26249b723bdc64000669a18c4f84e9a371bb4f797672f787e11b717326cf56e7

Analysis

max time kernel
149s
max time network
139s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
11-09-2024 22:08

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

26249b723bdc64000669a18c4f84e9a371bb4f797672f787e11b717326cf56e7.apk
Size

4.8MB
MD5

c6c5aa6881e51aca4ef64ede33c54b58
SHA1

38336bb270526aff69ca700668fec096325eaec2
SHA256

26249b723bdc64000669a18c4f84e9a371bb4f797672f787e11b717326cf56e7
SHA512

8c006bb85baecd2037004a87a384a904f35047100ea95973f346301436e579ef7aa98fbf3eec895f959a2d94c51ed09bed3d24aea40b0a450b8531c2bfd3ccff
SSDEEP

98304:uWdw4XrTWdw4XSACcLia0hv8B1rcTvpaC08R5hWdw4XcDHSWdw4Xph8+:LdwQqdwnceagu1upRpadwlLdwi8+

Score

6^/10

discovery impact persistence

Malware Config

Signatures

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	dbaifdcc.jgeeeajd.icddjafe

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	dbaifdcc.jgeeeajd.icddjafe

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	dbaifdcc.jgeeeajd.icddjafe

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	dbaifdcc.jgeeeajd.icddjafe

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	dbaifdcc.jgeeeajd.icddjafe

dbaifdcc.jgeeeajd.icddjafe
1⤵
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
- Checks CPU information
- Checks memory information
PID:4256

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/dbaifdcc.jgeeeajd.icddjafe/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫

Filesize
1.7MB

MD5
60d185a080d3a56ed3dd73a08a9893c2

SHA1
fd32d00ef05c5becc3deb9fa60c1fd4ee52a8213

SHA256
33f1e812652a45bef93d0bb39cf2beba570cd2aaf9f893d0ea215f7f488624eb

SHA512
ba993e6e9dc71278076f04d4bf11a046df624d8252b6bc6851577242f1e42cc687eefbd6e1e02e24010c31185b6100022d44cac61b931ff0b7993d6a8c5d8850

Download Submit
/data/data/dbaifdcc.jgeeeajd.icddjafe/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫.

Filesize
8B

MD5
69b671f6d053d5592f9edeba0cf0a490

SHA1
cc831561f1bef231778e0a43285f9358d426d934

SHA256
d518dc9e4a8d92d2f51b8e0694a7f8180a8e7c273a9d59dd91e5b7112b91ee49

SHA512
04ab007aba415c507ae9208ec38b72167c3c0904924a6ed2278ec81aa2c8d171b8c766de8cfa714979647645490bb4729e7974134292f0331ae3b16a7d65cc40

Download Submit
/storage/emulated/0/MT2/logs/dbaifdcc.jgeeeajd.icddjafe-20240911220843109.log

Filesize
7KB

MD5
9fa925622c2bce076d58afc1a3b8f5b6

SHA1
69013213d44f12bd7bdab833a603d3feecfeb4bb

SHA256
928b68f740f73976fb40e6236679fbdbb54ea3ad2c37e17a3f13f4b761bd1429

SHA512
e1d57bd71572dd4ecec167f726f3b9aade4244d0b390c5641a186bed96630b48b9819a8e654e2d69e7be8a16e5c3a185a29c2dc5be4862733688c2230b21dacd

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads