2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc

Analysis

max time kernel
18s
max time network
133s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
19-09-2024 02:16

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk
Size

3.6MB
MD5

39fa2c58237de702fc3458251f358cab
SHA1

16e4e5003046f5d07a0fb1eff0dad56d9ce53be3
SHA256

2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc
SHA512

023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126
SSDEEP

98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc

Score

7^/10

banker discovery

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001
Acquires the wake lock 1 IoCs

Processes:

com.systemservice

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.systemservice
Queries information about active data network 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.systemservice

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.systemservice

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4495

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
5dbfc4e5d9b4b992e74387bd09f94d15

SHA1
b7abb4b3e03bfef6e16038268eb171a6f6752aa3

SHA256
82329273eddab58e286692999e5344edfd594a78202b4c9583bb2e022d4326d3

SHA512
dfd3e6927078d73926dc08931ca1ca28fda9a460973ffd77d07ac648b995a9d99199c15a790187468c9b879124e3dd9e969df54aa1faab1906b5231cd6dde65a

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
10f23a36a686e28e510dfb403753ee75

SHA1
612f6663ed39dc7392527b4f17915e21f7d3b04b

SHA256
60b2fac77e7e8e1d53bf341cbed7972fa47d568821ecee90128b1c5a22268971

SHA512
c4c230f4b49f8d41402fa39f31d7c629cbf9f3465c63fe125db656897cc47d426bfa0be6fec142c5b0d34f61399dda1ac0680da42dc3e5d9b6cc31c9895f5b3f

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
3a8e3349fc0d248bd71ec83d0b8269aa

SHA1
2a105c614f2ada94186b502c8de8327b89ebedc7

SHA256
112c71231a23d2177dcfbb6d18276fc4455214f00d095e1778d89f9ca60cd686

SHA512
cc246b9bbc200e6a508acd1d8c7d0d4d0ebb946241012008be2e56f366a98c73344c0c3ccb237ca7944c2a94ee97a50cdc350972fede807bcf1a63682887f2da

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
ead554cabaa27abf612f7c47f8042114

SHA1
68a508e95af9621a06e649d3f1653d4ebbc88647

SHA256
d8d5b939586808f2c3f728420951172b11b5987058bf710dc5ba248d4e5917d6

SHA512
9f66556e81d25dc646f3e718e2e323416c700a50d12a005427f8978bc0f2adb439d0c57eb13696505e6c5f7aefdb78d3bae76326f75529c871e22a5a1a424511

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ac21e8995c2774ace6b71d693989b15b

SHA1
a9429b67fbd22c6d67decf566b8c52bbc62ded3e

SHA256
0bd10feee966994f17314983802e970dd470f902d4a61abcea5b556272676548

SHA512
96068dc89ab2622449c391b8ece97812bc7a732d3e9ccfae4cc5baee0025cf8a4bae81b1888342944dc3b0135418ec6224ea365ae1c0a90e14cf8934f2cf6846

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
57a3dddaa2faf6ef2e3600bd4dd56b81

SHA1
dda1bce1cfc6cc4aa42f40c6f942d890b1106b2a

SHA256
1f210b16d1f83f4a0153fa85729ef1ef15b72c0637cd73705e797fc68b140bbd

SHA512
8c9d3ac8c410c7425e468dc4df35b01804aaddd9425f9d8a0ca086d01a977ec1350d181ff766bed222e62615d1c9f2745089596d513440a4d9260fe0088e1268

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2a9132d7a719c61e9eb054ecbea1e8e8

SHA1
90731aa81b4a42fe629beddec5c592741d1e8ab1

SHA256
dd71624c44cc998f73ddd511b6ce2c6e89904df257ffe3da201815bc83277573

SHA512
91bd7c44e0021905518bb772fdc4aa0b84ed6a761576a64f9de3d9b31c29806d40c61fd835b55a5310118c59dfa9e78d714dd15ba9864da5248d1df6e6ec2be4

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ba4207107b9d3d2adf8539c62b9859ee

SHA1
f3ae7fc0c2c3d69fe03e2875dab8a9f77c83f54d

SHA256
01f7b6d42fffbf68af6f3755dd4c4ad17743ddb31aaea306fd245bd21fde1199

SHA512
9b170e79e5836be4119cac8cd5a02f9e9c1e4deb8db9ec9f74b0cd59d3a7d6b228d6be73b366f7d45186e88d954d412849408ff96fa198b52dc355ec6c7d931d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2238195eab25764b61f2d26ef6a720af

SHA1
d366efd0cc079f0f87d23c630ec8d99f90541731

SHA256
599d63ed390f7e8e81d82b379c9a733ffbf454bfa5843bd0c909737c8d40dfef

SHA512
478111185428119bc92f0ffa3b6d88a7c644108c4b1d9b14a53bea1d74278bc78e67752e41d464dd81e3d600de8b7a723d0c7fa0ce920250ffd26977f9fa3470

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
32feb06fda00f031b38be3324d9b2cd4

SHA1
e9d1083603488b633a9bdda54515746472598da0

SHA256
1b718bfc969dce5991f13503d5f4b94b072dc2db62c8b9b8b394960c0cfa85d5

SHA512
f226c00ee1ed7d6515f2b3dfd19a799d47e1b6e0c7b98e0e913bca85c798ec6bc5346d8f21f9d8886ec744505f49ef590d5dbc07f14675ac7d90abf6e041ded5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e9df271bcd518674e8b2feb5f7c88947

SHA1
5a70266aa399b50f236ffde21ca77b3ab5cf1c54

SHA256
431ed57527f25fd762673701395988b8660cff4c8a5d07ae977c168145041cc1

SHA512
228793eee12aa20dfcfef3e2e16e4f655dfcde4a4c7cb2d0e310a629126530639dc667230678cbed84be3d2e2cf3b407b9d31a34432c06a96a56fb9efeda577c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
0caf914cbb3a9d7ec026738553036b79

SHA1
2cc94d779417c89e947c9473c4958533eb610878

SHA256
7115fd4848c235c0ab70d63c46dee42511183ca10dd38bd9b3eb461baa11f8fa

SHA512
ccb1b73630105af0837cac7303fb97bc32e40de9300a814ce9261442afe669f1c1213e7ae2ae1f0d80e27b52108a3254671007fe61e2165e744b8c1e0b323b42

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
a09c3237ec558ee0899fdff8c6c87d67

SHA1
081e09b84e5d589e3fbff2f4116b000b993eb78e

SHA256
a5d995252daea7267ced60d25cd954ac6ef38a709a93cfbfc5e41cbe7418b4ab

SHA512
8402444f8b6b6c300128c5b256bc059d1551feb864543cb6c2d21ad5a8b08a0b9e241142ae625ed9168cfddb168d68ce723db61d97342d0aeefd5c2393240589

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
bae0ab6fd0f6f301f9d504504049ac47

SHA1
234a3a7f3e3d96b8828824883366c512a3d46700

SHA256
59543f20bddafc77407f6924bca12067302a060969f5dc3474f93f380134c98e

SHA512
dc96d773765ed49f12d9ddc07f8b1d59f0c270ce165f8a76ed9964e2590c532b0bbfe75ad3e3239d0eb227d0ccd9c68d32258dcea0a86be9822dfe22f97e2463

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
56e7c38f16c572f38b24526aad3318c3

SHA1
96129343fd0890e97e8844679bc487e211e6fb77

SHA256
d3e33073e6fd20762770b588037496dbd690d9fe626e69892195c700a7cc4916

SHA512
3029726f6f25e9c66c030e15bbc4ebc0cd5a485f077a4a5637cdc085ba4e0e543ed0725a01ac83b079100f75c83acfb035a911b65281725e4dd124cfdc653037

Download Submit
/data/data/com.systemservice/files/PersistedInstallation2913506192364717370tmp

Filesize
90B

MD5
102f54eb323f00622ec64c6ba0d258cd

SHA1
d849d65b70566e3c33877e9acb54064d43d9fd1d

SHA256
a904c71942f1762948f05ec3ec84e2bf453ecc5db0561f937c3cdc7f6b43b1e7

SHA512
cefbfb8fec7b5ddefa5ac24bdc84fb8f49ac78cc531623ba5de46d414bf75f9ce7a3dfa80693e22d868ca6eb9b6f3e17df8cd141df8986469a4458645f57a7a4

Download Submit
/data/data/com.systemservice/files/PersistedInstallation6951959467257467641tmp

Filesize
556B

MD5
9a4a11867f3e3209d11ceb869fe231a2

SHA1
620a85a08e159db74c24f6bbd7581531ab88ec27

SHA256
fb168b1c7210ad37f6233b2de7abacd306ab08c4019b896ec1c6a043ebc8ba4e

SHA512
14c3d975a8a54a1c3b2f20847507bfe65f467faa6bff11acdbe6e0fe5a6a299724d15469125a201a34cfa7d5faaadfd73e9794ec507d7c396afc6a16e73feac1

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
257f59477db691a5398c2613dcf9f1e8

SHA1
35bbcc79312a4d0486abb1eb1764dcb03afbcbd3

SHA256
f94e61bc878d207ec33c7261e48cb50655ff6f1eb51e84fe7035f06ca40b2565

SHA512
321205e8a8033b4bd57c761b466a13eacaa9ea4eaff29990ea65fa2d3ffa8f4f2c8629122a7a6e73da8bafe3c4fae7afd87e682e27fda64cbe699fba30333709

Download Submit