cb8def46a43abea1d8bc4d8a5e05391c4f3577104acf134e9e25bed4bb8a3a3e90efac
SSDEEP

98304:NEpdPaLbNpb+muZlNBmfB0739zSE+DARwJXQ4TVtnQ72u5tMx6QURKHZT3W9ZymX:NYtaLPryLa0T9EDUwjKDMxo0DWAV5s

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

ver3.ycntivi.off.premium

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock ver3.ycntivi.off.premium
Queries information about active data network 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

ver3.ycntivi.off.premium

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo ver3.ycntivi.off.premium

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	ver3.ycntivi.off.premium

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	ver3.ycntivi.off.premium

ver3.ycntivi.off.premium
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4482

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/ver3.ycntivi.off.premium/databases/androidx.work.workdb

Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/androidx.work.workdb-journal

Filesize
512B

MD5
c9c60b5c8634d1ecea143e2cbe5e3aa8

SHA1
e9c3891cf8c59dd763e9932ff1608e9f1c953270

SHA256
68d5c607ced6515bcc8934297ad58ee90aa0b55127c13d0b5a9ff8539470960b

SHA512
27070b1d8f73c96f889ab10fb5762572848ca84f75a6b6a3dc2779029e4d4f4317aebcb96976e33a895f481d2be57a2ee1515655466b2031a799c851cd934548

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/androidx.work.workdb-wal

Filesize
88KB

MD5
8fb9321869ae251286e5b48e7ab07346

SHA1
ad3b1041f351534e4555a1e048457cf1aa7a90f9

SHA256
3385f45fa06f0eaf2cc11f550792b1e9bcb84744f63fb633dd7bf6d411adfc5f

SHA512
d1f5ae101360378008b77e9e756b8c79abfb80e3d323694584b0370b96b59a45818b6654d1355aa93f4b35b0eda7668cc4c7583cd663f3db427cd7c575f9b6f6

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/androidx.work.workdb-wal

Filesize
16KB

MD5
798a3119dd18105bb8ef169421223606

SHA1
ff9d498b6db00908788e9e4c78c11e365923bbf0

SHA256
1021a6d5afb58992b33185c1848aa28e7ee26ecba3f439697ca89d5f37374453

SHA512
70e662fc8bb12ece01334ad3848504a472b99d37cf56c31bcef03616d8750b57f21447e15fd7c6f2a28db2dad77c4ed86a2c06857e72181a5afe5db7021c663e

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/com.google.android.datatransport.events

Filesize
40KB

MD5
1cf3f63c021d755a21623e6d0e86dbc6

SHA1
e40e0f1faa61abcca7ba3394c54c92ff7334b49b

SHA256
100c67650ba652d547d8a1128edc550a8e95541a1d9268a199d1b924294d0895

SHA512
38d72e14f3513ffd26989cbda3df46ed3dd6e731bdfae56440eff6b64760cc13f91014281c9add61e018fe3529e49c63a6892ca22479515816c768b546244466

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
b3fc22e84003ecce1a71bb74eb6cf927

SHA1
8553b80f18c12ad2e3ce3d13773b5751ff7354c6

SHA256
dabe94118aa3812c283faa9bb5207b0eeed019f5a38a20e32cd38576527074e3

SHA512
e171a678f0cabc7b29596ee28d865ee31bc9f4b13c1fb1a8f8a31225da4c2ad02188caf7467f61c5715ca26c6359609385e7a49d69f774368c09b3ff7110602e

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
bf131f7cbe4744dbccf14b3f70503932

SHA1
d29408dc987a5ed0e7b740da4f7e3296888a5f1e

SHA256
ca76f03613f89a290cf8bef7de326cd971eb36d2c88271d661a5b1091478b05a

SHA512
427388cdc29e94a1232ec7e13f85841f688c25fe552602f4192cd72aae192af9a4c1a47e9e63ae62f67c7c4b4a82ae51c29a3e95e2c0794c133010c5615302aa

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
dc22552334fceadbadfb562904c16896

SHA1
0f8412c79bf609a300413068d3bf77a911f3e9c5

SHA256
e9090366505d42461c94ca7b775df710db0476d20c48e8cef9053d28d8f96ab5

SHA512
60aa075a51bac17ccb878304dff4a7462062538668507b9f89abbd593fc09bf9520258a4152781b650db4c7ee97cc9e17216cbb8d3f511b464c74a4cf9320061

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/google_analytics_v4.db

Filesize
28KB

MD5
8dcc55971193b7579c346b486d5d256a

SHA1
6852b093cc1865cb720c08733bb1bfd41e0ea4d3

SHA256
0e69f7b4585cbb99fd4a917e4427a55554a4093233e29667b27a625f5c59c588

SHA512
e5fea476e6345c83fe0446a0283454741530541de9d6f90b424512f34f445972ecfd388a8dc9c74ab416423f539b78c9d7781d18998dc85017cde426e7ed8e07

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/google_analytics_v4.db-journal

Filesize
512B

MD5
e206e2ebbb887336b3dea51aaaeba730

SHA1
9e2e1f05a6ab0fbffe59840ae2a08893fbcf0311

SHA256
2cc9c1046b62f39ccbabf5c6c03706f47a60c4e5f609bb710ce33a467ee141ff

SHA512
428d1e58f99e1977b9f229d947a2203489ea8a0bea028c1af2fcd800732ac60e81468a8307091f024ba004fa8b0ec0158b009359ce4877b8413ae7f0e052a31e

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
a11bdab1867e490cd31cf1a9022e63fa

SHA1
a99bdd4713f608455e9119656b6694c402394d4c

SHA256
635b4e63098471a4bbae8662fd67940b5f318a95619cffa70c3b7fdf7f5bf278

SHA512
c1620482a38fb756e31466342c078d9a891d16cf21e0b61ff1e99c908840f0833ca67e06a4c6b6f8f80b96918e821ef6193afbd2697e01b1388d16412c9beed2

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/google_analytics_v4.db-journal

Filesize
4KB

MD5
27b6a1ed96464072214229f83dfa6c21

SHA1
930f47b9f865722e9f73a6daa0d52267d6f31f3f

SHA256
06b16e546da88f296bdfafc7c5e8adeffd31f4ff44c71dbb2bce732755078bb8

SHA512
1ae81ff166993bd60122c68be1f72e6db7f65cb5b98e246159029a714985053f17d3144470a6629254fb9c5c422791cb594c4ee728e0069746d5637f9b7167dc

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
4a34226db1699a9b2a8a7f4630fc23f3

SHA1
b2f61cfb8648eecd5ae0636c9b2990ca3064775b

SHA256
b5ae7c8c1b3a7d51002d4e117ff22409899163b8da50d98f80253ad7ac8d87f6

SHA512
78945d62b45728464517f695f676affc8d0f603df5bd8eb9a301022fa55546b14a44182e33c9359785967d998a919533f688724ce76450a6105ed5ba204a9c1b

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/google_analytics_v4.db-journal

Filesize
8KB

MD5
63aec3a2c066cf41e4c0cea188533770

SHA1
d5e741cce2542b56cb53017b99e46566cdfff58f

SHA256
022e2e685757a1a8bde572d025148de46e90b9d3a001a932c0e02c2cb66af6dc

SHA512
31d6ac184c8302c7a4a1577490d99e79df8496e6566ff042d4deab51e606d7ef569d863b4fbda2f656079bcd018357bc58ac242005ed2e423294676fc0fdb696

Download Submit
/data/data/ver3.ycntivi.off.premium/databases/google_analytics_v4.db-journal

Filesize
12KB

MD5
8256368609bac4903ab7528f3167419e

SHA1
18815c66191ac28b92b516b200b6edd1d9f31fb0

SHA256
200238b283c7b704ef5e625a43d296759475ae166370369b8258a000a0eeb022

SHA512
4561149a98d81ff62194f544603f0c45cd017fba8148b0bef953501c3f052c4fd380b8191b8bb7368c885bc0f181c451b853c399328355d755591a86adffb090

Download Submit
/data/data/ver3.ycntivi.off.premium/files/PersistedInstallation1224512992309621310tmp

Filesize
569B

MD5
8b7c84bb53d1c14ca7605d6b70b141a1

SHA1
288a5124dd2ba242b170e157bafeddd99f605b79

SHA256
aab1857898a1766ec6abfbc38730d6ab3c40769122aa104a16e88290c0ed0b74

SHA512
82891d9d86635ecaf514d306b589d5588a3b04d426bea485471f147ea9d8872974fe04226b2d80670b0c1714031dee1c8979b0bb20ee9ba84ca48d4a3044f884

Download Submit
/data/data/ver3.ycntivi.off.premium/files/PersistedInstallation4348965423216454485tmp

Filesize
90B

MD5
f0e70d50183478c80972f3d81c0f5bf4

SHA1
a8f0d1005185c7d638c1e7092391e53ee4070b01

SHA256
793c3b75d969f6532188e9b1dadc95f5454d50357bc41a49368df850557037cb

SHA512
4c2087b99cc9464b7f661337fe2108d6d547570b36b31d5cb9019c35a0821864e98c6acd45c872ebfaebadfdcdd2a8e72e88301212c8c1d13818781b5a413356

Download Submit
/data/data/ver3.ycntivi.off.premium/files/gaClientId

Filesize
36B

MD5
6a4bdb36b296828d3490822953aca992

SHA1
d452e4023136fd68bd27c1e8ca78f42ea6a2f973

SHA256
d3a54b38a8e32b9396428068ecc71afd71282827d68d76a79e7010e3530d7d3f

SHA512
fb463d9992fa01e90a75a6e4da1260cc500973635eff6830b5a73b0dd249e9d601ea181576c58df3d9321b735b73268b46c27f6799477f2c8836d30ea72f1eb2

Download Submit