46735d3ae4707a9d03ea157b6ec00207b744b76cf8c5a8311da4a0475c327dee | Triage

Analysis

max time kernel
6s
max time network
153s
platform
android-13_x64
resource
android-33-x64-arm64-20240910-en
resource tags

arch:arm64arch:x64arch:x86image:android-33-x64-arm64-20240910-enlocale:en-usos:android-13-x64system
submitted
14/09/2024, 22:02

Sharing

Report Analysis Logs

General

Target

46735d3ae4707a9d03ea157b6ec00207b744b76cf8c5a8311da4a0475c327dee.apk
Size

4.0MB
MD5

cceeeaeb72621ef6d140def41a2280d6
SHA1

2491bf8e04b8755b0f248b3ce83f11e79298e33e
SHA256

46735d3ae4707a9d03ea157b6ec00207b744b76cf8c5a8311da4a0475c327dee
SHA512

39786de93c8d2a6924f07dee5805803ed381aaf091ef4db6d1268c5dfa186d7e0017c312aea3f7b3144fd9f70fc0e3a362529fe0cb92004296ab4df6a45e17ee
SSDEEP

49152:Rl9M1oIdGw8XT6FaxJDF3+l6Pn3YFbV7AM5NU0veylPGRoxO3hFx97bA/03g92J2:Rg6VLD55+a3YVDa4MRFxtAko/KrKPHAi

Score

4^/10

impact

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

Data Encrypted for Impact

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.rating.conduct

com.rating.conduct
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4465

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.rating.conduct/files/profileInstalled

Filesize
24B

MD5
086b6ef687a2ceedfbe4eca4fc08d3ae

SHA1
86d1c73fc98e18bb2f10e10b3997bf9a6132c215

SHA256
c642c33b6b1cb01c1771f2000d377fd0334f4f3117896aeb3bd1ee554d6150fa

SHA512
d5e44952bdfdefbc218ad97bbc25fda2763c266a190e2308c9b393912aae6573b8bb5fb4be752abff20d30a168c6166a661bf5d088ca22d77e99536bcf6c1278

Download Submit
/data/data/com.rating.conduct/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
784587032febca5d5d581b2de247c2f4

SHA1
affb776f6349d92d8aa66840d758f6a6e2a36453

SHA256
ff57c2eb08469bfc0fa0c0baef463739699c8bbd4cc0954bf38b9710bc540423

SHA512
37c616787af20a5d6d020a95ebcf3f80cfff8a239d2dd15aed06733519f998b88f0771796b9240628ecd907d095737e556cab77f8b8cb5b4ac01cf5e2b10bf05

Download Submit
/data/data/com.rating.conduct/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫

Filesize
1.5MB

MD5
45d69b43bb68b0615678deb4a0ff6995

SHA1
06684005ec59826044c439f9eda98fc923ba5514

SHA256
3cfd4994957f0a819936027fb856c257b989dfc0806a0581abd77d7968d9ca99

SHA512
f207841a15a7777b715c58d3d4d59c6de8631a8545dcdcd333aabef7bf697b41eeecfa23390f2af614f03b35fb0560ad0ea136576ca059ecfc1dca264d7396bd

Download Submit
/data/data/com.rating.conduct/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫/ۦۖ۫.

Filesize
8B

MD5
cb72d8650bbd6993d6e3f7d571bce0f4

SHA1
2f343fa472e25a1e5d295471d72609ed48fd99e7

SHA256
bc3cb1529337ba072234f54230f70af60a08b5a49b95d3c74c7e54f32093b465

SHA512
3f11afcf38713ddacf56d5cd65597db7127d7a1bcc690bae992fcd51aacd847b785a6aa6f146021ce418f334c64250448e4adff8fe8ae1ec364f5e2e2cf84d2b

Download Submit
/data/misc/profiles/cur/0/com.rating.conduct/primary.prof

Filesize
1KB

MD5
b36730a1474bf927b2fc1dc930d26437

SHA1
e707cc7966b3f8e9a3884fd7518458ece9b42584

SHA256
8b326826e090cf56c9cbff2e10665d10115f3a4c49788174e09b38b0a9b71ba2

SHA512
793cabce2b5eb84af4b8864c7d91ef92a50db9fa0cbe0b49848cab8c3cbcdd8f372837db16f68d150d7478e56cb6a3e577f1b4f65190359619bf8664eb0278ec

Download Submit