Analysis
-
max time kernel
13s -
max time network
151s -
platform
android-9_x86 -
resource
android-x86-arm-20240910-en -
resource tags
arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system -
submitted
23-09-2024 02:26
Behavioral task
behavioral1
Sample
5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb.apk
Resource
android-x86-arm-20240910-en
Behavioral task
behavioral2
Sample
5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb.apk
Resource
android-x64-20240624-en
General
-
Target
5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb.apk
-
Size
3.6MB
-
MD5
d836feab9d4bf3c6cf086bdc14724c8b
-
SHA1
c837cf7b181679a0081165e5fe4aa0eb94f748f8
-
SHA256
5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb
-
SHA512
8c7801c5f1d8dfda39e0c65bdbea83feb8f217b41b69a245d01dd9e983a6a357c8b0b2be79123bed07e638655fc66ef3a093cc01be68c696ecfea5ab6c692dad
-
SSDEEP
98304:5s13ZL3Vf6JqeomaMDmQZ75ub8GoRJ6Odp/9hBbW+te6lXhAyHzwI:eTLVf6JumaMiQVWovl9jS+oS4I
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.systemservice -
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.systemservice -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.systemservice -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.systemservice -
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.systemservice
Processes
-
com.systemservice1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4219
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
512B
MD5baedfce2e4faab568fcfbda3d922fd85
SHA141924afe170bc9659774abca35f6451074773fa8
SHA256403acd4c3d08521b67f70b0a04964c98810982408ce3dd8fd93ebf926509b0c1
SHA512e1a54cddf77f28bbcb2702bc0de5722f574883276ddb2a1054e614cf9a2d9cdc8be85a1212825031cfa4c5b4ac2263c85edfacc64a3972acf91c1e2e389c3271
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
68KB
MD589ef8437bd493fbcde3db88d899f7d1f
SHA1f3ac8d8e23d4c794da5fd41996a612db69c886b4
SHA256499ba4f252cd4ddca54414a7114f5888038ded1891c332e5ddd6c477b5dcf3de
SHA51299047426e2d2975b3630924325881df98141406c9847c1325377b4010cf9df7a5475863124b2f968d9b1d84b29554521018ce8b44a5a460791bd9d52212178b9
-
Filesize
36KB
MD5045489a0639eee27bca52f48828cd93d
SHA1436e7966e7c019273c44faa4d8c5709b816dfda3
SHA2560151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e
SHA512c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e
-
Filesize
16KB
MD57237409e0640cfab7bdbd429bf821a3b
SHA14c3da934842f8d4835dfe2a9c275a300e5123309
SHA2565c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f
-
Filesize
16KB
MD5f5eef727eacee5447b80544b72f0a6b0
SHA155b127f74338d9371bdad0bdfcf09a3fd2699429
SHA2569513736552a65ea4a723d2555aa9dce30dc30d31517f07e0693657cea1fc63eb
SHA512035e38533b1f9fcb204e815d58bca4a05b52f567e8f61c02c38f88327c40c23d6929663b9bbb0b1ca7af1c921436edd601e351240d82c52f5bfdf11009ace3f5
-
Filesize
16KB
MD589759e651ea35d0a9850b528befb3cdc
SHA112320cb8d9a792b276a768c441cf5a701f1d2b06
SHA2565c66fa2e225c58821c5a46ffdc3d94bcfcfe28bce9936f3629b39406fb537110
SHA5128c4bfad7d52a2777a473049ade8f8221ce35b3ab4d965060ccc54e78fb139c439c3217febda7002b8d58f6fd433f5268d089033bc996eb97325118585c69b8b4
-
Filesize
16KB
MD598f90a3a91b525c58427a486a2db37d1
SHA1819d4d33b2c20e99f6411b1cc42a9ded2bfd49a1
SHA25610986fb4360bd69cd1c4f230205ee553d26ea2c9092c540d007c639c39eb274c
SHA5126ab4d7d1cf6a1156e6c9d85f250084b58e3dd1ffe0cd04844135d737f63f9341e03370a84d76d4a38ee3142cb7e99d4a0e79469395ffde9a26d0ad480148b4fe
-
Filesize
16KB
MD52ab1887aea512ab0a54b12eb0c7db22b
SHA1d846d70f6b1f0b894c9412d5ad37461644647c2b
SHA256314a1af738869e0a684bb6db068f7accaee217d920124dfdffe7bdee845977ee
SHA5124ba544070cbb9a87a27d889065378b8e7e7dbf4ab772f44939cc1ef4f724adf06aaf2f473c7c850dbd2ea60d686ffce8729708b8238d0d4d604c1ae16b2d918f
-
Filesize
16KB
MD5835cfc7decf507cdc5e54f602e3f9699
SHA14a55d424cb32e766554672cb2d0b3804fc47552f
SHA25629257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852
SHA5122ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d
-
Filesize
512B
MD50a827b6deffbb35deb9bfd486e5bd189
SHA183b9407f20a17b9a5301676f0d8e67416587279c
SHA256037a384ea4deed7a8dda7f04f78b7a20ccdb54b8d9d7394e2ac0b910723ec32a
SHA51295d59c72084fa022fddc6df6f22540194eed50121a25bcf27effbc8ac64fd6a27edaeccfb4c5d95332cbea1a6f97addf1ce175bab8fb1dee77a1e96da59c3ca8
-
Filesize
36KB
MD5d9081ccdefe24458eaa0a05c2a720b79
SHA16eae8f7e693d85a1cf4838de8eb21b27ccc96e7d
SHA2562f8291cd2e6cde2bab97f6fbb6680cfcfeca14a7740fe9cbb9db0dd697aba80e
SHA51289b2206bb6c5335c0d88b64f75c2c57decfe1119bdb35ce87beb7e8e308143f82ff25ba98ec872e76aad50ffceb45a2e9a00a20f757f01d18b30c15da85ca7eb
-
Filesize
4KB
MD5fdb945a075124ebfe6ebb6d911acd250
SHA1233d8df8ce9f8f1af503e726ac9909547eff0ba8
SHA2562c4791d0b73ebd6ecf46d6cc6def9bd24e72b16f93b4405ccfc1117a744d2362
SHA5128fe59781a0519c4cf186e251a1c4b14460c919c24015ac6b9f1e9d9d0551411109d23d9d9637c99bde1dff5e0270f6fbfe5da186af49cdc2f49d5329dd71286e
-
Filesize
4KB
MD58914ff405bba4b04137201833daf6653
SHA196148d64abbac8f1012b91bdad32c76d4ba9d4ef
SHA25617a0c2b55ace8536ff1f1213aa2b4a437f05cab443c10cd933b65c262a44a75e
SHA512ea55eb1aed770ed4cd1f5e41b25f6218ed8bffde1be247efe4351496d1d3977994f5adfc14b48f9e34f1b2a1733902f1705d66925e7cdf56f67f59121814d651
-
Filesize
4KB
MD5c2e42372b09342771dd640c39727cbdd
SHA10c4868db9d58296c8d807c181ea465d92fef5a6c
SHA2566f35c588d45fa0e0a1ec3dd1ec4d977353db7b1b6283663bc977835cecea0fe4
SHA512f6696898f2aee841d9217bfd0e5a5dc9ad4df92b365d6ef530d509e03fbe789d85cdeaaecdcc7bd5e7a7f6e2366be85b903c1c0d3789b5963925526581e6fd8b
-
Filesize
4KB
MD52f583f52e99ac120f7781417f1a1ad6d
SHA19c4defe50462c3f22c0379400519371bc1a31f08
SHA256b88cace328add4845229455a154d8434ecf189f954fb4d0da1f2feede01acef4
SHA5121d26fb85d0f904148be87919d9d83b9e7309fd801705b4db4f96fce2a7ee151d0cf5a2f407606f9f895e58e497e966ff4b27aabb0e6976b5c895fecbd5363be4
-
Filesize
4KB
MD53bd791d030d6b9ad18fca31d448d96eb
SHA1468469a2a10f73837b52d631f90744b3b93985c2
SHA256f8b381959a2bf646c0c052e1d9a7eb0e44944e2c83ed0f97575b147553ae7155
SHA51281116b772fa7747da140cea1f5dd8e76327776c727b1c90a9084eba4b9c2afdeb9708f63a9b363775c6741e89608a253d34e79183151a704f54a33d8b54a8089
-
Filesize
90B
MD52a369ff95748999dcd7c18b831136f31
SHA1ed5c4ae6cbea7cb9cfadab7b6020bfb7370ca9f3
SHA2568267b78782e0a4788e640fc297a673d08a0efe2a52e17be5412d72a40412c41f
SHA512f06457219ce94c2fa5f09542324f5ad9a3c079f068ed3cb1e1af9e0e81304401eea1be5ffe584ffa7c7090fa1705a3e77ceb6b9eae93ee01ca680be827d4815f
-
Filesize
557B
MD5d5b0e844665b416327fd3152cf9cc86f
SHA1b2d116c2aeeaa4200feb5c09981aeef9e7899a27
SHA2562dd153ec8037089d55e3d7b7af59b98ef4baac7170d6b10d12d061cbee237d69
SHA512df005ae8c750baa4d4f23319889546e01c3e3227e7849b6982c6137159283f6dad9c2585a1df1673ab623757890fc2a2c93ce938c26e051dac3ae1b263a676c6
-
Filesize
6KB
MD5fc718ea33707f4f7e5379fb11d23b00d
SHA1765b278e5552a309b8301e6d8767d2d3f48ec7f4
SHA256c1863714d67fd600072a10070850ae08aad01eef78f0b6fbf1f13e91ae12d054
SHA51231d58d9ae40bd4f7eb9d95bc70f987b8755f09cba7fec795cfcdd125c071b2c849231c1b68680a0cf3d385ec968c8e958a4dee2018c7b6737e2035ddb2fa17d2