02c83463268118258e506f7698b4d1518df95a2b2b6c607dc1302019ed7b42aa

Resubmissions

09/09/2024, 00:14

240909-ajgqqaveje 8

09/09/2024, 00:13

240909-ahyb3svdra 6

09/09/2024, 00:10

240909-af5ndavdjc 8

09/09/2024, 00:08

240909-afef7avcqc 6

Analysis

max time kernel
7s
max time network
56s
platform
android_x86
resource
android-x86-arm-20240624-es
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-eslocale:es-esos:android-9-x86system
submitted
09/09/2024, 00:10

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Spotify-X-Premium-espacioapk.org.apk
Size

54.1MB
MD5

487b7f9769a1df2b90b2587ad368bfdf
SHA1

2b38044124d5c1056adfccb6febaa5fdeefbd1f9
SHA256

02c83463268118258e506f7698b4d1518df95a2b2b6c607dc1302019ed7b42aa
SHA512

2c5b1a609591900c44b5c96c1913ecadb5de8ac74a7de87aa9271a0119a37ca447e46f6e060eb4d6bca1e549ad9ae673d2e113858d0987dccf1bc7d389638588
SSDEEP

786432:6X2xGV95aY3D54LY4I5GIuRbRKbLBWxpyqmmq2ntnss2:SBH5/OXqUQLsPyIq6j2

Score

8^/10

discovery evasion persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.spotify.music
/system/xbin/su	com.spotify.music

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.spotify.music

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.spotify.music

Checks the presence of a debugger
evasion

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.spotify.music

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.spotify.music

com.spotify.music
1⤵
- Checks if the Android device is rooted.
- Acquires the wake lock
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks memory information
PID:4285

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.spotify.music/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.spotify.music/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
94649c76ff2004b0bf15022aab37793c

SHA1
a2d855d405651577e278308de5a8a606441de4ea

SHA256
2d6f6a85ba1141f9e6aa3ee8371e106024c97477921b94e18c328a8cefed3a22

SHA512
7e67fb39fdff144d7c6f8843eed29afcf46a4f6123c6e809b64aca67c12cd41c885473c8f8f7a8e3ad4563b86954096882384da8d64feb661168083e4e27ca0c

Download Submit
/data/data/com.spotify.music/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.spotify.music/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
59bd1e2a5d7f3e00c6333249504195be

SHA1
abf0c8a04b7d56d9e31514cd0c36467e352d6003

SHA256
61163aa7781e9afb4b9334a75b90eee87edf5ee0647b86907b236de7491ec6ca

SHA512
ff009f04bf9763db3c3376b3f4167027cac3045d890618287eb2a82e5d992cb81852b0d09f5bdcb634ede8c841b6db5c5dd029954755dc63642ca0fc5b605e36

Download Submit
/data/data/com.spotify.music/databases/event-sender.db-journal

Filesize
512B

MD5
75de1ac50f4fccb74b865137d8b46f21

SHA1
1341112d379853b49d1bc7259deed35c8bcb0ecc

SHA256
58d08992e7ed1e47f057f9b56e5b310fa8bf9a70e7b3434cd587031c3cfa9765

SHA512
3b835f55f0974cf34c533a5e0fe9cc4fd18783a8429a5fa9797cce97bff395926b643af187709613bc63a9fa15bad388446114a8ccebb149a425e497b3b8c4a4

Download Submit
/data/data/com.spotify.music/databases/event-sender.db-wal

Filesize
16KB

MD5
628f5d39f2ef7a215023f92d8e91a2e0

SHA1
9babbeb4e9ae07fed5727dcccbe456e1dc28b284

SHA256
6004f5ac0454f681988613e91048dd020879560a95f21080ed8e413d8af26ad9

SHA512
43586d2d983963a1a8415432d91a180157001688105f95499eb75af9a157e45ee2fc14703d3dc5bc12e1004c18037afba3f793911d82f797ffcaed5fa2055eb1

Download Submit
/data/data/com.spotify.music/databases/event-sender.db-wal

Filesize
56KB

MD5
0de9723d2d408fdb7b8a1bef258f839e

SHA1
30f686461b7962e05cb2990eb95ef6e487051384

SHA256
afa4cc8f4c4cd3e2073227d47c11223722775222895174a258ea739a90289c66

SHA512
a5062bc04df09c54aff9a36ae4454d76dec199d106095523e6f78bf4b1c5215251f3672a664c7235cafc6ad7c48f6572e88b84208d39f09576685e32e3f8c8de

Download Submit
/data/data/com.spotify.music/files/.com.google.firebase.crashlytics.files.v2:com.spotify.music/com.crashlytics.settings.json

Filesize
713B

MD5
1f5ac87ae8f2df1eeb3b2b766848c358

SHA1
6ccee84ab86b9972d891df1dd238952efb70ba1b

SHA256
bb633732a240f94e2140b223953cd7e6cb0547e6985a413919dd9ea98e0d1fe6

SHA512
56d3fc9bfc877e5d862a3c5522017c11ef09cb26ff4c47ba1a223f536fb055391dae35df9c5142acc27eb376906a830d878d106b774d1dbedcae6be06329fcbb

Download Submit
/data/data/com.spotify.music/files/.com.google.firebase.crashlytics.files.v2:com.spotify.music/open-sessions/66DE3D1402B6000110BD5D373F7A1252/keys

Filesize
465B

MD5
4e3c865878efbd4d954cb3d5c332c90a

SHA1
bb2853ababcbd0876eccae7af153eda8e08d6e68

SHA256
f26e9efb4963662f86f1470703cd5f53f564654f028b3f3d469d0857dedbc183

SHA512
c00d184678eadbc2ae571034e9d6877dd22ff661fcd9f56bf3575eb409c43f7a951b0e574c2552b08eca53e30728cef8d8451dc08156d8f8c63ea9028b7fff3a

Download Submit
/data/data/com.spotify.music/files/.com.google.firebase.crashlytics.files.v2:com.spotify.music/open-sessions/66DE3D1402B6000110BD5D373F7A1252/report

Filesize
758B

MD5
7b259d713308934f4cb2fac6e4fdf13d

SHA1
02f5f590935d7493f2840c208ceda89dd6757b70

SHA256
d475da19ebfc79e818d42d2a5911469505d935cfed57ede23a5ecaadd7afb574

SHA512
c22cc67437651d561b899078a025b9b192f0e2e9e3bd41bb1899476ae41801364e5a94e95fa911485a96a6b8baa0383c2f9468e1f7473a3760ff51af98770f84

Download Submit
/data/data/com.spotify.music/files/.com.google.firebase.crashlytics.files.v2:com.spotify.music/open-sessions/66DE3D1402B6000110BD5D373F7A1252/userlog

Filesize
3KB

MD5
3db2617c497468b8d585cac1daefad72

SHA1
8594965e16f351835eea782523b65a2b4a2bf40a

SHA256
84ee25f081d12e691f98b9ee33436984e77dfc4cab2c6e09013bb021195d1759

SHA512
9f73da3f0a8bbaba77822a3d0a4a9bc32286fd57abe9ad5100e2d8b09d6e8a366eabf33af3cc668e673307ea48df196d8efac29138adc7da31bc22ac0011961d

Download Submit
/data/data/com.spotify.music/files/.com.google.firebase.crashlytics.files.v2:com.spotify.music/open-sessions/66DE3D1402B6000110BD5D373F7A1252/userlog.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.spotify.music/files/PersistedInstallation3558220775608508496tmp

Filesize
558B

MD5
6ec31a0300b5f296c1f6eb3ea326d5d9

SHA1
50d2a07d6e77b2420a799c13188d1a362d0854de

SHA256
5a031e343d09f62db7f0dbf69db176fd4bf99d4586b45be3c201483dfbee3ee2

SHA512
deb14107b630637bdad07fa6abaff8c72675c845f7588e58e50ddc659641843e75cefb32d6aa574f41adaf7a150a0f09f817d43a7bba190fe9692efcaa7f205e

Download Submit
/data/data/com.spotify.music/files/PersistedInstallation5232915424120174597tmp

Filesize
90B

MD5
4d96663b6bdce599cde417dd6a2c1a5e

SHA1
e5c0836cdec5decd843e1faa56a7f94408c9bc59

SHA256
5e2882f7cbd832a315fa081656932fb7b4e17a5a15fc26d23d0b2d8813dcbd9e

SHA512
e232eb86f1f7b070860d6a391a2a9bb682511fa5ef3020d6f974253ff1bbb89aa5348810a2fb7caafd8a796d8fe875587c904ff819017965474776dc0367b947

Download Submit
/data/data/com.spotify.music/files/asset-loader/cd_1.png

Filesize
11KB

MD5
c8ee1c6cf74673859597ebe54ba3682c

SHA1
5316efe32c7e3b370754d8f660a6c7cd0ec8949f

SHA256
6bfea32080ff480e18528b7d700a30e62131da3b4c30dbfa40aa901d2d82f263

SHA512
078a2296f4870064704d394cd50bd662cea0d4580205e69bc8b45fa7f94f774609c1d2fd5432925370392dce46aab7ceff74973657087de08a4864a3135f2876

Download Submit
/data/data/com.spotify.music/files/asset-loader/cd_2.png

Filesize
15KB

MD5
ef77dea408fac41993feac8f36359f3f

SHA1
9a24cac86ee06a107da66f60f5372d3eb47bf2bf

SHA256
15e80637c1bd25e54be8c3b63befb4231e2a958f9228737a62567b7e5c1207e4

SHA512
406b7c9b16cbf555c55c1315c82afe17db668f72aa83b60dd585485996088c82d56de01820d4c76fa8ec1bd68bba55c8a6ea298cc3d9044062f40fc57b0d1ab0

Download Submit
/data/data/com.spotify.music/files/asset-loader/cd_3.png

Filesize
16KB

MD5
be26794a16d34f9beec89e9af2e1df7a

SHA1
cdb323c27bcbf1873855859a5bd1eeb3e0e9afa2

SHA256
8066d897665a395ae79c58a8ad1900c19df49745411401f07f79ce191fbe534e

SHA512
db42687bfbc346135d36d40e4e0f06679664733d5b7d2e93464ee0004ba4e8f0bda2253fbc95b9145f93132d7eb560730ec33cf3e78bcde6666d6c3957608c0a

Download Submit
/data/data/com.spotify.music/files/asset-loader/dash_1.png

Filesize
7KB

MD5
a82dc613959021f214ef4cf78600798a

SHA1
ddf3c48536e8c6ceb13ff63fac449711b263fa63

SHA256
82bd6752f0041385b05246179b51a44d5e0c1ab87243142fb15b2b523c48ecae

SHA512
4f79139cfb403b271d25e30c303565b483906267bcfb1cd08250d054c00b3f0b4a3e7b73ece1d78b729e30b9a29162916fceb4b389f1740a458f8877bb5d1d9f

Download Submit
/data/data/com.spotify.music/files/asset-loader/dash_2.png

Filesize
12KB

MD5
2d50ea93940d84f42da01f6e55f4cf26

SHA1
cad7222672dae8cc94b47422c24b4357000cd203

SHA256
dd6afe50070fa94658a71a283598fc3d77d6d72f4c22e9aa6b8e8b9c0eb6eb2b

SHA512
2dd48b5bf8d232d771f2deafa783336e4cc8c705575f18ae6f6ddfaca94caa3c9dcca8258150cd84cbb7f5009c984b1060bde3525f6c23333522c737880d959b

Download Submit
/data/data/com.spotify.music/files/asset-loader/other_media.webp

Filesize
8KB

MD5
0a5023c94f064848498164164e4005a6

SHA1
07f065bdcaffe76d9ab2ccbb8819d435d45c88e4

SHA256
c4d1d6e5e59ed8b23f270bbf808035b355b4f8792e0bc2609e2c7543dc8fc7ca

SHA512
a76a010cce9292319f0d3d8a05b578c70137daa192699abd808542866e037d48376437f7fa7b331f363b2546b1a457529998c77e8bb5ae20411e500ce2b2cdd4

Download Submit
/data/data/com.spotify.music/files/asset-loader/vent_1.png

Filesize
9KB

MD5
41448628514362a1c9e2219936fafe5c

SHA1
7e9d61d1f96ac2cc7b2f048cd3b7d8c6a7683576

SHA256
6a41109ade10c48f346ad8a5fb8eac0479afef1c71b94616356f57fa0a54db2a

SHA512
fc5abac0f90346effa36803ca3488dcf518ba4065d5e38788c5846062d065c2556708c54170815f8312bb9513dee306a47b46381bbf09602179136d639e8092c

Download Submit
/data/data/com.spotify.music/files/asset-loader/vent_2.png

Filesize
20KB

MD5
0ef617da8f17d53d24278fa3b3a8a739

SHA1
1dcf86c4f788d6af337f73da37b2573e662cac7d

SHA256
c525b5fbc443b4297272ed72395c202e78596304e2baf9e211f32d32ce4cb2e0

SHA512
d65ee985358942407ff4fe708a175551d5e8bb34ad690ec40d944e106d8f4700f7e9d39e7aa915222ad8f6ddc095d249064f768eaba0e1104ddcac088a2d9a4c

Download Submit
/data/data/com.spotify.music/files/asset-loader/vent_3.png

Filesize
22KB

MD5
68992e12a518dace04db849cda37f0b6

SHA1
30aadf709a04bc3497c4287edc6c762e94bdbbd3

SHA256
846a15d3daca11fface3570607694e8a3d68b3f032930d16d98d2d34faedf614

SHA512
41d40e8d2a085e3db1671adb210ddb6a9c7fd889fa130b9ade2affa71be84944368a884991b4e4ae225990331b0e2d1d52c7ea9169cf9aa802787e9fca2d0990

Download Submit
/data/data/com.spotify.music/files/asset-loader/welcome_image.webp

Filesize
40KB

MD5
77ac3b1c7ad52583dde940d15c4eeaa0

SHA1
5f346bdcedda436f6e43b9f8e12e2bdc796c4998

SHA256
9314e063d2ef459047f86a207b99a630c8b11fa396574d2c0fa135dfc14c5acb

SHA512
60201a7ca18889f06868dc4b7cdab44789896812b15b330b3420540662964259745822d964b3907d01c00238ff4a5e67a775972c13f16af0c6f436fa1209a438

Download Submit
/data/data/com.spotify.music/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
9484524f7200fda3f05cee8b7535aa70

SHA1
19d44cb8f09096d0d5364c67613147a9e7e57885

SHA256
be8eb5b705b304688b50aec0f84c0b94721ba4a255d17c593a3be4d89dd1d731

SHA512
252dd27b34351d22e968c5cf5ab8a5c146ae3f7d31a0e288a3356c9a07687342bb4b745e1a9931d95b77d3f377a66808a29cb4bbf8803bba6c45826e063391c3

Download Submit
/data/data/com.spotify.music/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
2f22dd1eabe748fbc89ede76c94a0486

SHA1
6a3db6054c37ff5023a776588b6df446fd222322

SHA256
573259ab6519369fb3ff160ddef45b428aaa38f3844e5048899b2cbf892361ad

SHA512
f3f733c20be2d0f65d4cae74db639ada97fc0a76331867ef91bfa562a58dd1900e8e70a7641c17ff224825c1c92350f18a18a0949ac30faf3a0730dad5b75890

Download Submit
/data/data/com.spotify.music/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
92998a110962a609a627aadfb58e5877

SHA1
53763299c20d09ae459c9c3255d084cda7560c0c

SHA256
67903573f110fe8606a49b2d5f79bcae03248d1077deec9d8da0979dba945636

SHA512
6785a883b85954fcfd14dcaab19b161ecfcc0187a36bc69e26422f6cd849b6056d9694ef7ea029719ffd8bfd6cfd0fa370f6f29ebb4105681c7944c3b3106101

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads