Analysis
-
max time kernel
16s -
max time network
97s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system -
submitted
21-09-2024 10:47
Behavioral task
behavioral1
Sample
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk
-
Size
3.6MB
-
MD5
39fa2c58237de702fc3458251f358cab
-
SHA1
16e4e5003046f5d07a0fb1eff0dad56d9ce53be3
-
SHA256
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc
-
SHA512
023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126
-
SSDEEP
98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.systemservice -
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.systemservice -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.systemservice -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.systemservice -
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.systemservice
Processes
-
com.systemservice1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4240
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
512B
MD549a2297e5a75464e7284a6685f04302b
SHA178b4b15d5ffda02ec20e7bbcf30c4636bccbe45b
SHA2565bbfcfc4ef5eae85fe1e7609ea818cf67ce940abf88e5add68091ee49caf73ca
SHA51219361985d6e22bebbe5463f720b677c368db23661a5a16b739aad98c38ce6e277f43686ee4d5e2bacf5f7d1f0b1dbedfe79c3f14998ba03c8d8b75e8664d14db
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
68KB
MD59b4bce64f117171c56dc373474e5d0cf
SHA1c738bbc61baa6c1c688b7da0992d28bc0216cd85
SHA2569cfd100801caf5f3ebbb29432e26b8bf90412e6cfd6bcb8a90a2ff575ec4a382
SHA512b71a321c3901218cd32aacce82a4297532c8f098585156ae16f8316fd7fc7b392c5dd50fbb6a03dfb411743ac6e13eb3d2ba624be2d2fb6dc200d3bfa6f6361e
-
Filesize
36KB
MD5045489a0639eee27bca52f48828cd93d
SHA1436e7966e7c019273c44faa4d8c5709b816dfda3
SHA2560151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e
SHA512c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e
-
Filesize
16KB
MD57237409e0640cfab7bdbd429bf821a3b
SHA14c3da934842f8d4835dfe2a9c275a300e5123309
SHA2565c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f
-
Filesize
16KB
MD59297ea955395a729a3d87dc806c09189
SHA1950057fe9c51fc679eb4e31a2748050807f981d3
SHA2563f70357b1ec65653f79cc0848f7caa2d4063c6af8c5a0f33b7dcb2e8035a1c2c
SHA512ddc1f6a040b5903d22f8c6435f156ab3e96a838517d196158b98cce00f0a085a845bbb821fe40144c1a395ca2a777b2a8031b8df5fb04e64f16353fdeb70346c
-
Filesize
16KB
MD5e459b556857d3da15c68772282e0ff15
SHA13ac503e8ef91ed80e61137727847ff1571228b4d
SHA25656326a7a90e88496d65be598419ad0fbfef70018916a80f5a5a65ccecfd01da9
SHA512ecc86c94351c7dde9c8961fdb33e9c0cac365ccfbb871f37be9e751b5d71c3323f9fa8ad3d411006cb1b953caa64b1368bd969be5901ab9f0cb7412ed8008ba9
-
Filesize
16KB
MD56d12cfd3346dea1e2f2fad2336f4efdf
SHA16eef70a03a4caeeb50ed6d88ed3fbc6b10f0322c
SHA256b0243ff558d187b45244b34ee9588ecca56762a86cc429d204bedc4d3f8d73b8
SHA5128638fd843acef6220b55ca8349ad67366bc374064c71215fea09cff814895251f78cddaab9e0a94046f3c9cf1b2338d15a4955832c28080f64cfb20d506b17e0
-
Filesize
16KB
MD592f2964d91e3f451eee32465e03a1db5
SHA1fe9e032820d1a93040266739b9d5466f87a68e47
SHA25664c0778198fcce52dc3b59b626fbdbdef465dc76217fd52b2e183100702c734d
SHA512e65fb4181d3e5971433a7a07322017c681e9b1da60528babf7a199622837c9ab17779a00ec5a3d09a227440bf17c0de05646b9e7e62485566469f51616035a88
-
Filesize
16KB
MD5835cfc7decf507cdc5e54f602e3f9699
SHA14a55d424cb32e766554672cb2d0b3804fc47552f
SHA25629257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852
SHA5122ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d
-
Filesize
512B
MD5b4b2fa9f2acf3e5dbddb7f98c6e0bc11
SHA1ed3e329d1030da2a8181037f9be59ebc3ff7fd01
SHA2564ae7af28bf2da6c8b20d7efcdce175386bf37091d60dcc0ec8ccf5e70f345612
SHA5125a217fa9e85c8af72d941a63c4626f7f88552cc6f2cac9cf717ae350d9c249b25e7cb90c2a1cdf96f8a339057c6b5b874bc9f469ba552fd6290fdfc2b51450b7
-
Filesize
36KB
MD59e87f711261d747ac05cadae08b031a4
SHA15d7eb8c5589e889183c3945af91b24fb505ce48e
SHA25692456c7fb0a90452a26c89ec5c8e10d7566f3a49e258cb34eaac60385fcfce0f
SHA512dd298bd29efc7ff4e3bc0d826d181b1f56ede39175484932387f27d473a94a67f2bfab263cfb2d0e292dcffc5be0044e42c3f4b218428ce22e8668905194b13e
-
Filesize
4KB
MD57e286aba47ea3ac2a8e6a226e9235000
SHA12433d8e2d1d844cc2d58b738eadaa973109399bb
SHA2563c5c21ca3f4543b84abbe2f5b230cf6c57484561d4c1fab29ac5906936bab0f0
SHA51288cc13d82164f91e823824a66b2ae6c357547ca1076b8a31449e00183d27ca2cae9c4834ece5a7bf35351f78aecd3b3c010d2c29abfb6fa491deffcd6b469c97
-
Filesize
4KB
MD5ce50917b673da0d6273f3c7768be6692
SHA182e22bf19edfaafbec37bd6e479e296b3943db75
SHA25638b7ab40be9e9681f32dbb87b4aa48b9e0872bed445ad86dcd199aabbe0d6291
SHA512136898fbe60eba99a97a358aad1808f5050a4a8d0b76c0f3f5a985f97d16979891572139105360632764ee855131642acf29596fd6b9cd0386e75ef883bafb30
-
Filesize
4KB
MD5ffa2d686ce08971d74b3933c57d6aa8a
SHA188b4fd472e236369ca3ad0db84480641ba5e6105
SHA2567094c53fba791f9bb4cdac1e1035a22e254b80aff68a92f80d248fe28b42c6dc
SHA512f7403cc95acb71e80177e9719165a70106928794e6d8c2ede9babcecf5f29135db5853ff7dfa952213202df09b2c212246be9ab50dd6a71f329ae58b63ee31be
-
Filesize
4KB
MD503fa6ae5bdda7e57119af2fbf8d453e5
SHA1be30d1ed31ca21855311317c47710852ed26d934
SHA2562432292e35338b94660ae6f0be35749f8564b53fa4fa62916b216115a2201de6
SHA512ccea87f5814888276dce13f9c028e23c9b630edb623aa3b311ff77501d661171620a59f3eea51d0becf9157c2926ccb08698831c14e729659756482729006f06
-
Filesize
4KB
MD5a04a126760f301a58757edc392ea52d8
SHA1a546cdc49144091443f1b90e032bdee267e33a21
SHA2565d1f503f3b2f91d740eba0dedb4f2e30846d63961df6ea678ff1ae70e1fd7d27
SHA51242b6d92f1327442431dac7583e5c8eb201c14bf6494f8164d0783c3ab3fced15daa3579b21a42be96ab713dc18d1ebda1fbe02d92b6d04b8f4d10b0cbb184282
-
Filesize
90B
MD58d43403e9255b35c0ecf9e15be1f2eea
SHA1d17472f026f80028528673a659a8866ca49ffab6
SHA256e51da99477ca423b341943add10de267fd92bb6189c4b55f0198f6dad2b988c1
SHA512a23683210f2e20b451dd17b7d254e6fb5281004b5afba2bb9f02f3df511cfa10b51af8fc24a8c818bffc3d6fdbe2b327949baaaebaf753dc537ecf5a550b1197
-
Filesize
557B
MD5730a614d310e2c6fb95411ee881cbda6
SHA1f0e0d6ef9da01bb68a0421c72d29ff545be11d9c
SHA256479528d3571d13355e0b548e990617f6ba39de2973b87c74c7933633196ac20e
SHA512db0704d25e17513d60287180c26625d2a0b31dd2fd4180fd89ee6900b696afe7dbc6949628f106e783a3ce8df948711a053950935aad0cedc8961c434a85b3aa
-
Filesize
3KB
MD598d3bc323269456989a94c67481b76b9
SHA1e2de6547361e1846b20d77c52b118183199c5d17
SHA2565c366f607c318521ec265d586c798aa75a7ff8ec6188dc8eeb13e4c1d6fd1e87
SHA5127e93e606f8660652659e3513ce5a077178cb00bd6063f985c8d7feabfe75b66fb9046038ff3415431944f12c6556912d5d18821595575875abe30dce5cd7cb81