0e51613c7e0956d96cdc76ae1f44f45d1e72b94115ed60d6b0a9eb1620e2b84a

Analysis

max time kernel
123s
max time network
134s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
12-09-2024 06:50

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

base.apk
Size

2.8MB
MD5

109a6d4475e2a75f80dd1d4cefae7200
SHA1

36915de350398161cf825265b9fec0c702263f55
SHA256

0e51613c7e0956d96cdc76ae1f44f45d1e72b94115ed60d6b0a9eb1620e2b84a
SHA512

a163e82a57ab9631c2d50651fd9ed1cee3d4b342bd4f24c0adc7a253e18f9af04e89baf25a289796a420d0bf77971c5f1df9a2442ba309024310c58f1e338d93
SSDEEP

49152:WKu2GSlhq+gpveu9LJOwtQMCY9Guk/Bkoa3lNf0viCsjRCOQEbTMozt:jGSl0veuDCMk/GoajySjRCynt

Score

7^/10

collection credential_access discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	x.akuma.x

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	x.akuma.x

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	x.akuma.x

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	x.akuma.x

x.akuma.x
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Checks memory information
PID:4608

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/x.akuma.x/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d70ada56f971e2368c64dc069b7ebc18

SHA1
ea5551986191031966fec5042b43b676c8285164

SHA256
180766adfb711d7b8fcc0e035f0013cdba8debbcc8e35a1d25e7a717e28b4fd4

SHA512
cdd94e5e7c27eb2799ee62e6c0fd3685c595c260e9604c3e57d71be7fb892970a86bea27b9863c7238b55e3390627168e1067052ad30cbd261617aa741040432

Download Submit
/data/data/x.akuma.x/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2ba81b7bb461d4faa5238d18a0c4f14f

SHA1
189ee3fbe17c8d977a412e0da4b89d93895881b0

SHA256
1122c5f88fbd118d68a12103289b8f594f33de3185c5e19d4b9ef1ec5ce5b2d2

SHA512
b34eff04a0b5b7719ea9bbd9d21b7867c0fbc9dd3b920bd7bda43ce5452645246c86a87d2506d87bb7f7c7dfa19346d7bca9e2e74bd362e59200cbace1e9cf17

Download Submit
/data/data/x.akuma.x/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d70e45b9bf61043e295af0637e7cc8a7

SHA1
b99434288e2eb0ea6f8e8736e0e3f5c379dd0221

SHA256
863b1a53bef9e4b74d4e6af97617537cd0c33ee30a008324075f4795fa11e4a7

SHA512
45de2b5f74d934bee1b7c8b37e16aaeba95bc00c47b86d1eafeeeb7bf918bbff7ec3525262ba4608de23a0926f74421515b01a0ca7945c03fc259dbd5e351614

Download Submit
/data/data/x.akuma.x/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ccdc143c434caf8a25e67b8a99b494b8

SHA1
cbc34ade200d0c687c6678f9e378264f51361dad

SHA256
163fd872c04b30db55c087a9fba1e1b89b520932c95b5300dcfd3f975bb53975

SHA512
8e3dde9e79074273d781ac7dc782aa975f72289c1084a53f872ec996e688bf984a716e8eded24160e7e85101cce29945465a5379985b0d2d0eb775a1b80cbccc

Download Submit
/data/data/x.akuma.x/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/x.akuma.x/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/x.akuma.x/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
20bc8d0731ab6b47080d5688d22fe38a

SHA1
ef4d350e9e0178d6726adb3d611ef02efccdcbfb

SHA256
e77da4d442e3c1724acc29d34f52cf3a59c8e674245531e54be3ef1e3a031ab4

SHA512
ced2db2e70d730eb921157ab81fb4831d10f02823adfab268588432c891b7f5a4372d233c1f800a8fb57209353e5b67babbc7440b65506a6f0f82e36425a5f89

Download Submit
/data/data/x.akuma.x/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
38fdb78d497da0e6aa31a0eb0f6ce7a7

SHA1
2faa3eeb50c19bfb2136c63b13d60e9664c8160e

SHA256
cdfeb4c1a6e5c092f9fb3b88c71be7051ea6cfd115aad5fa99d011938f352853

SHA512
1fb863ea22a0048a8f8eefd04d87e217bcdcc102fa7410bbb97265faafffc5c8ec65663bbba3d5ac10bf78f5894d593e156f8f10a7f5b30afad36cfabc6f62bb

Download Submit
/data/data/x.akuma.x/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
e6535ee0685f39be1192fe17b2d91495

SHA1
10047337af36765887610f6eb6245c1decc07b41

SHA256
2806c42b78673288a97a6ec9abb0192e65b65b9de59b02c385bf06c6bc402f4e

SHA512
8f1e346b1d8e4e10710232791f6b319fec7423ee808af15d0fdcf3edbe86b069f63d73ac80d116f1ebf6062654e5a7366731450e8131576c033b10b4fd6183e6

Download Submit
/data/data/x.akuma.x/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
82b240f443ff3065171ee91bb7cf82e5

SHA1
ffe4b7246fdd3843cf5c7ae712a9195fa0be03f4

SHA256
7eb964497b059cf36f47ff451b59e026b57c1524ddc6f1b8036ff6f442478d02

SHA512
86bbfecc001e20975080846cbcfb6dfee30f3b22a24519500b9a309726e93d81ed9ee75221c1804fe352d6c75d3e9cd74cf06576440cb13f0f399fad6ab14365

Download Submit
/data/data/x.akuma.x/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
555bb76cece115dcdd860a3514e9de5a

SHA1
892612fd95102d13e75385acf404956432bd114e

SHA256
89174cab9f44dc1f570f1b1da3fc0dd4bf810be92116b55bff681da5f1550475

SHA512
d2121cedefc646425eee935c65f383e5a1ecabe83ebf2956452535ce1191e7b66e4d571b55bc5e754134d6e18e787dc4fd44f1c76823281eb9e4290d4fd6465a

Download Submit
/data/data/x.akuma.x/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
1d0b5237b84b9e68f46ce2d96ab28b7c

SHA1
bd5a4510449713e38cb185fa89bd298164b07b51

SHA256
078c25a462db11fdcae9a78283c25f6b16185c609ab649f28b34ec1980674aec

SHA512
09fcc2700f10b696cec6abc47bb077007562129ffbc95fbf9472adec1ebee8dc0ed97fb99e76b99a641cceb107a7bb1d58d9d0fe6bb73b2f09d4ff9b7d05b2a7

Download Submit
/data/data/x.akuma.x/files/PersistedInstallation1844822447693496015tmp

Filesize
90B

MD5
13422ddd0f09c491f9fb0cc748f6d646

SHA1
0182156607f19144d53974fe896112933f35e585

SHA256
1835748d4da56a22d3904a80fde27e3ad802c29267eadf7e6870304550dc80ea

SHA512
e29c83426774854c9ff228ec2837e2da5519372a5ba7317e3cf1fd6c1a6bc47b954eefeeddf560237eacb99846afa0de1f24b98fd60941cdc3d133890e3fae32

Download Submit
/data/data/x.akuma.x/files/PersistedInstallation249283770007942672tmp

Filesize
570B

MD5
2e94ed990509a28bc16698cbd0f5e3e8

SHA1
93c328fc53c0f2c7a4a29948da87115332ba1df4

SHA256
0d613b35ba4339f2ee9cbed8ef3fb46b97405d89b36116834762b1b5849306c6

SHA512
ec9da22689feec33490463cd9a70a426c1c1d47c0322ba8e7099246e18c628e15fef0c1987c69db7be61d75458b4f5eef226fae8acce4c994fed0c7b60fb63fd

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads