Analysis

  • max time kernel
    13s
  • max time network
    150s
  • platform
    android-9_x86
  • resource
    android-x86-arm-20240910-en
  • resource tags

    arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
  • submitted
    21-09-2024 02:15

General

  • Target

    .apk

  • Size

    3.6MB

  • MD5

    d836feab9d4bf3c6cf086bdc14724c8b

  • SHA1

    c837cf7b181679a0081165e5fe4aa0eb94f748f8

  • SHA256

    5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb

  • SHA512

    8c7801c5f1d8dfda39e0c65bdbea83feb8f217b41b69a245d01dd9e983a6a357c8b0b2be79123bed07e638655fc66ef3a093cc01be68c696ecfea5ab6c692dad

  • SSDEEP

    98304:5s13ZL3Vf6JqeomaMDmQZ75ub8GoRJ6Odp/9hBbW+te6lXhAyHzwI:eTLVf6JumaMiQVWovl9jS+oS4I

Malware Config

Signatures

Processes

  • com.systemservice
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Acquires the wake lock
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:4259

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    58fc42b2307bb5047902b4a33da8692b

    SHA1

    b1cdfe670a3bdc9a88ed86310384a76396ecf012

    SHA256

    5f0e5184ea270ef711b082f1f3c4776dbf11a6713a53bd235d6a1778c7ad54f4

    SHA512

    0e09ebe6bdd978ec66a9196bdb4b3439227180a80959ca773e58b63363daeb5a1158050c4dfa6374d9a4a30c6b41fd176dfbf3c5e3cc08590277fe47ef9fe3ef

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

    Filesize

    68KB

    MD5

    8c78f2fb5d228d3479a4742ee0639c41

    SHA1

    f011853920d262ac9a818af19f3896061962f813

    SHA256

    01b44fe4401cc4b8961b084417d6443a2aafcf76fafbea6b056a480772bb22f2

    SHA512

    8ba43efb1008fb856c0c965b981f1bed282b9596016bc2ec900b6d871e4908b647ef5964e8b26162ab0802efce17cb24c10521047cd30ff6566b03f2d3441b25

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    435ddb85d390edda83ae3e3a8c14e628

    SHA1

    af907d6c2fe27e06423a94209b4188132b84ebd4

    SHA256

    28dd9c1d8e6bec62474e5e427e7c668fb21869cad81baa77d0b0908c6029bb58

    SHA512

    9dd80bafaf1b97c299aa6a0b3689129c6eb5eeb22fbcf860557feb2c6b27ff1f41453e879e7d3b13c2fdd86436c21ecc4a62ce73e1ed3cf60f365be3a1117bd5

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    32ce153c176e77fc0217327c4862ed60

    SHA1

    2551e29937cebfc1abb5ca60eee08d88dd0ef9c4

    SHA256

    f0abaaaa5beaf07870f025f8fe8f1fb14ac9516b3e289f7f8dab04774c824cde

    SHA512

    57b854480625c9d0774375c1c54ff922450241edb67fe7f8ce81672050a90fc5d2f0ad90f4eaaa26fc75183423e90083810763662135ae897fa2839beb2d3de6

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    502fe4f932a06ac07fbae820456f341e

    SHA1

    ebb17c0da31fa30e391b7b783c2e15e203f7cccf

    SHA256

    a5177414ef4304f0d64e926c809fe0b71c35dfbe51110397a4b5c65bbfcfaca6

    SHA512

    31c34ee52d7bfa4738986b8c6c4696d8c224c08629319524fbdfc72ce51b87ba68c0432fb44ab1b46638e5fa7e25c3c7dbb8adea51686d05045f27b5b4848273

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    cbe6da49ffbadb61a4de6f0674601b21

    SHA1

    84074464b2372b41b3cf5c8f8bcca8098933be58

    SHA256

    5c1b85ed35af9a5bbae8d1c85067609a8d51c61e6e8712de9829bcfe1d819092

    SHA512

    b4f860dded7da804b6d09e44303c2b838fa3e3f7e8a408a17643d7872a1db533a76053558034a73d1c5fe7d35f20bd20f62922035bc8bb4d28bbbcc8da7734fc

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    835cfc7decf507cdc5e54f602e3f9699

    SHA1

    4a55d424cb32e766554672cb2d0b3804fc47552f

    SHA256

    29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

    SHA512

    2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    45ab081e31cc57a31e0c5f19134fe2e2

    SHA1

    ccc2edbc462658c7d2a09ed792f03e03a6d49182

    SHA256

    cbabca45e7dbbaea8eb18f1998b85e793fd4ee5290c04fa34f8d738820be46ef

    SHA512

    92a6cd9ffe45a21a6bcd03b88e94a9eb3c1f6428f4248bdf312996a3b1ed577b27b28601c5cb6722bb0089d2e19b0436ae806445b1e88d5928b6088a9cb99d72

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    db506c6adbae1e2d3c50baca72635e93

    SHA1

    0be807afa01f1f8037e71533d6c4b37dc4e28ba5

    SHA256

    5060701bd5beba5ad50e13bb04a5b7c83569320dab42649bc007377aa0510969

    SHA512

    803f4761167bc651786048aa0402e8ed26cc7fe1e4b0272480655b680e92643a43956b1883d7d61db71eaac3be72bb3a75cb00cec5b088a6a6458b8d543fc5c6

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    86d8380f380a1ffdcf4f497af90b5a1e

    SHA1

    71a4adeae4af2f714c3b3999eba59c09848e132c

    SHA256

    97bad5316418020d953b42d365ba30e568f03ca1cf8c3f7003a4478c47c70455

    SHA512

    ca537fc2425a8457c0d5c59b8dc983f496aeaa4c1031161b0beef41c77b365b517284c4a97bb4a3b9c32837e91e15aa42894a90c3231226d87b61129fb238354

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    4d4f3342b4ed29c896d88b5434254e84

    SHA1

    6c4714844fc6537f70f35f651d698d5cef048f76

    SHA256

    6f6327c639d9cb578fc6113023eab81413acada9dbc698596e316836496ef0df

    SHA512

    627c876031a80054dae2520b3d5a026c274d63729015aab3736807567b2d8672d5ea5acdb541a0b4a16fdee6d86eeecdcc94c94561eaadac026ca252f03e32ce

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    d9597ea39a404ed5ca07c4aae90a9f63

    SHA1

    fa2c65553e562aecb2d2d1d82c42d390984da2ba

    SHA256

    ff733250d3dc90b631cd293dca05d6d5cc2d35cf43c6e4e57ec3e7b34e1ade79

    SHA512

    2d166c3dbd220f42452fd3dabf2130da74bd6703566f092468a92dd6a422785bf1e4e7bd5ef27efd755faff18b0c8e1b9a2c6e5cef21b2cd09f520e1097d06f6

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    71bb2496758cd22ffc009912f9446eb2

    SHA1

    fda44396ca892b492e5c75cf78cfda6d8937cf2e

    SHA256

    59036fb63b6f75ba9d6dbbf606fc94321acb209fb15a48441e0ff70594bdd8b8

    SHA512

    2c8bf7e3427bb01047476db99ab25505aa8269119ab14bfd037b07e98a99882375eb6e5bf0201b54b7f1363143d7a9128ed703043a3df02bd5cae95a4663ebb4

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    3d783c417f6ae4507b281b5505d8b3c1

    SHA1

    9be4b5f714e00c5f78ed08a3e02c03c6d26f8530

    SHA256

    32279496cddbd350513b0f16411148ced2aa3d8bc5445acaff3fe7ca0c0cb07d

    SHA512

    e985bad1552aa139d584205bfd18c4d7af980f02a788b8d656a08c3e9bd6ce713900bfb2f3f90260083b274cbcabcdf0ba23c696d525f91458c8afdd93b4f78f

  • /data/data/com.systemservice/files/PersistedInstallation2228771464774454905tmp

    Filesize

    90B

    MD5

    8e206fd6669ba2378e348b25c1dbab40

    SHA1

    c27d2413065bd955bcf0b7844e3a27553d29cbf4

    SHA256

    0aa8f40e71095248ab05519af78993ec4d13935eea3ca5711741ed7caf5d3d51

    SHA512

    b8134b6fc3fe53b8649f151dee14847e0093379ca02b1bdc0dea3fabdc39016d939750f712e2b7e4a48bb3bb1c787a55ce91c0c467440a5b56cee5a6987cb766

  • /data/data/com.systemservice/files/PersistedInstallation6047198714750750538tmp

    Filesize

    557B

    MD5

    4ebac7ce0b6191876a61ec9389998d45

    SHA1

    55cefe5b9d3a56950d887eddad326ee3c5fd9b5d

    SHA256

    dbc60c10e83fc9adb9faf3545c2cd348b6bba2657c0a21e0ced450978aa86a6b

    SHA512

    5e87cae91fb722b191bf152e150175ca4746bd7cafcaf2014ea142ae83a6da7fa68387bbd383f3f56973ba6a62e5f95133d8a75d067ebbffcc652bb2d80df959

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    6KB

    MD5

    2577f1e8520440047bd47e46fbdf2e3f

    SHA1

    e6ab85ab4b656479e795a89b2516ba29e6aa5cbc

    SHA256

    7a7b025c3ecda89e3f361f135a74080b711db784928bf4f1a235061c4887bb53

    SHA512

    766a050f787e874c4bcdc4a3db9578b90a9cc13fcf9e85b905917bab0437324cdc87eff33416a5719692c94b67040bb663a9b60b8f2cbfb1058f24ba8c1822dc