Analysis

  • max time kernel
    18s
  • max time network
    131s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    22-09-2024 11:14

General

  • Target

    5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb.apk

  • Size

    3.6MB

  • MD5

    d836feab9d4bf3c6cf086bdc14724c8b

  • SHA1

    c837cf7b181679a0081165e5fe4aa0eb94f748f8

  • SHA256

    5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb

  • SHA512

    8c7801c5f1d8dfda39e0c65bdbea83feb8f217b41b69a245d01dd9e983a6a357c8b0b2be79123bed07e638655fc66ef3a093cc01be68c696ecfea5ab6c692dad

  • SSDEEP

    98304:5s13ZL3Vf6JqeomaMDmQZ75ub8GoRJ6Odp/9hBbW+te6lXhAyHzwI:eTLVf6JumaMiQVWovl9jS+oS4I

Score
7/10

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • com.systemservice
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4508

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    56KB

    MD5

    c63d0eea13123ab521aa9a724f2837ab

    SHA1

    8d612ce2b3a5a3ed29d7fa46ec671ab3c28c6c0c

    SHA256

    03bb6db32b8dd75aee27dacb29c199e04c0336ee951c27e4827a0d8a969d794f

    SHA512

    00d1d51610b316172aeed94dd9c574762e62eaf280bf218979d5662f6c803988e63968bd687f4f18ded7a556f0dff9166652637373e23b34e7eb7e60586f1840

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    2670c817e8cec43f2c4f17c1012dc9e9

    SHA1

    9550c11890ea3660768092348bdc9d246c2e3d3d

    SHA256

    4a87245d9acdec0056096a3c9c39479f56049a42f3f2fc6a1e156d7cc31bdf6a

    SHA512

    942be73800512cb432d355620a38965dfd0b7c5913796e5c95e136d9aa060c9c47eec2889bd8c76a90dcc6ea0b19e47722aaf4c554a4f731d339bce02d7d2b6b

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    d5225485e47ddc8d7820d2cbe19eba80

    SHA1

    ecad76f937a61901d8b73f62f9239354db4949c5

    SHA256

    3e2dd92ec9bdd8c56566c22d319711876e22466fe50eed97d953f9da1cb70688

    SHA512

    8ed3c4f77335d951319f8bbb465114616b6077ad91b88371c53e679eee726a90366b4d48d1858c0ae03bc5d70cde79c29f4903368a9dafc2bd029bad380a3a34

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    1342cd4f36f5f02ba9b9ffe18452973b

    SHA1

    d7e63ad3e1ebda9dfd03a481c2b309fcabb74c5c

    SHA256

    c6a97d79e224b436c1e8a17b6323425955a9ff021aa7e3914a9dd646d735b8f8

    SHA512

    d6302d0ecdb7b1001c1150c541d55da8b17f9a3226d540090637bb92e236659fa76f9399f4134205fc292668f5f2099f700f3b37a34fcc72adaaecb1b6382aac

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    d9cf75fdd1c2292d986f6c3d5d60f2c8

    SHA1

    07ecb1d3a26d952ae5fecf54f36699ab498510b1

    SHA256

    2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

    SHA512

    442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    0fb51af0c12230ec76e92170451ed59f

    SHA1

    62b8263fb648aedd14bec24f3ca7aeefb040b62c

    SHA256

    fca8465032d83929f06fe343896f26c05d98ef48eb403bb2a2c0cb688f4ab24e

    SHA512

    4aa8ff26c28351019a32182f047d90c0fd8395159ae13d3635aa1de9f3e0848ceff7941f723ee305bfa7d057eba26d5e66d4746f00584c905987d39b223a3e6b

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    cce80153bf746e388f8bca0fdca7331d

    SHA1

    23ecb66fb616fd76029431d502d22c8622a7b6db

    SHA256

    2363e7afa3b95cfeba3506e88b3c5a1d9cf5272e740fb59cc72182323634401d

    SHA512

    8fc20e639a519e87f240f67e69e40fb259e66571f516f78cbc2ddab12de391fc7e1625002961821e22c660ee154c25adee12f38ea581fa287d59ad628ef5573c

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    f51b445399b344c973e896145b761080

    SHA1

    31d9cc1ae002ea4469abe182e1dbb3fab4f78e25

    SHA256

    bbf0a8f5b25067759db84ceccccde0bc44d9d2c9c19e88a1ee22f056d05c7e10

    SHA512

    263ef64c7eb697b7343a22a2f9aa0bda8838595fb25e608783523c0193cddb343e7cefe5905e80e9171edb2920e3708fc863d396fe94aad1a2e689efff9dff2a

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    2688430fe55fc7c03f64463e8190cc80

    SHA1

    3b9037be4401d26da7661018dbb1832cb528b0c2

    SHA256

    a9b3019681464f36095e99b46f2d9236dae6e6040df3858d89b3a1d74cf8a96a

    SHA512

    4c6fc08bb50e0365ee1a86bb74032cbacc3a51b39a7d75eb4b18ec3bcbdf4420437d0a8d2b34fc7104b9570b95dc8548dccd2ba85a478d15669aa657342bd3df

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    2238195eab25764b61f2d26ef6a720af

    SHA1

    d366efd0cc079f0f87d23c630ec8d99f90541731

    SHA256

    599d63ed390f7e8e81d82b379c9a733ffbf454bfa5843bd0c909737c8d40dfef

    SHA512

    478111185428119bc92f0ffa3b6d88a7c644108c4b1d9b14a53bea1d74278bc78e67752e41d464dd81e3d600de8b7a723d0c7fa0ce920250ffd26977f9fa3470

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    922063856bd8c98144f2729ebab17a43

    SHA1

    ae27a486362b0c490a31fed49b852cb9f5e5a53a

    SHA256

    a248ea132117654a876fa934b695b7fc9d82f85b8c0a8ce888f4d4b0ec2cef21

    SHA512

    4e62f8a289fe2f2bac7a1af68ba7359b12ceee3fe38c7505a05a87efa0bdeaa909f086468e6742e7b358d57a227a2c7b49480da3ee9ab54a3e7067c8a7538ffa

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    3e777aead4f260bf01f1113baa38f735

    SHA1

    49a6bcad7a2969f26241f621e0cc74c006c8d4d1

    SHA256

    ca0a0240dac6706121461564c490f74b343cbaf32047bd62a6c7b00d56afa804

    SHA512

    3b3667bc2de63639fa327c4ce905824f70f14f50242f986ee5fb6a9e57cb60bfa0215882bf36585e29144e0e936fa7bfcf9a36e66b2e22b2ab4d1907fb81eb65

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    1ff264431a27192cb432dfcc3eeadd3d

    SHA1

    3c5821b912f7d33e3892672276d17d8451243831

    SHA256

    f157cdb42cd43fa75ef979bd9bcef1bceaf76cca3e81cf0936472f6d85597229

    SHA512

    c35bc43d4e07e2f9867aaf700617fc1eb52ed9457f48546f0a50f9d66d5b916d61c02fec5177866bbb001bf3b843fa75790005b2c5eead7b4a2efea2b8022451

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    99c09568ec9c2989e158a052de25173d

    SHA1

    ad7df7b4d94aab46227c21f0e0efde4dd46e1a84

    SHA256

    3412fc04ccdd6ac94aa18716a55c2292f44200c5e4a9226a2fc7d63ab7e63d95

    SHA512

    80f9acc1294d0dd4e4428d0d4261ca9c2bc767e94ab92cd045b846dc687e89841ba0a5ff5b5cad3ec99b4d55f028111f27f165580cc49d3ab38a9b4d74d12dd4

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    f994e6e2fed622f11990e0172c6cc867

    SHA1

    103c53f605422005bd130f49ea30348de0b88bd1

    SHA256

    ba3b490854e2c6860a104f3ca8f8e0282db142bd77bb298486ed2a1fda84f6fe

    SHA512

    bba87b5faecd8117b5bc47d2c4b54590804587d2d277d1530648e096deb65ebf6e35abafe4007853cf7f3def8871de872ea3d9da290083d85c07ccc1f775de66

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    5423015557df07704d435ef005eaad07

    SHA1

    7113a4cfbca263917460b477aa59f89221d32374

    SHA256

    2bc0e10e7a465fd0fba33ac6d345b0c6ced73e79cb75aeaa4d10d2dbe44456ba

    SHA512

    943355c7f22c77bc8d8fc3c7668b34f0bd0a4b1fb6d649ed4c29e95c21cc06fe184166d6f225ac82a628049ac682f93687296aa1469f52a723332d4a9d592c35

  • /data/data/com.systemservice/files/PersistedInstallation7047131978190370254tmp

    Filesize

    557B

    MD5

    29b87854e6b13ff852321c9718b4d5ff

    SHA1

    af24ab9062bc46de2d008f01c45b6227c8528e3e

    SHA256

    4b58c12a0033ef32d777fe8371a8d6b654c3a41062a8ea4c65264d38a448121a

    SHA512

    3c7fa2f90f35698d7eca4d2c39fb794e067029e95cd1c5162319ac8c851af23015b4dfdb35c00c9a1b872b16539dfb2e57a465302cf9138b6b9071354f81253a

  • /data/data/com.systemservice/files/PersistedInstallation7786165561397133109tmp

    Filesize

    90B

    MD5

    5dad437072b704743f490bd142d03356

    SHA1

    98bf34818742a0108086b3e72fc9e4b8de8e0004

    SHA256

    e118fdd7ce3a87a5483690c7aaab106dd3ebd1d14a47f792e089156b0622f058

    SHA512

    1169c7be6bef6924172361e7074c4f0330295fedacd9d1936814da457a171103f09b71a8820dbde993d811670eda8d300a73fc39e67ff4d78db43b4ecaf018fe

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    6KB

    MD5

    274a70c2d30b91d7ce1b8742be187c19

    SHA1

    759d342af44fb6d15111f887e98795b90a23e1fc

    SHA256

    f9c22389350054374a191a2d99cae2cc9a961967bf3ff46e05862e232f9bc2b8

    SHA512

    748c310945c21f95750e360950e4f94808c6631b75ffee5482910986b1926209b12f8aaf0e4f1ff09a979109f5e3097334217963629b47dde7cf893f80dec051