Analysis

  • max time kernel
    19s
  • max time network
    136s
  • platform
    android_x64
  • resource
    android-33-x64-arm64-20240624-en
  • resource tags

    androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
  • submitted
    21-09-2024 21:33

General

  • Target

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk

  • Size

    3.6MB

  • MD5

    39fa2c58237de702fc3458251f358cab

  • SHA1

    16e4e5003046f5d07a0fb1eff0dad56d9ce53be3

  • SHA256

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc

  • SHA512

    023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126

  • SSDEEP

    98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc

Score
7/10

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • com.systemservice
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4322

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    56KB

    MD5

    9781d84236cae748fac1622d14a98e38

    SHA1

    377bf898860e74ff9fabb3fc147509705c251b50

    SHA256

    39a00b4290642b2ca422669d2de3734002658f2d6c76e9fe1e24e56e45e7a82a

    SHA512

    5a7e8d75aee496e7adcd9b78d9ed16ba28f940de6015db4a7eab3a972faea8e4d37e1f905ea25d222b19fc52d1377529153cdb9d6fbcd4addc62271cea71b0fa

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    c0dc0750ad5b1f447cddb7b2739df46e

    SHA1

    4c81bbc8bc382e7f24c09c9b9938d848dd8d568d

    SHA256

    612a55adff72fe31df7c28233becdb1e6466f924c3e08abbeadddfd60b1d11ba

    SHA512

    5be705239115fd8178db2af5189875c3393f3be238380d5bdb32dcff901ed670148e753651cc47e5fd9a9ef043262817d0d4f99c4089c8d82af7514b2650d4ab

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    4c7b3e95824fc8e5e8c3811810c41660

    SHA1

    fc2c95d7749150000fede8c28087701910151c2d

    SHA256

    e7f6cd1f7b6ffda4eff19fad7700b859e84d65bc87fdf73b1cc0186b205d3bf5

    SHA512

    2ec740083b1a0dbd0b8ef162b68a2ff42244485c79f98d158d736d22e2e6b10820c4968242eb4ce48db0508d73dce25051b676bef08239b87cbebbd2b559003e

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    7e242420c5593559166e8c8d00bb8a56

    SHA1

    21c340f5ed70a6a42203689384aad422a12f5968

    SHA256

    d605466003ce4ba14246823e3c93f36b70bc19a4e5bb4e1462115c6e317e7443

    SHA512

    babe9f99f8e643375383ae156f7357ea0ab60cfedcc30e9a1833c63dd18e97b642812314a47f16acc0ef364f2412873c913a8a23b6e03e610b61ceef06276a5b

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    62ad4a05cbdca7f47b3206b7dbda487f

    SHA1

    4f4044cef7b7b1e5c6184ed9025267fc92bf0cd3

    SHA256

    18b909096c7c61d51ab076ae8e562effb0d4ada28e2a4ecd0e6b88ef58f6b2a6

    SHA512

    0936531ed1b2b356a247123200739a43cfc765469ab47a424dcd6e3d1176092a212b0a28591d07f8c2d0cc9d2e0eeddfcea8dde314c2f9343783c61075b071a6

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    5192479b577191e40d71febad818e251

    SHA1

    1b7e72442ad8691865f8e75bfd80f9e76ecb9bc6

    SHA256

    b0ebcd519b29f185646fba5038f5c040e20812ae1760c860f670433adc08304f

    SHA512

    b565348d3f50dca8398e597ebaa1e131eebad92720269b89f4df648d43dc434a15d0d3cdbde63f5268529326cc0b6ccc30d1fc3f6f59a252bfe386d9aa6e1ff2

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    cd3f2f8dd9d68cd9e1aabda045450fb5

    SHA1

    a91db56a024eb177ee50935bcc910099ed64c4c2

    SHA256

    6420d8219c91ad0999e8853b857dfec741af64477fbc2f6dfaa8e3da5413dac3

    SHA512

    7b485238b779ac316dbe42cb82c58d37ad7810b932c562d72bfa5668bac101d0268a71020e514e6c9936dbade6505537086585f21d512a8800cea2c97723abc2

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    f6634020dd20bc4926ae6c698fb2c5b3

    SHA1

    754b8f5b0662227046ee8f22821a577bf6ecdb11

    SHA256

    abaf13257d23e7d5e1db1cbcb36522fda5d3d507915892b3a95ee3597088f996

    SHA512

    9568fcab4688a3264ed5841611cf16a75fc0ae7fe2e142d6acffea77f6560bdd6d1d85809a9229c078599aca9ae472eb8566bedfcc3bb0a0916e31fbb921721f

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    3f9f61d586aa09fb2bcdc2642e678a05

    SHA1

    2d18ae8609471f74ab25ada82e1e05fb6c00108b

    SHA256

    91ce566445970bc2b23b1f047f2a077886b41f0769abb19490d7ee7463758cbb

    SHA512

    1acb3c7b811422573bebac282cd3ed03fd01dac8776a7528b45540d924e0e8aae1de8be49f49dd71d32e41f5a8c391ed40d670b638df15785ef32b5cf865ce9f

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    e3f13c7d7678604e5b293f6672bc0ed1

    SHA1

    b16c998ac7ca1db79cd4983b207a292ac1d96e21

    SHA256

    486eb5bec4ec277ea7b334a0d0e431e5e62881d3462903e8294640edbe96b2e3

    SHA512

    b63bab85a373912587e78dfc9daf8b4168a223c7af08fb87de8140d66b9f35042052d2d25694e4ea7c9f2064107e5471318b6dcec39c4e3dc0aa352627fa09f4

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    746f3b5b50240b6ce7ce621f31396038

    SHA1

    5c17f5b41ce0c15d393f420515d1aab96eb46c89

    SHA256

    4750e3b996c73bd87bccbc669540e43c4167ebb01dc3057458df07e0c15df836

    SHA512

    de035fb0bb4f1e67538d1a5d9d98b5df892d55ac0cc18bc63980caec4c1520977e45b80a42966c309f1e6a78873861a427353930f260e40a75038d88ba9cb06b

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    03ff372b441a2c7ef0622f6989b0d8f5

    SHA1

    d135e6842326395156b8cf9a9630a83089a1dc0b

    SHA256

    440c7ae95b99cc0036b66fa1b29841e56c6b989ae6bf28c692d67837fce9198f

    SHA512

    ecabdbd84459cc81c057b0e241539dafbfc8f50ed9d9551c5a57ba3090a6b72b1e8fd6af1fbe288506bdf4dd948015e573e88e3ad0a9cf942d33f4b525b9a401

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    e7394de04afa8cf542249c0177244723

    SHA1

    342a2590089d75fd92b7383bd790a30537482141

    SHA256

    d1ce74229ad6f60ddb92db5e2842452045deb7b3f82e9b731f546b09e19b33b6

    SHA512

    514202eb6df07d462975e5a107f0c3be1b833c58cb147fd25eea4c2569ddaeaf88e1107a5fec07abc024258e055c82af8dbff9326e658296016afc1290be61e5

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    88060878f3631cbc4361d4fc94f2b5d5

    SHA1

    0db20f683760a0380c94af62eb5796a1f01321d6

    SHA256

    cde879585bdce0ae16da8a524b9fa423b73b239bdcb310f359ff95abd9cf578d

    SHA512

    892e90d37cb635c824b7976e3d1fa3b4fa41f1c2e607b5cbb89d9baca12ea0eb7c1b306c84a1d5626b8d8983bd82a19bf912133fc0b4465ceb2c78acfb177248

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    7d82f222241e741825549b205a4c04dd

    SHA1

    c4171c8cba27b31b91b9e98a2688e29e6879dd56

    SHA256

    618f518b981a381d2f84a05a1644854dd33d9e0e06ca721a7a7e21327a994de4

    SHA512

    e8907df9bac964508dc437d8f2d81b47db2a8dd0f826f9eb2c067ff78b6609f13252a513f2decf7c4b6a094ec0169bc56fa1ac7bf80f18e772bb048961a50998

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    d6949fb465dac886eb896a3aa7906c01

    SHA1

    cda48c1c2b0c3c56c97c2e3ecad994db2b51bb9f

    SHA256

    78b4ae52855ed64bdc73325a156c943b6d1cd4ac962a3c080d4824adb0730f8b

    SHA512

    abaf55bcbb95bcee5cc99c6c93596050cddcbb42e4be68a7d2d0ca930531f6acac5d1182bb577b800d90988c7cd3c8121fda08ce44c6d416fb805dbbd95d7594

  • /data/data/com.systemservice/files/PersistedInstallation3134491464495079969tmp

    Filesize

    90B

    MD5

    249eca9ed0b1bcda32fc60f695bd44f1

    SHA1

    8a69c594f98e9127dae75f90955fc97e7e1a0619

    SHA256

    a791d9ab0b27595ae80a3f06a0dd7ae52343172fb8b9112e27f9de992d490b00

    SHA512

    b7d87733d7f63b58957633b85e8a64b26ba92da4e8768ff23d9db8e7f5ddeace0f857edec5ceeef58baf2863b96ddc37fccad2096f168f492bff1f872cef7cf0

  • /data/data/com.systemservice/files/PersistedInstallation7886298062730582610tmp

    Filesize

    556B

    MD5

    d4f194e249c355da8594254065a08d28

    SHA1

    fbcffa45e85eae97abaef43222d7754b233fc1b9

    SHA256

    d30f27cfe2801cad3697131cf73cb35a67224488ec863779fe49ae43844c6f56

    SHA512

    b5e5f15c0e872523451cce138accc552ec1f855eefdc25ac5da772e4c229dac34a9c65b5b8ad14ed71628cf808d8f66dbc4347a9e7eff75922403227aa20ddc9

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    3KB

    MD5

    c54eb209d4ec4c3f647a052ab0b17e7a

    SHA1

    d6417c556a5c5454a939429ffc086bba3ad13c69

    SHA256

    10d7ea5652df3485a7d130041a38686c79affd3471a02b232c29b39c74afa593

    SHA512

    3fddf2ab179956441a060a3fe9b3da9b5cab60c23513d51d3820879536e171aaa73f75a6c5b30e175888248670f23f0bc8cf8f46415bd3beb9ff8fea39601009