Analysis

  • max time kernel
    18s
  • max time network
    133s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    23-09-2024 02:26

General

  • Target

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk

  • Size

    3.6MB

  • MD5

    39fa2c58237de702fc3458251f358cab

  • SHA1

    16e4e5003046f5d07a0fb1eff0dad56d9ce53be3

  • SHA256

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc

  • SHA512

    023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126

  • SSDEEP

    98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc

Score
7/10

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • com.systemservice
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4510

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    56KB

    MD5

    b34f074217e753f1163b3b7642763fe4

    SHA1

    0f219b7a356ac1d5756d8bc8c427d8a9915fbdad

    SHA256

    c16093439fdf619b6395c72756653c27132dc5b7449b6b6749783771df5c4f67

    SHA512

    3a38c27d503ea6226cf33f4da2e3d083f29a7d9ea835a8c28c4baf92be4357e3c7c3106cb3ef28f7c3037cf1a531621b4b2057ff33aaa5fe70c35495b11ee0f2

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    733a83ca621fca026ca6f787e461e955

    SHA1

    7fb1c658fd100f95c6583fb82be68d0b5fb19ebc

    SHA256

    2f3540991e8c84dc83c57d04a9cca4c4b6e3902a73f5c1a3ef161f1b3703ebb8

    SHA512

    c5a5f641c08af51f626302f5d94517b30cb358406a6cd5e121b74a56f3300728fb7ca83810f0301158c140340d6b180dcc97f607deaf604d306abc0fb3f6ffb7

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    ce464971d0fbac91ee3db2b1dd93311a

    SHA1

    2a32f31bdb89f08f34f0c04931fe4edd8e2936f9

    SHA256

    ddb7f1a1ca104c33815d2aec19c6e2579a360322cee74b1325b7ae7edf6b03f3

    SHA512

    d78e97bf6f61b11bfa137f741fff0a1672978921c2df9a5db89d3ec3f51e23faaa88918c2a93d25a061da4ed585d9f08d0af21aa4a3ffcf07d56d8892d079a80

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    a34acce3813052402e269f793d396639

    SHA1

    b584e8839077b4865eaa855dd6692ecb1a04a440

    SHA256

    5dbf310e1f48202d17bd8afeb9ab918d2ff3dcef25fb68fe32caaf924d1516e8

    SHA512

    2180b15123b624f5f54f46d39eddf0f0669848ae3047721dea61078421c27be80cf5e2d6565850f64f8a6d4fd0e0f4cfb07c7d1c3cd44b797a1992bbbd7357e0

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    d9cf75fdd1c2292d986f6c3d5d60f2c8

    SHA1

    07ecb1d3a26d952ae5fecf54f36699ab498510b1

    SHA256

    2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

    SHA512

    442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    ff2c6157dbb311a3981008dadb9a0f57

    SHA1

    a326795ef686cd5d1f6a20b56bf8aeae0722efff

    SHA256

    12228d9bb7b75c27b4ad4a996e5b954e24aeb863c77fed500b477a2557bba947

    SHA512

    9949da0ab73664b587910f29e0e79d3a7406b114cc56703da8f239a3522f1c7871e1b8f42285f35a81b5f271557aeaab05acd44bfc6050bdf8acdd58945c245d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    fef2327027e21490e472a861a2ae73ba

    SHA1

    48a1ea709963cf9330a9f66e7041a743e01078b7

    SHA256

    66fe734fe0910aece4aeeb350a9c8eafe7c2c7ccaff9f14865b29f4f20cea34e

    SHA512

    e9ff22b1bfdc47daaa882ff7a5d1854933f9e6f40bfb56108e34fb26e89937d8e33378f5284d2fa6c86c8a5cdbcba20015941a9beeb7b8fea7d926e62b60454d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    67ab02817c4faffd7e7a7eaceb3979e1

    SHA1

    6c1d17431f81c3f2864f406393a1757fd5281a7a

    SHA256

    bcc980fa734cd02f0b9f1718eca4513c4dfa5ead0342e3b95584f786c0ae1529

    SHA512

    4a4b785564f539c491e7587a42120a9a4b8ad94854915bfe1b09919f11c48ff2bf810f2bb39924d9933e85b146d605a091a2dcc48076bc151f29d380af1081df

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    6dc024a54f1311756763670709590907

    SHA1

    6213b856e3cfd8b87ce6f3f9ed2b0c752a7df240

    SHA256

    ae8c30ecd0bcf2d1adaa106b2430870d191c8e48e5854dd1f1d184673a5f59a0

    SHA512

    0fd8cbfd40c9098d849525fdde720f85b7f0840663d77aa355b025c8e685423a182ef4199ba108647c38422b51b81da4c3b56f1d83da9a00fe7fff6b34ca2a6a

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    2238195eab25764b61f2d26ef6a720af

    SHA1

    d366efd0cc079f0f87d23c630ec8d99f90541731

    SHA256

    599d63ed390f7e8e81d82b379c9a733ffbf454bfa5843bd0c909737c8d40dfef

    SHA512

    478111185428119bc92f0ffa3b6d88a7c644108c4b1d9b14a53bea1d74278bc78e67752e41d464dd81e3d600de8b7a723d0c7fa0ce920250ffd26977f9fa3470

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    57d05248657bbe57cc264a642edeaaf4

    SHA1

    b01733a00b10f094fe86716fbc66ff24999cd8b2

    SHA256

    712ab9c3769b670ac4334cb3c2950c0a6122a1831f0b3bfc2224d44ad0a23448

    SHA512

    a10eaa39390871e05c6f7767e78cf306fa693ba947afbd1ef0deaa0e38f5f4badbe815220c0577c8bf7b9161871a4b62caf098fd49f20e87912cf80ae6ed6c53

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    288d04261fddddbacd3815d5d1275df6

    SHA1

    8e41fbb752c18b22d7707f61554232a494819422

    SHA256

    b9ebbc8fed63ff885ca8ca8ef35e818c1583229f53444a87282c9bbda5c9ba7c

    SHA512

    3b39d2ca5bc8696443dbaf0b333fd5df36f8efeb53d8cab4ae773c1f800351f0d65bb62b73dd0942e86ae21aa337b5d28adcd483d9eb15eb011a9e6e76332971

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    7649f2c2699b2c5aeb6bfdf78bfaa430

    SHA1

    ff6469178cb28183c501c8ef0c3ddea1b0ffa28d

    SHA256

    9b9b8e4c471731fb64688646e8fe49021007c610fd73a21c74546ee2be4875e9

    SHA512

    e999fe3b29009138331ad431200418b16986db241d41233db8ce7ae3b1495112008523b7e2761af1a54c27aaed0b1162b4c5dedc69dbecc72ab73f0ddab63c37

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    c6d83755c1343f1bc943ce480b0b8c08

    SHA1

    18a1337613812914fc8825ae79da11745d1df210

    SHA256

    00d76440f3e6b7946050b7da3fad227cda76ef5fd7705ac60156c1468ad86851

    SHA512

    3b82dffec8534d36fad6124f1290b3fc713e211a91ea9433dbef739e66b866998e5bca238a43e1ace2af149ae140185f28167c347df7fe4526d64c61ba6d46f8

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    a811da3b3517858937ebde9e18fb16f6

    SHA1

    28e5203066dea265f7b320741028c604121a8ff3

    SHA256

    ed9aac427c5ccbb346e3e2fdde114f284b0ad8aa65b83b0ec19975cb601e1992

    SHA512

    75bbdd525cc5d0d881a35e2d3dc11bdba59e49adea57362c2852d5efe37e7bd71a51f5865e1c4eccb4b4fba4b36ee19809a803de1d4ab92abf0ad740593dc17f

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    2ee5a27a6571a541f232addfa2bff690

    SHA1

    675728a9b1cede39deedb5143ab5b60292c6f3a7

    SHA256

    3adab81fa43c531c3e0bb04cc02fd2f6a9e4df86020812c23d03258d0acaaca0

    SHA512

    973d5073b6788516f260334e20420f32f60c871610fdd8c0870436e2112a888d9b1b065e44f70460510b74c59b370c82b442253b1ec9c42701a58f925335dc7a

  • /data/data/com.systemservice/files/PersistedInstallation4229619123233296128tmp

    Filesize

    557B

    MD5

    30933e5797cb736d6ab98cd69d9cb78b

    SHA1

    453a2f452563d57d90f4ab08c6c4e57f77518aba

    SHA256

    afbad05e4982bdf2430d5b956a52789807b9abe315f8f12066cdfcb0012ae4d2

    SHA512

    d63582ae4af031fd506d4fc673990e4169295f23cbf23e67336dfbc2e33353a4294fefe93e5449d23fbce254b69352e939357a2fa0eb44089b1d7fb5394ff734

  • /data/data/com.systemservice/files/PersistedInstallation5912109502249721608tmp

    Filesize

    90B

    MD5

    f6d7df39aae2f591f82d6827d1f2ba62

    SHA1

    bd8d702ae3a0f977814012c54c8a493d38510640

    SHA256

    737183165fa8d94e330568fdb1bb7b36ce0235aa3b446730d9ab3a66c6c559a1

    SHA512

    6cdcf709a6440e7e8d395587ab20828aaa582b3eb9426e55e34869fd30eda4502fbd62afc41de10e8da1d0f69622aaf9f040bf184bad4a63a7689d8f5d928d64

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    6KB

    MD5

    7b0d0d7688405f8264ad5b8331413411

    SHA1

    d8becd977f2b9b40362445b63e59c3cb18f23eec

    SHA256

    7370a9beaba24e98ba59af97932c3ed9ed0af98ccd45722336e62edb1f59fe0c

    SHA512

    11a0a3651d60dd508aa4344ac22cd0ac74b11503b37166991979fafaa112687abb44f0ccf290188538ede013abd6ac2243d56e62bf8fe169a885c239af4c6e1e