Analysis
-
max time kernel
13s -
max time network
151s -
platform
android-9_x86 -
resource
android-x86-arm-20240910-en -
resource tags
arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system -
submitted
20-09-2024 02:26
Behavioral task
behavioral1
Sample
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk
Resource
android-x86-arm-20240910-en
Behavioral task
behavioral2
Sample
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk
Resource
android-x64-20240910-en
General
-
Target
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk
-
Size
3.6MB
-
MD5
39fa2c58237de702fc3458251f358cab
-
SHA1
16e4e5003046f5d07a0fb1eff0dad56d9ce53be3
-
SHA256
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc
-
SHA512
023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126
-
SSDEEP
98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.systemservice -
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.systemservice -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.systemservice -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.systemservice -
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.systemservice
Processes
-
com.systemservice1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4301
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
512B
MD55f9f74923374ac5d02c61ead237712ef
SHA1f0f332efe2a3a9c51d7981a18e0ded4ca2790e27
SHA25641962baf24333e6da5ccade386698e5a19a642c19ddfb62dc98a09412668a459
SHA5122ee5e8d65eb0a0a1943c3bb1c067b687758bb85e4476adcbf56aae7aa67da0989df34c24d6d7572da5da40bc0a23cf3d2ad01e3dd2f2f67daa56f6467e466dd3
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
68KB
MD515042a5a7c6a243e5738f607849229ef
SHA18c660c9056319b1fc467a0651fd9a614a5ea75a0
SHA2567b0bd1ce86f230e7ac34fbf3a8ae2cd88f57a497e732e233de42110f77b20c54
SHA51208e03269f429c6be19d3f915560a8917c89c25e14c292c1c8170ca8a4a4e3eccfd2e2ca73db28719c86e2ce7355d992629ea69bc094a46ec24f69f4c043903c1
-
Filesize
36KB
MD5045489a0639eee27bca52f48828cd93d
SHA1436e7966e7c019273c44faa4d8c5709b816dfda3
SHA2560151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e
SHA512c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e
-
Filesize
16KB
MD57237409e0640cfab7bdbd429bf821a3b
SHA14c3da934842f8d4835dfe2a9c275a300e5123309
SHA2565c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f
-
Filesize
16KB
MD5271679146179f3bb8e279ddfc31c3de8
SHA15122a06eb62f147042b082a5c208cf5714a038a9
SHA256316d5690b52170211190e4eda7eed089d4391f309c1ca9679bba65f8bfbf4147
SHA512618e2ab84ea10af0bf59758c01c84fee44b3f6a3ee73f89b63d5181e4486f9956f548abb01f20229c3cba4c06e68bc743ed3fa52680f466191f2d99a16757add
-
Filesize
16KB
MD56422abe358c4e77a5ec38b84358c9765
SHA1f477067af62bf41589bd963180618042322effb1
SHA25651056c2dfa7c75ecb864cf78392803de912f060eb0b4fb9b0f87bed8a42ad596
SHA512ebc10de93470e79d3dee652ca256d3e79461aec5147ba133639cec2ecb502e6293a6461173ece5cb6f603f646fdd2ab1b2cdb422a69f75ffc9d1d4e2ee7c1822
-
Filesize
16KB
MD5bcc12bdccc4ea8594dbbca98db173439
SHA10097de0af7cc6fb186a58604b0afd914c308ddea
SHA256daaf7b535cd42bd16c2cdec8d76c39cb284880cb1577003c03b6ecdf3d808f89
SHA512a64e87ece6fb7983d8ff197c49c1be58060d4f73a067a20d80a319f0b9ebc042fc910bdee4a7458a4b9cb9a94417c37c421e57f752bdb13d92e0d1d4903405f7
-
Filesize
16KB
MD5ff4915f56c1b4a5fd3a755930219cf60
SHA14796c28e6ea46565a49f7bbebe8c78c702d7b8c1
SHA256fa918629b8841b9923aae8f43a6459817c73dd15d17131c931cddc5a9df0e4d8
SHA51262c0bb0e59668d6d09950a41b6bab4c28627655de73a50e80097b9e734d6e6cdb0cdddf5f5c707e01cd385b2a677fd2b1c73a4eda2cc304fe05544813de32abf
-
Filesize
16KB
MD5835cfc7decf507cdc5e54f602e3f9699
SHA14a55d424cb32e766554672cb2d0b3804fc47552f
SHA25629257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852
SHA5122ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d
-
Filesize
512B
MD5c88414c27d50a093a9a4e128d718d2ae
SHA19e40fde54a4fd9c69518811819d1a6dfcd34d236
SHA256a9be1e2512f0834dbe5778e4848a22057dc67e09553d5d6cffd7b6f2ce10b10c
SHA512e79692ffb6eaf335aaff190291c0b84112cf62e88ed51df636b13c3b7da85a4e04059785b60d32ed6d2673330e4606b73407bf7fd0faf3fab532a7d8e0c4475a
-
Filesize
36KB
MD58568e0f63511db98651d543965e243e2
SHA17e3776115db5d5fa812ba5a3d4bfb76fcb833f34
SHA2561b40996b46e3470d4e63add9b6e1fb1be7cb7f15a5d6e180afd496889c9c18a3
SHA512c2ab71d12a7491bee4810d225003f305356a262bd4a12fad1c26a2a87a5ecc7cced3bf0303dab0818aa03b61777a03e130b7d35b7ef987de616b144b86a7a1c2
-
Filesize
4KB
MD5502e7904ceb7ec18e6cd41d57868c25f
SHA1551e512ed1ea424b2211eda4f2809464054059a0
SHA25634623b1acbf6349ee4d893d0463ec351c69c22fb90697f86d8ab3ab497d096c6
SHA5126ece42d21c36b570f3d03b44105538e91f56c1a36fd39731c6daddb96a7e1344b0e90a8ef0da7287ba1e7ec86e3ede81d855b2fdb84b2b6e0775044fc9a6711a
-
Filesize
4KB
MD5bfaf493f61983fb1a5faf29a6fab9c97
SHA17204b9d43eb2634a9789a68a992728ab72fb91c9
SHA2567bea7c96b5d818eebca62f9d68a0e394a4f38821d93632733e3290007b91d6ed
SHA5121ad64173fcd420562c8900c770341e033286cd57b19a5fd94131448e022af87db92b4a21121bec3e30a954f864f0fa501d4440fe29d6f801b51870bca5f5fa4e
-
Filesize
4KB
MD596abb829e6447880172dc84281422c14
SHA12406b4e34682636149051f46928cd3230cc1de68
SHA25637625773f24e77e53ed638ab5fab6a58576ea5ecead8870d82a7759d4ac82fd3
SHA51226c897f416c40c28b2a8ae731f2fe93118a5265d6062e42429a4653faaeaa8e7ad24d8a106b921bfafa99e6844c44d5f0738ded818a1b90e349b213079809d13
-
Filesize
4KB
MD54eb96bf5ecdfbf5e8467b7302ba3b3ed
SHA1239184bf891861325c1b372d3a4111a5785defa9
SHA256373562ce98d2a804772513a5145357a49512cc7b81f95245539e80ed81be3c18
SHA5126075d35696b5c01571bd22e49e5543ef50f8fdade66a5a22425ecb0acddf46b18c7cef49c1e6230bcb5a44c1a0a58e8e040221e12439d9c5bf82509b8233e034
-
Filesize
4KB
MD5ab84c7de16629f23f28bbd082575160f
SHA14c3f657110db835fe15bb3338e256b573e24da82
SHA256ab43550d65b6a7ae65809034fd52eb2e737e699143171cab6a00d0ce80a42337
SHA512254c3cbc3cf4a7d4bc615b416392dd822fef02dd344237a5acd6af75864e777f3357749cdd5d4ab441750ed736f9f13f3f6ac6f52562aadaa0097afa64514817
-
Filesize
555B
MD50d025f24f937877a176047cc90d9c700
SHA1fdff7c94b060bb5a317d8ddc16e284868ee92d43
SHA25627cdbe4f6904beccf64246307344e0bb9ec972d6d610ad7c0c65066c92be7778
SHA5121524e8aedaea2c83ea02f655c4648b9a56799a165990f615852535a02860f3722f3b0c501d1fc6b46bd376aa1105aa40ac9a319ca65cb93b65cbcf8cbadc0b84
-
Filesize
90B
MD5971f3704172d2ff0c0406c5d5432369e
SHA1b69552928e5ecae7a8f800a61b2818c2cf9868c5
SHA25650a55b0c629e0525fff01adc493295b59add98597138bb0d8c797cc935e679c5
SHA512dac4c6acc88728a6f9b67bf8d3e3d46aa864ad7168211b108494ec82dec88c7e6e7e1151be3539c6e0af3c381b8d91553bdf866e6f6a6edc8d3b600dd9bea1fc
-
Filesize
6KB
MD57f7ff6a1c48f0f7cc3c1ccc9d047bc38
SHA1634845086b0a564de11afe6f3b86b657c57ab0a8
SHA256de5059a6ec5ed67a2dd32ece356356c96106e1f92484407a8a51504050317b8c
SHA51257c6c71427f99af14358fb9055248ae1ba2bbe353d45e14599f0823ca63a8bbcecfff51a85e5e9da28ad5d8cc64308a7d65618eb0bb3b21ac8d1e69b989117f5