02c83463268118258e506f7698b4d1518df95a2b2b6c607dc1302019ed7b42aa

Resubmissions

09/09/2024, 00:14

240909-ajgqqaveje 8

09/09/2024, 00:13

240909-ahyb3svdra 6

09/09/2024, 00:10

240909-af5ndavdjc 8

09/09/2024, 00:08

240909-afef7avcqc 6

Analysis

max time kernel
7s
max time network
600s
platform
android_x86
resource
android-x86-arm-20240624-es
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-eslocale:es-esos:android-9-x86system
submitted
09/09/2024, 00:14

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Spotify-X-Premium-espacioapk.org.apk
Size

54.1MB
MD5

487b7f9769a1df2b90b2587ad368bfdf
SHA1

2b38044124d5c1056adfccb6febaa5fdeefbd1f9
SHA256

02c83463268118258e506f7698b4d1518df95a2b2b6c607dc1302019ed7b42aa
SHA512

2c5b1a609591900c44b5c96c1913ecadb5de8ac74a7de87aa9271a0119a37ca447e46f6e060eb4d6bca1e549ad9ae673d2e113858d0987dccf1bc7d389638588
SSDEEP

786432:6X2xGV95aY3D54LY4I5GIuRbRKbLBWxpyqmmq2ntnss2:SBH5/OXqUQLsPyIq6j2

Score

8^/10

discovery evasion persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.spotify.music
/system/xbin/su	com.spotify.music

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.spotify.music

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.spotify.music

Checks the presence of a debugger
evasion

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.spotify.music

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.spotify.music

com.spotify.music
1⤵
- Checks if the Android device is rooted.
- Acquires the wake lock
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks memory information
PID:4295

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.spotify.music/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.spotify.music/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
ded4d38e6525a2a7a47df7d627082654

SHA1
90cb797112b574824c89b8dacb6a20f6bb947691

SHA256
2940c5a1eacd1998a1dea587951ef9a99dfb8bb627d7b0f42eaaaf1307fa4298

SHA512
b5d483e842a74f8e73d86c0c4810d76b486787ea1411feb558a24e549996499bb570054ce4c3172ceb3218e53cc91ab272c9652a67c3db57e1fbf841aa23c77f

Download Submit
/data/data/com.spotify.music/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.spotify.music/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
7b7d8fc27977c80772d1484f7a301732

SHA1
88eedc34284708a12f426887294aa34ca9bf94c8

SHA256
2b892c5fc1d8d648a55378473fb6fcf29c7dc5f5af566e0051425fae607e756f

SHA512
9acbceda3982c1980d8563bf8be9d8d9e8d67e05f5aca758103a00d84d6a12f2bb95e6ee02f5abb9e1e713da65865caa295056300758e6bbc8a96f486f99d092

Download Submit
/data/data/com.spotify.music/databases/event-sender.db-journal

Filesize
512B

MD5
7addcee1e29d73626b2190768c24f398

SHA1
da24c4fc354fc9b7a39d593ab948f9d228c21189

SHA256
7e5a24f7061a57d2af93b65c2eee8d197380d250acdeb2c11047756dc7d06d29

SHA512
fd19b263ef6950dfce6c623a44028e2bfc6a113e66edb377dc2f9024ff825a3a92a29657514c4d924fb645081141eb7a467cdf86a455cf61780cfdd8a26f8b86

Download Submit
/data/data/com.spotify.music/databases/event-sender.db-wal

Filesize
16KB

MD5
cbb8a944afb8cbced3c89462fc759119

SHA1
d58dc1fc58c825340710939c0f1a3db7a246e884

SHA256
6e7081b684afcecfd631027f4c84412219f0e536e4741892b742591781564275

SHA512
f251fb441e990735a63523890093dd174aaa3a88d7efc569fb27badb10fb800b1cca7c98822bad9b667d8b7c1be1e9b2f6e14ef9a6f2e177e7ae2463f240b633

Download Submit
/data/data/com.spotify.music/databases/event-sender.db-wal

Filesize
56KB

MD5
dadc156bf8215f58e912374c4d560751

SHA1
091e6c1741263f148ddf99813a4ce74b41130ae7

SHA256
bfc42e3e5c044ebbed3a7c037c0fa8702735cf246959f9a67a644aa4b6096241

SHA512
863a98ea4f92a6c98399d7aa585026914d1c04f8614a59322b386639ee9d2c702c74e6c1bafff48f94003bcc1d04eb194d40d589ae4a8f2e868b515b5407e52a

Download Submit
/data/data/com.spotify.music/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
88aa65e14eda8b2222004dda2bc7d9a7

SHA1
0b307cf27e4636a3e2013e91ece21bdfad191113

SHA256
7665dfb3ab5385a6d476aa9071ea02fe29d8d84f80b7ea3c67d4af6313fc35e0

SHA512
eaa86c329e8d7406ce4e117163d69349617fff4958ecb24badc51bb9d3df8a2c1a7b58f055dd06aa7088eccb59bb5061156df20d65215084a6dd3482023e1c27

Download Submit
/data/data/com.spotify.music/databases/google_app_measurement_local.db-wal

Filesize
20KB

MD5
42b6a7d335b211508db91d2fb44f6dfa

SHA1
d1e7e7b081111584194ba79b06dbaa958c28672d

SHA256
1494b1818ff8533177ea1b4c4304476ec9cee4725bdad4c5a591a58d2f4e59a8

SHA512
9ba379cead9440ee13d595dd87d4d30d3bba883729c9b70f8721dc9a97eca56c0af597ad201c85aa4728f687d093caa2901ac38733e34a99d422cc0611f97649

Download Submit
/data/data/com.spotify.music/files/.com.google.firebase.crashlytics.files.v2:com.spotify.music/open-sessions/66DE3E0701BF000110C78CF018C86306/keys

Filesize
132B

MD5
1c25f7012a3b3d1d22be4508e5376f7a

SHA1
3cddf2a69e70b012481e76cc3953d241a40270d6

SHA256
a7691bea12b3f44155afe714f9f4ed6b71dff260e24434f528f7d96d6d661e81

SHA512
be02bfd4e5b5418a6a1530c4c92fe6acb447f148375e40c93dfcc69cd58d82ff5bf9ad35075a831a8a0e65c9299fa316d0ab20ee7164cf790e256054c8984696

Download Submit
/data/data/com.spotify.music/files/.com.google.firebase.crashlytics.files.v2:com.spotify.music/open-sessions/66DE3E0701BF000110C78CF018C86306/keys

Filesize
465B

MD5
4e3c865878efbd4d954cb3d5c332c90a

SHA1
bb2853ababcbd0876eccae7af153eda8e08d6e68

SHA256
f26e9efb4963662f86f1470703cd5f53f564654f028b3f3d469d0857dedbc183

SHA512
c00d184678eadbc2ae571034e9d6877dd22ff661fcd9f56bf3575eb409c43f7a951b0e574c2552b08eca53e30728cef8d8451dc08156d8f8c63ea9028b7fff3a

Download Submit
/data/data/com.spotify.music/files/.com.google.firebase.crashlytics.files.v2:com.spotify.music/open-sessions/66DE3E0701BF000110C78CF018C86306/report

Filesize
758B

MD5
33fde202cfbae432903897e598c39550

SHA1
24e68b1f46c9259b96f94298786161f2cc3812b0

SHA256
2e41f61b1cbbaf1171c235b187d1f559c1a0e77dbb52bee9d02801b00b62850a

SHA512
63fcf7eed2f422f5e2332edc9808a812a6e256875304533b950445aae72872a6a1be11eb13af4a261f4cc591be14184c20d5b723ac495728e7cd4b11d3d4d285

Download Submit
/data/data/com.spotify.music/files/.com.google.firebase.crashlytics.files.v2:com.spotify.music/open-sessions/66DE3E0701BF000110C78CF018C86306/userlog

Filesize
3KB

MD5
51466fddbef03a9cad6aefd63faa998a

SHA1
562feb2e395a9d2ffcf343de002c5bf44eb23154

SHA256
aae4c45a0e0591d4454a48910a39bd8ba439da02b038b891238639fd9ab3c822

SHA512
811a3937ade09e3b521c318deae5fd5b096d2470210386fb424eaf2b58b68681b7f9ea06b36721f4755ae859e5a7978e6eefe62f58c19767991842cba33f211b

Download Submit
/data/data/com.spotify.music/files/.com.google.firebase.crashlytics.files.v2:com.spotify.music/open-sessions/66DE3E0701BF000110C78CF018C86306/userlog.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.spotify.music/files/PersistedInstallation1890142923871556891tmp

Filesize
562B

MD5
c83a131212c9c021297460049dfd80a7

SHA1
823f093d4f95c8390d3b086ce50928b59d4d66cd

SHA256
c5ec2bb4e2b41c248b9fe1a4fe53d642bdfe83d13bd4ea11bac5b03f4b5b0df7

SHA512
8be8e498ab2d498d9d9d8de2f8bb33145f906c0159773bca647df3e9847d9c1c0a614289830a8cafe86795dad790b511cac7fcbdfe6a5f0a678f976ae8b1b161

Download Submit
/data/data/com.spotify.music/files/PersistedInstallation4250289139247054637tmp

Filesize
90B

MD5
62d80fd343754be4c4f47fdb8bf1dd48

SHA1
da3689082b0db9357fc524edefab7e42da5e90ca

SHA256
7880f2bb16c80c7d1972dba883ff7395d32beaa35a52436e30049de1658a2d31

SHA512
6886d1cd915ffecb6243895488063e2ce4f3615460e9e910564113ec10b9df370443b1421489a848f6e6720263a9d952ba8dd33c2a81cd53f73a32586cac194c

Download Submit
/data/data/com.spotify.music/files/asset-loader/cd_3.png

Filesize
16KB

MD5
be26794a16d34f9beec89e9af2e1df7a

SHA1
cdb323c27bcbf1873855859a5bd1eeb3e0e9afa2

SHA256
8066d897665a395ae79c58a8ad1900c19df49745411401f07f79ce191fbe534e

SHA512
db42687bfbc346135d36d40e4e0f06679664733d5b7d2e93464ee0004ba4e8f0bda2253fbc95b9145f93132d7eb560730ec33cf3e78bcde6666d6c3957608c0a

Download Submit
/data/data/com.spotify.music/files/asset-loader/dash_2.png

Filesize
12KB

MD5
2d50ea93940d84f42da01f6e55f4cf26

SHA1
cad7222672dae8cc94b47422c24b4357000cd203

SHA256
dd6afe50070fa94658a71a283598fc3d77d6d72f4c22e9aa6b8e8b9c0eb6eb2b

SHA512
2dd48b5bf8d232d771f2deafa783336e4cc8c705575f18ae6f6ddfaca94caa3c9dcca8258150cd84cbb7f5009c984b1060bde3525f6c23333522c737880d959b

Download Submit
/data/data/com.spotify.music/files/asset-loader/vent_1.png

Filesize
9KB

MD5
41448628514362a1c9e2219936fafe5c

SHA1
7e9d61d1f96ac2cc7b2f048cd3b7d8c6a7683576

SHA256
6a41109ade10c48f346ad8a5fb8eac0479afef1c71b94616356f57fa0a54db2a

SHA512
fc5abac0f90346effa36803ca3488dcf518ba4065d5e38788c5846062d065c2556708c54170815f8312bb9513dee306a47b46381bbf09602179136d639e8092c

Download Submit
/data/data/com.spotify.music/files/asset-loader/vent_2.png

Filesize
20KB

MD5
0ef617da8f17d53d24278fa3b3a8a739

SHA1
1dcf86c4f788d6af337f73da37b2573e662cac7d

SHA256
c525b5fbc443b4297272ed72395c202e78596304e2baf9e211f32d32ce4cb2e0

SHA512
d65ee985358942407ff4fe708a175551d5e8bb34ad690ec40d944e106d8f4700f7e9d39e7aa915222ad8f6ddc095d249064f768eaba0e1104ddcac088a2d9a4c

Download Submit
/data/data/com.spotify.music/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
d6fc9653224569741014595b9792507a

SHA1
04c5b9f26cbd25d4e1c530a04a323647b2483659

SHA256
6155beb25222d81cca10ddee37a61e1f96ae445c9d8429e9777a333358fa3871

SHA512
8281f373c4a9056e55df7efb99a6f8ee8743064597954cc5d74be57a008ef907be7d19b788a06fe7a99824b8ea56c5f5ad30db4c622757580c181113419af6c3

Download Submit
/data/data/com.spotify.music/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
a3e052c676137bc70bb989d89d769b94

SHA1
b0edf09941ac2360cc4c427183d44ab8743debce

SHA256
67a27fae4b96d91dce5f13b0f7c6a9879d38ab3854987f9e78db869e6f8e328f

SHA512
b78e214b5856f37fad2b5fa4307a23387f0695ab0f666d0c0d040b13d11726ce172c941672d1c5f2c85c7f6fa8753ae554f27b30af98c1f2db9be4106aaa3a03

Download Submit
/data/data/com.spotify.music/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
102b646aa1d5f330e4bfc21a2d67bf86

SHA1
2a1e6f14058ed81d127e01f6305cf00cda2bc9ad

SHA256
7413fbdd5b1105df499d08cc5a88074676a6826a04cb963f5c7346aba54a1f57

SHA512
83f111d31f15b3a19a44bfbc6ad475a7559adc71428503cea1e6e3f3fc2c55581eb04f5a7a9a1a794f1654b6b9973d798024674d7a3ca246ce7612166f9b615d

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads