Analysis

  • max time kernel
    13s
  • max time network
    151s
  • platform
    android-9_x86
  • resource
    android-x86-arm-20240910-en
  • resource tags

    arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
  • submitted
    20-09-2024 02:26

General

  • Target

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk

  • Size

    3.6MB

  • MD5

    39fa2c58237de702fc3458251f358cab

  • SHA1

    16e4e5003046f5d07a0fb1eff0dad56d9ce53be3

  • SHA256

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc

  • SHA512

    023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126

  • SSDEEP

    98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc

Malware Config

Signatures

Processes

  • com.systemservice
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Acquires the wake lock
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:4301

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    5f9f74923374ac5d02c61ead237712ef

    SHA1

    f0f332efe2a3a9c51d7981a18e0ded4ca2790e27

    SHA256

    41962baf24333e6da5ccade386698e5a19a642c19ddfb62dc98a09412668a459

    SHA512

    2ee5e8d65eb0a0a1943c3bb1c067b687758bb85e4476adcbf56aae7aa67da0989df34c24d6d7572da5da40bc0a23cf3d2ad01e3dd2f2f67daa56f6467e466dd3

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

    Filesize

    68KB

    MD5

    15042a5a7c6a243e5738f607849229ef

    SHA1

    8c660c9056319b1fc467a0651fd9a614a5ea75a0

    SHA256

    7b0bd1ce86f230e7ac34fbf3a8ae2cd88f57a497e732e233de42110f77b20c54

    SHA512

    08e03269f429c6be19d3f915560a8917c89c25e14c292c1c8170ca8a4a4e3eccfd2e2ca73db28719c86e2ce7355d992629ea69bc094a46ec24f69f4c043903c1

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    271679146179f3bb8e279ddfc31c3de8

    SHA1

    5122a06eb62f147042b082a5c208cf5714a038a9

    SHA256

    316d5690b52170211190e4eda7eed089d4391f309c1ca9679bba65f8bfbf4147

    SHA512

    618e2ab84ea10af0bf59758c01c84fee44b3f6a3ee73f89b63d5181e4486f9956f548abb01f20229c3cba4c06e68bc743ed3fa52680f466191f2d99a16757add

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    6422abe358c4e77a5ec38b84358c9765

    SHA1

    f477067af62bf41589bd963180618042322effb1

    SHA256

    51056c2dfa7c75ecb864cf78392803de912f060eb0b4fb9b0f87bed8a42ad596

    SHA512

    ebc10de93470e79d3dee652ca256d3e79461aec5147ba133639cec2ecb502e6293a6461173ece5cb6f603f646fdd2ab1b2cdb422a69f75ffc9d1d4e2ee7c1822

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    bcc12bdccc4ea8594dbbca98db173439

    SHA1

    0097de0af7cc6fb186a58604b0afd914c308ddea

    SHA256

    daaf7b535cd42bd16c2cdec8d76c39cb284880cb1577003c03b6ecdf3d808f89

    SHA512

    a64e87ece6fb7983d8ff197c49c1be58060d4f73a067a20d80a319f0b9ebc042fc910bdee4a7458a4b9cb9a94417c37c421e57f752bdb13d92e0d1d4903405f7

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    ff4915f56c1b4a5fd3a755930219cf60

    SHA1

    4796c28e6ea46565a49f7bbebe8c78c702d7b8c1

    SHA256

    fa918629b8841b9923aae8f43a6459817c73dd15d17131c931cddc5a9df0e4d8

    SHA512

    62c0bb0e59668d6d09950a41b6bab4c28627655de73a50e80097b9e734d6e6cdb0cdddf5f5c707e01cd385b2a677fd2b1c73a4eda2cc304fe05544813de32abf

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    835cfc7decf507cdc5e54f602e3f9699

    SHA1

    4a55d424cb32e766554672cb2d0b3804fc47552f

    SHA256

    29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

    SHA512

    2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    c88414c27d50a093a9a4e128d718d2ae

    SHA1

    9e40fde54a4fd9c69518811819d1a6dfcd34d236

    SHA256

    a9be1e2512f0834dbe5778e4848a22057dc67e09553d5d6cffd7b6f2ce10b10c

    SHA512

    e79692ffb6eaf335aaff190291c0b84112cf62e88ed51df636b13c3b7da85a4e04059785b60d32ed6d2673330e4606b73407bf7fd0faf3fab532a7d8e0c4475a

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    8568e0f63511db98651d543965e243e2

    SHA1

    7e3776115db5d5fa812ba5a3d4bfb76fcb833f34

    SHA256

    1b40996b46e3470d4e63add9b6e1fb1be7cb7f15a5d6e180afd496889c9c18a3

    SHA512

    c2ab71d12a7491bee4810d225003f305356a262bd4a12fad1c26a2a87a5ecc7cced3bf0303dab0818aa03b61777a03e130b7d35b7ef987de616b144b86a7a1c2

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    502e7904ceb7ec18e6cd41d57868c25f

    SHA1

    551e512ed1ea424b2211eda4f2809464054059a0

    SHA256

    34623b1acbf6349ee4d893d0463ec351c69c22fb90697f86d8ab3ab497d096c6

    SHA512

    6ece42d21c36b570f3d03b44105538e91f56c1a36fd39731c6daddb96a7e1344b0e90a8ef0da7287ba1e7ec86e3ede81d855b2fdb84b2b6e0775044fc9a6711a

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    bfaf493f61983fb1a5faf29a6fab9c97

    SHA1

    7204b9d43eb2634a9789a68a992728ab72fb91c9

    SHA256

    7bea7c96b5d818eebca62f9d68a0e394a4f38821d93632733e3290007b91d6ed

    SHA512

    1ad64173fcd420562c8900c770341e033286cd57b19a5fd94131448e022af87db92b4a21121bec3e30a954f864f0fa501d4440fe29d6f801b51870bca5f5fa4e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    96abb829e6447880172dc84281422c14

    SHA1

    2406b4e34682636149051f46928cd3230cc1de68

    SHA256

    37625773f24e77e53ed638ab5fab6a58576ea5ecead8870d82a7759d4ac82fd3

    SHA512

    26c897f416c40c28b2a8ae731f2fe93118a5265d6062e42429a4653faaeaa8e7ad24d8a106b921bfafa99e6844c44d5f0738ded818a1b90e349b213079809d13

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    4eb96bf5ecdfbf5e8467b7302ba3b3ed

    SHA1

    239184bf891861325c1b372d3a4111a5785defa9

    SHA256

    373562ce98d2a804772513a5145357a49512cc7b81f95245539e80ed81be3c18

    SHA512

    6075d35696b5c01571bd22e49e5543ef50f8fdade66a5a22425ecb0acddf46b18c7cef49c1e6230bcb5a44c1a0a58e8e040221e12439d9c5bf82509b8233e034

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    ab84c7de16629f23f28bbd082575160f

    SHA1

    4c3f657110db835fe15bb3338e256b573e24da82

    SHA256

    ab43550d65b6a7ae65809034fd52eb2e737e699143171cab6a00d0ce80a42337

    SHA512

    254c3cbc3cf4a7d4bc615b416392dd822fef02dd344237a5acd6af75864e777f3357749cdd5d4ab441750ed736f9f13f3f6ac6f52562aadaa0097afa64514817

  • /data/data/com.systemservice/files/PersistedInstallation2982954649181223080tmp

    Filesize

    555B

    MD5

    0d025f24f937877a176047cc90d9c700

    SHA1

    fdff7c94b060bb5a317d8ddc16e284868ee92d43

    SHA256

    27cdbe4f6904beccf64246307344e0bb9ec972d6d610ad7c0c65066c92be7778

    SHA512

    1524e8aedaea2c83ea02f655c4648b9a56799a165990f615852535a02860f3722f3b0c501d1fc6b46bd376aa1105aa40ac9a319ca65cb93b65cbcf8cbadc0b84

  • /data/data/com.systemservice/files/PersistedInstallation696777837936318193tmp

    Filesize

    90B

    MD5

    971f3704172d2ff0c0406c5d5432369e

    SHA1

    b69552928e5ecae7a8f800a61b2818c2cf9868c5

    SHA256

    50a55b0c629e0525fff01adc493295b59add98597138bb0d8c797cc935e679c5

    SHA512

    dac4c6acc88728a6f9b67bf8d3e3d46aa864ad7168211b108494ec82dec88c7e6e7e1151be3539c6e0af3c381b8d91553bdf866e6f6a6edc8d3b600dd9bea1fc

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    6KB

    MD5

    7f7ff6a1c48f0f7cc3c1ccc9d047bc38

    SHA1

    634845086b0a564de11afe6f3b86b657c57ab0a8

    SHA256

    de5059a6ec5ed67a2dd32ece356356c96106e1f92484407a8a51504050317b8c

    SHA512

    57c6c71427f99af14358fb9055248ae1ba2bbe353d45e14599f0823ca63a8bbcecfff51a85e5e9da28ad5d8cc64308a7d65618eb0bb3b21ac8d1e69b989117f5