Analysis

  • max time kernel
    18s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-33-x64-arm64-20240624-en
  • resource tags

    androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
  • submitted
    21-09-2024 02:15

General

  • Target

    .apk

  • Size

    3.6MB

  • MD5

    d836feab9d4bf3c6cf086bdc14724c8b

  • SHA1

    c837cf7b181679a0081165e5fe4aa0eb94f748f8

  • SHA256

    5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb

  • SHA512

    8c7801c5f1d8dfda39e0c65bdbea83feb8f217b41b69a245d01dd9e983a6a357c8b0b2be79123bed07e638655fc66ef3a093cc01be68c696ecfea5ab6c692dad

  • SSDEEP

    98304:5s13ZL3Vf6JqeomaMDmQZ75ub8GoRJ6Odp/9hBbW+te6lXhAyHzwI:eTLVf6JumaMiQVWovl9jS+oS4I

Score
7/10

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • com.systemservice
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4323

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    56KB

    MD5

    6bc882176395df8535f51a1a824055ed

    SHA1

    5157e4c0da582bda55baecaf696104a1838be49c

    SHA256

    f6713a1fe0c9cc3fb4a6c7a52a8251104c8d47fc3281dd60a8a91deea1e695d9

    SHA512

    af5f6c95481faaa146fc364a3a277f7a43153c24fd5ff4edfc5e07b124d6817662daf57ace9066d362401b51ff3aa81a302ef771c643b5820df402531d9d9507

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    98c099cc72c96a2fac60f2c381b5a93f

    SHA1

    457d91035091c5c830556b998cba45f76161d1db

    SHA256

    c278530c8c62078d8c682d5ff6684795134cace09f4b5ab3a6da8b3a5825aedf

    SHA512

    ad6296d1ef64fdff8a57a37eebe7f8e7f06c1a01a112886e306e5fa3a4ebf6b284df361877fb2a25c974da51a33d2fd4938bf0f3684be689ce5cfc95137869ac

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    88f3d6c284f7ff8df23d985a1c36effb

    SHA1

    f579da069696244cbb567454a08971b7c931df55

    SHA256

    b75e3db66b32bfc18e378a9aa3d1dd23a93802fb568a265a7643e50e79e08ba9

    SHA512

    42a1e7350d34acb6c450519560012d75e02450f251e7151575bcd220a707acd1a2d780a846c960e3140a0020e1040c2bb850efc942f571e9eda8115093141f3b

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    f947b67df75a977374952f7c121c8f93

    SHA1

    cf96ef44cf5483cbf6bb04684c41aeb408db39b7

    SHA256

    fabb6260d9b69a87045b717f6a7481916b6e918d272ecb34f7a858f8305aa1b0

    SHA512

    160bb8a8359a55ce8be42968df81911bf724116fbbc9e631e2cc1b84ae0e74d3a1035c6b88b6b8b49eae513a75ea06997d7eb247bc02aa1e18773cf3e1348aa3

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    62ad4a05cbdca7f47b3206b7dbda487f

    SHA1

    4f4044cef7b7b1e5c6184ed9025267fc92bf0cd3

    SHA256

    18b909096c7c61d51ab076ae8e562effb0d4ada28e2a4ecd0e6b88ef58f6b2a6

    SHA512

    0936531ed1b2b356a247123200739a43cfc765469ab47a424dcd6e3d1176092a212b0a28591d07f8c2d0cc9d2e0eeddfcea8dde314c2f9343783c61075b071a6

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    aa650ec2c6fb004d7f5747aff3b9d4d3

    SHA1

    d7968e3f6d9e1f90a63bcc24530b93b19943b9d9

    SHA256

    0e3169d0e8844e4da74624485b9dc1d3414db816a25e69951098d492664cc15b

    SHA512

    3f1aab27c51d92655c1dd0f3970b096484a9fd78bca17b1e41fd942fd49885f89fbd4bb3ffb267c5a53fbc7008139ee8f51a4329f30b65c3ebff065f6d88ed52

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    78e07e16601a5b2ab625053bef50f528

    SHA1

    eb31d22c3949effa19d623812fdc2398c53a8068

    SHA256

    5269027fd39adbbb464f71633ecdbd85bd0279abf91ed59b6881a423e6d7923d

    SHA512

    5ed743799486d98eeb5b55fad93e6c59e5526a10331e91856c55e1a36031ebc87769359c9527c570c540d7083b3ba62a82ac4180b93ed468bcce60ca31d0477d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    15635084dba03319d09f8d2cf350c84d

    SHA1

    430225aefe5667c6a137d472ebf5457f26879f7a

    SHA256

    0c557021f0dfc3faa29026196120569d1d504c19adcff8cc35d22f161483d355

    SHA512

    22f3226cd30219d21ca41d7aee10a39701330a23ce322771dd7bd6b54b50722e360710830040ac7b0058a9fb00b8fb174706d6ee8e0b87a3f94303956a8ad558

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    2452b7307ac9642f7e6e5b29a3b77dd3

    SHA1

    d426b0af8d6b026a5b63139997085a95861aa796

    SHA256

    6d3307cd2fc3eb1d0eea2977292725fc41461beeeb940db9309bbfc84c98ec3f

    SHA512

    44a5e3252905b1691ec9b678bdd5c6da5af41fa6a34b521a3dc109323609d1e8a41f30497d33b6fd18e36a090ce1f44d648594043fbb7aa01da8492f292b34f2

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    e3f13c7d7678604e5b293f6672bc0ed1

    SHA1

    b16c998ac7ca1db79cd4983b207a292ac1d96e21

    SHA256

    486eb5bec4ec277ea7b334a0d0e431e5e62881d3462903e8294640edbe96b2e3

    SHA512

    b63bab85a373912587e78dfc9daf8b4168a223c7af08fb87de8140d66b9f35042052d2d25694e4ea7c9f2064107e5471318b6dcec39c4e3dc0aa352627fa09f4

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    28774d4492803fd487892f2d1959ddfd

    SHA1

    e454bc24e221d64ead63234c209ad993e392163c

    SHA256

    73784e660e3ff5055713b259113a06b06dbc41fc8d3c2fe8c6435aa406ef1d58

    SHA512

    3c80b468b7f918ae96b7a86c29e191fab7a138b9684fe57b233ab19661bc1c85b6d73458dec8c6466469e0f3f3c0a32a7a864cc85b1427b220749e67343df436

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    766a2df24d1d276d29d2fa26bbae0da7

    SHA1

    e72e861c0c8e44ae3acde6b37ffa44565d3e21aa

    SHA256

    6a59f1dd8b21525ddd80048ee1179c70a7b84cacccfe7d626628998a71351451

    SHA512

    7d67fe1c011309ab1b949dd21616b1db44e45a0be4dc84934c9f53c68f2f06c48bcfc816a9b2f261d3e370e992f84e8979d0671eb39624f06ad0fb4c89638c3e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    94afaf2aa34bf7bfc09c2195555b74f6

    SHA1

    1093196ebcccc49248fb5b729a1d9f554fbad1ae

    SHA256

    54fa6e3c73d9d9b9a160a048a622984ef9cd9314dd68ff4dd1f6655a76ac5625

    SHA512

    9b699cd6e6c833c7e48a4940decc645cebd2df2182433b13843139d3cad82aa26ed16ecd4a6418489a69db0c562ac0f4891314f878a4c875cb1ef2affe1ede6d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    55c8567932bf4bcfbe311d9573ad3bbc

    SHA1

    d89c180567f19518a0a093a59026d45adf5adc50

    SHA256

    ead0daabcd54cfbae10595d74d09841afea934c52a19e2b8015d3e0c0886138a

    SHA512

    0052ea164573f708ee040db34c2c4f88829639f6bb51f4c9fb23ccb68f6773a29ff1040c3913f4dfbf6f770747b801fc982be05c8f4a785efd1f535ba5ad523b

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    9a195fabc18fbb8c43c83e288b625709

    SHA1

    aaea258bb49ba904df3fb8c29caf7519bb8740f4

    SHA256

    6285e3951310c38028e3fcb0790b5f58d41f7bcf8305d28364f2a350b5223a66

    SHA512

    379a6371242d4308712c2897a390e68c9a41c4f00be51d8e6cf8a01bbd4da04c56823eb73a4062a31df37677fc99b609a1c82f1a3e4a0aef6066c89915c8afe9

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    6c998948e506113ac28980ac13965731

    SHA1

    5f6fa666e4856e0a90a355a7b98e512f0e5a9966

    SHA256

    4ff2a467a72e02172578ea2a0337afec6726e481fbc693cd3a56752bb7addfb7

    SHA512

    011c7ce34691a77709208602da41bcac5a7bbef8dcb319cdc212bb4781437ddeed62168a8d1306e59d0ae7f2ee4111e35caa4835d36f93d1c118c4036de17562

  • /data/data/com.systemservice/files/PersistedInstallation396232591279248006tmp

    Filesize

    90B

    MD5

    c84682422ae5e33e98e486340efc4fb1

    SHA1

    ebf9de09f809a111fa8469cb40193fafb30e34e3

    SHA256

    b84f8c763f740a4042988b8f936e348143b4691a9b95391312c9be8e86981127

    SHA512

    6df87c4ebd4de46a54d9dea16a1963f248e0db02c58546f66f3130cacafd0577da289d249f71f8949b878fc52cca883a000f7fea16a432d66c330ecb6a49895d

  • /data/data/com.systemservice/files/PersistedInstallation5921622838547337641tmp

    Filesize

    556B

    MD5

    5224868d0ebe8e1ff599ffcf77a84115

    SHA1

    4313b5addc59d2ce9ac86fa93d8a7855cc6b4280

    SHA256

    96502af4705b15b0d2705ee3ff0851b1d5fac2276e4d0a17dc6f3548271fa534

    SHA512

    80a7f840486430aa85faaa95c577e27e7eff458ae217cdfc6e8c9de2c9b77bedcf841d0abd293606a20c7b56c8e08eb0080f43933e138ad0114a35ff4e538934

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    3KB

    MD5

    f0ae690190bec226c5c21ed478c7b0b5

    SHA1

    dbf53130c7d7f7e0bb85bdf1528161379aaec52f

    SHA256

    590f48ac30984122544792971d1cfe2814e5d4382b37cd30d57eef0a463e09ae

    SHA512

    4ae7a514163e3d08cde1eccb0ef6997f5ab3f798558d052733dcc03c026d8741599f42d63ceafeda74630e121b7f02487dc183cd8c8073a13ec96b1859277986