Analysis
-
max time kernel
13s -
max time network
150s -
platform
android-9_x86 -
resource
android-x86-arm-20240910-en -
resource tags
arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system -
submitted
21-09-2024 02:15
Behavioral task
behavioral1
Sample
.apk
Resource
android-x86-arm-20240910-en
General
-
Target
.apk
-
Size
3.6MB
-
MD5
d836feab9d4bf3c6cf086bdc14724c8b
-
SHA1
c837cf7b181679a0081165e5fe4aa0eb94f748f8
-
SHA256
5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb
-
SHA512
8c7801c5f1d8dfda39e0c65bdbea83feb8f217b41b69a245d01dd9e983a6a357c8b0b2be79123bed07e638655fc66ef3a093cc01be68c696ecfea5ab6c692dad
-
SSDEEP
98304:5s13ZL3Vf6JqeomaMDmQZ75ub8GoRJ6Odp/9hBbW+te6lXhAyHzwI:eTLVf6JumaMiQVWovl9jS+oS4I
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.systemservice -
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.systemservice -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.systemservice -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.systemservice -
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.systemservice
Processes
-
com.systemservice1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4259
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
512B
MD558fc42b2307bb5047902b4a33da8692b
SHA1b1cdfe670a3bdc9a88ed86310384a76396ecf012
SHA2565f0e5184ea270ef711b082f1f3c4776dbf11a6713a53bd235d6a1778c7ad54f4
SHA5120e09ebe6bdd978ec66a9196bdb4b3439227180a80959ca773e58b63363daeb5a1158050c4dfa6374d9a4a30c6b41fd176dfbf3c5e3cc08590277fe47ef9fe3ef
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
68KB
MD58c78f2fb5d228d3479a4742ee0639c41
SHA1f011853920d262ac9a818af19f3896061962f813
SHA25601b44fe4401cc4b8961b084417d6443a2aafcf76fafbea6b056a480772bb22f2
SHA5128ba43efb1008fb856c0c965b981f1bed282b9596016bc2ec900b6d871e4908b647ef5964e8b26162ab0802efce17cb24c10521047cd30ff6566b03f2d3441b25
-
Filesize
36KB
MD5045489a0639eee27bca52f48828cd93d
SHA1436e7966e7c019273c44faa4d8c5709b816dfda3
SHA2560151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e
SHA512c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e
-
Filesize
16KB
MD57237409e0640cfab7bdbd429bf821a3b
SHA14c3da934842f8d4835dfe2a9c275a300e5123309
SHA2565c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f
-
Filesize
16KB
MD5435ddb85d390edda83ae3e3a8c14e628
SHA1af907d6c2fe27e06423a94209b4188132b84ebd4
SHA25628dd9c1d8e6bec62474e5e427e7c668fb21869cad81baa77d0b0908c6029bb58
SHA5129dd80bafaf1b97c299aa6a0b3689129c6eb5eeb22fbcf860557feb2c6b27ff1f41453e879e7d3b13c2fdd86436c21ecc4a62ce73e1ed3cf60f365be3a1117bd5
-
Filesize
16KB
MD532ce153c176e77fc0217327c4862ed60
SHA12551e29937cebfc1abb5ca60eee08d88dd0ef9c4
SHA256f0abaaaa5beaf07870f025f8fe8f1fb14ac9516b3e289f7f8dab04774c824cde
SHA51257b854480625c9d0774375c1c54ff922450241edb67fe7f8ce81672050a90fc5d2f0ad90f4eaaa26fc75183423e90083810763662135ae897fa2839beb2d3de6
-
Filesize
16KB
MD5502fe4f932a06ac07fbae820456f341e
SHA1ebb17c0da31fa30e391b7b783c2e15e203f7cccf
SHA256a5177414ef4304f0d64e926c809fe0b71c35dfbe51110397a4b5c65bbfcfaca6
SHA51231c34ee52d7bfa4738986b8c6c4696d8c224c08629319524fbdfc72ce51b87ba68c0432fb44ab1b46638e5fa7e25c3c7dbb8adea51686d05045f27b5b4848273
-
Filesize
16KB
MD5cbe6da49ffbadb61a4de6f0674601b21
SHA184074464b2372b41b3cf5c8f8bcca8098933be58
SHA2565c1b85ed35af9a5bbae8d1c85067609a8d51c61e6e8712de9829bcfe1d819092
SHA512b4f860dded7da804b6d09e44303c2b838fa3e3f7e8a408a17643d7872a1db533a76053558034a73d1c5fe7d35f20bd20f62922035bc8bb4d28bbbcc8da7734fc
-
Filesize
16KB
MD5835cfc7decf507cdc5e54f602e3f9699
SHA14a55d424cb32e766554672cb2d0b3804fc47552f
SHA25629257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852
SHA5122ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d
-
Filesize
512B
MD545ab081e31cc57a31e0c5f19134fe2e2
SHA1ccc2edbc462658c7d2a09ed792f03e03a6d49182
SHA256cbabca45e7dbbaea8eb18f1998b85e793fd4ee5290c04fa34f8d738820be46ef
SHA51292a6cd9ffe45a21a6bcd03b88e94a9eb3c1f6428f4248bdf312996a3b1ed577b27b28601c5cb6722bb0089d2e19b0436ae806445b1e88d5928b6088a9cb99d72
-
Filesize
36KB
MD5db506c6adbae1e2d3c50baca72635e93
SHA10be807afa01f1f8037e71533d6c4b37dc4e28ba5
SHA2565060701bd5beba5ad50e13bb04a5b7c83569320dab42649bc007377aa0510969
SHA512803f4761167bc651786048aa0402e8ed26cc7fe1e4b0272480655b680e92643a43956b1883d7d61db71eaac3be72bb3a75cb00cec5b088a6a6458b8d543fc5c6
-
Filesize
4KB
MD586d8380f380a1ffdcf4f497af90b5a1e
SHA171a4adeae4af2f714c3b3999eba59c09848e132c
SHA25697bad5316418020d953b42d365ba30e568f03ca1cf8c3f7003a4478c47c70455
SHA512ca537fc2425a8457c0d5c59b8dc983f496aeaa4c1031161b0beef41c77b365b517284c4a97bb4a3b9c32837e91e15aa42894a90c3231226d87b61129fb238354
-
Filesize
4KB
MD54d4f3342b4ed29c896d88b5434254e84
SHA16c4714844fc6537f70f35f651d698d5cef048f76
SHA2566f6327c639d9cb578fc6113023eab81413acada9dbc698596e316836496ef0df
SHA512627c876031a80054dae2520b3d5a026c274d63729015aab3736807567b2d8672d5ea5acdb541a0b4a16fdee6d86eeecdcc94c94561eaadac026ca252f03e32ce
-
Filesize
4KB
MD5d9597ea39a404ed5ca07c4aae90a9f63
SHA1fa2c65553e562aecb2d2d1d82c42d390984da2ba
SHA256ff733250d3dc90b631cd293dca05d6d5cc2d35cf43c6e4e57ec3e7b34e1ade79
SHA5122d166c3dbd220f42452fd3dabf2130da74bd6703566f092468a92dd6a422785bf1e4e7bd5ef27efd755faff18b0c8e1b9a2c6e5cef21b2cd09f520e1097d06f6
-
Filesize
4KB
MD571bb2496758cd22ffc009912f9446eb2
SHA1fda44396ca892b492e5c75cf78cfda6d8937cf2e
SHA25659036fb63b6f75ba9d6dbbf606fc94321acb209fb15a48441e0ff70594bdd8b8
SHA5122c8bf7e3427bb01047476db99ab25505aa8269119ab14bfd037b07e98a99882375eb6e5bf0201b54b7f1363143d7a9128ed703043a3df02bd5cae95a4663ebb4
-
Filesize
4KB
MD53d783c417f6ae4507b281b5505d8b3c1
SHA19be4b5f714e00c5f78ed08a3e02c03c6d26f8530
SHA25632279496cddbd350513b0f16411148ced2aa3d8bc5445acaff3fe7ca0c0cb07d
SHA512e985bad1552aa139d584205bfd18c4d7af980f02a788b8d656a08c3e9bd6ce713900bfb2f3f90260083b274cbcabcdf0ba23c696d525f91458c8afdd93b4f78f
-
Filesize
90B
MD58e206fd6669ba2378e348b25c1dbab40
SHA1c27d2413065bd955bcf0b7844e3a27553d29cbf4
SHA2560aa8f40e71095248ab05519af78993ec4d13935eea3ca5711741ed7caf5d3d51
SHA512b8134b6fc3fe53b8649f151dee14847e0093379ca02b1bdc0dea3fabdc39016d939750f712e2b7e4a48bb3bb1c787a55ce91c0c467440a5b56cee5a6987cb766
-
Filesize
557B
MD54ebac7ce0b6191876a61ec9389998d45
SHA155cefe5b9d3a56950d887eddad326ee3c5fd9b5d
SHA256dbc60c10e83fc9adb9faf3545c2cd348b6bba2657c0a21e0ced450978aa86a6b
SHA5125e87cae91fb722b191bf152e150175ca4746bd7cafcaf2014ea142ae83a6da7fa68387bbd383f3f56973ba6a62e5f95133d8a75d067ebbffcc652bb2d80df959
-
Filesize
6KB
MD52577f1e8520440047bd47e46fbdf2e3f
SHA1e6ab85ab4b656479e795a89b2516ba29e6aa5cbc
SHA2567a7b025c3ecda89e3f361f135a74080b711db784928bf4f1a235061c4887bb53
SHA512766a050f787e874c4bcdc4a3db9578b90a9cc13fcf9e85b905917bab0437324cdc87eff33416a5719692c94b67040bb663a9b60b8f2cbfb1058f24ba8c1822dc