Analysis

  • max time kernel
    13s
  • max time network
    151s
  • platform
    android-9_x86
  • resource
    android-x86-arm-20240910-en
  • resource tags

    arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
  • submitted
    23-09-2024 02:26

General

  • Target

    5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb.apk

  • Size

    3.6MB

  • MD5

    d836feab9d4bf3c6cf086bdc14724c8b

  • SHA1

    c837cf7b181679a0081165e5fe4aa0eb94f748f8

  • SHA256

    5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb

  • SHA512

    8c7801c5f1d8dfda39e0c65bdbea83feb8f217b41b69a245d01dd9e983a6a357c8b0b2be79123bed07e638655fc66ef3a093cc01be68c696ecfea5ab6c692dad

  • SSDEEP

    98304:5s13ZL3Vf6JqeomaMDmQZ75ub8GoRJ6Odp/9hBbW+te6lXhAyHzwI:eTLVf6JumaMiQVWovl9jS+oS4I

Malware Config

Signatures

Processes

  • com.systemservice
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Acquires the wake lock
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:4219

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    baedfce2e4faab568fcfbda3d922fd85

    SHA1

    41924afe170bc9659774abca35f6451074773fa8

    SHA256

    403acd4c3d08521b67f70b0a04964c98810982408ce3dd8fd93ebf926509b0c1

    SHA512

    e1a54cddf77f28bbcb2702bc0de5722f574883276ddb2a1054e614cf9a2d9cdc8be85a1212825031cfa4c5b4ac2263c85edfacc64a3972acf91c1e2e389c3271

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

    Filesize

    68KB

    MD5

    89ef8437bd493fbcde3db88d899f7d1f

    SHA1

    f3ac8d8e23d4c794da5fd41996a612db69c886b4

    SHA256

    499ba4f252cd4ddca54414a7114f5888038ded1891c332e5ddd6c477b5dcf3de

    SHA512

    99047426e2d2975b3630924325881df98141406c9847c1325377b4010cf9df7a5475863124b2f968d9b1d84b29554521018ce8b44a5a460791bd9d52212178b9

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    f5eef727eacee5447b80544b72f0a6b0

    SHA1

    55b127f74338d9371bdad0bdfcf09a3fd2699429

    SHA256

    9513736552a65ea4a723d2555aa9dce30dc30d31517f07e0693657cea1fc63eb

    SHA512

    035e38533b1f9fcb204e815d58bca4a05b52f567e8f61c02c38f88327c40c23d6929663b9bbb0b1ca7af1c921436edd601e351240d82c52f5bfdf11009ace3f5

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    89759e651ea35d0a9850b528befb3cdc

    SHA1

    12320cb8d9a792b276a768c441cf5a701f1d2b06

    SHA256

    5c66fa2e225c58821c5a46ffdc3d94bcfcfe28bce9936f3629b39406fb537110

    SHA512

    8c4bfad7d52a2777a473049ade8f8221ce35b3ab4d965060ccc54e78fb139c439c3217febda7002b8d58f6fd433f5268d089033bc996eb97325118585c69b8b4

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    98f90a3a91b525c58427a486a2db37d1

    SHA1

    819d4d33b2c20e99f6411b1cc42a9ded2bfd49a1

    SHA256

    10986fb4360bd69cd1c4f230205ee553d26ea2c9092c540d007c639c39eb274c

    SHA512

    6ab4d7d1cf6a1156e6c9d85f250084b58e3dd1ffe0cd04844135d737f63f9341e03370a84d76d4a38ee3142cb7e99d4a0e79469395ffde9a26d0ad480148b4fe

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    2ab1887aea512ab0a54b12eb0c7db22b

    SHA1

    d846d70f6b1f0b894c9412d5ad37461644647c2b

    SHA256

    314a1af738869e0a684bb6db068f7accaee217d920124dfdffe7bdee845977ee

    SHA512

    4ba544070cbb9a87a27d889065378b8e7e7dbf4ab772f44939cc1ef4f724adf06aaf2f473c7c850dbd2ea60d686ffce8729708b8238d0d4d604c1ae16b2d918f

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    835cfc7decf507cdc5e54f602e3f9699

    SHA1

    4a55d424cb32e766554672cb2d0b3804fc47552f

    SHA256

    29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

    SHA512

    2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    0a827b6deffbb35deb9bfd486e5bd189

    SHA1

    83b9407f20a17b9a5301676f0d8e67416587279c

    SHA256

    037a384ea4deed7a8dda7f04f78b7a20ccdb54b8d9d7394e2ac0b910723ec32a

    SHA512

    95d59c72084fa022fddc6df6f22540194eed50121a25bcf27effbc8ac64fd6a27edaeccfb4c5d95332cbea1a6f97addf1ce175bab8fb1dee77a1e96da59c3ca8

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    d9081ccdefe24458eaa0a05c2a720b79

    SHA1

    6eae8f7e693d85a1cf4838de8eb21b27ccc96e7d

    SHA256

    2f8291cd2e6cde2bab97f6fbb6680cfcfeca14a7740fe9cbb9db0dd697aba80e

    SHA512

    89b2206bb6c5335c0d88b64f75c2c57decfe1119bdb35ce87beb7e8e308143f82ff25ba98ec872e76aad50ffceb45a2e9a00a20f757f01d18b30c15da85ca7eb

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    fdb945a075124ebfe6ebb6d911acd250

    SHA1

    233d8df8ce9f8f1af503e726ac9909547eff0ba8

    SHA256

    2c4791d0b73ebd6ecf46d6cc6def9bd24e72b16f93b4405ccfc1117a744d2362

    SHA512

    8fe59781a0519c4cf186e251a1c4b14460c919c24015ac6b9f1e9d9d0551411109d23d9d9637c99bde1dff5e0270f6fbfe5da186af49cdc2f49d5329dd71286e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    8914ff405bba4b04137201833daf6653

    SHA1

    96148d64abbac8f1012b91bdad32c76d4ba9d4ef

    SHA256

    17a0c2b55ace8536ff1f1213aa2b4a437f05cab443c10cd933b65c262a44a75e

    SHA512

    ea55eb1aed770ed4cd1f5e41b25f6218ed8bffde1be247efe4351496d1d3977994f5adfc14b48f9e34f1b2a1733902f1705d66925e7cdf56f67f59121814d651

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    c2e42372b09342771dd640c39727cbdd

    SHA1

    0c4868db9d58296c8d807c181ea465d92fef5a6c

    SHA256

    6f35c588d45fa0e0a1ec3dd1ec4d977353db7b1b6283663bc977835cecea0fe4

    SHA512

    f6696898f2aee841d9217bfd0e5a5dc9ad4df92b365d6ef530d509e03fbe789d85cdeaaecdcc7bd5e7a7f6e2366be85b903c1c0d3789b5963925526581e6fd8b

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    2f583f52e99ac120f7781417f1a1ad6d

    SHA1

    9c4defe50462c3f22c0379400519371bc1a31f08

    SHA256

    b88cace328add4845229455a154d8434ecf189f954fb4d0da1f2feede01acef4

    SHA512

    1d26fb85d0f904148be87919d9d83b9e7309fd801705b4db4f96fce2a7ee151d0cf5a2f407606f9f895e58e497e966ff4b27aabb0e6976b5c895fecbd5363be4

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    3bd791d030d6b9ad18fca31d448d96eb

    SHA1

    468469a2a10f73837b52d631f90744b3b93985c2

    SHA256

    f8b381959a2bf646c0c052e1d9a7eb0e44944e2c83ed0f97575b147553ae7155

    SHA512

    81116b772fa7747da140cea1f5dd8e76327776c727b1c90a9084eba4b9c2afdeb9708f63a9b363775c6741e89608a253d34e79183151a704f54a33d8b54a8089

  • /data/data/com.systemservice/files/PersistedInstallation4459444485196462353tmp

    Filesize

    90B

    MD5

    2a369ff95748999dcd7c18b831136f31

    SHA1

    ed5c4ae6cbea7cb9cfadab7b6020bfb7370ca9f3

    SHA256

    8267b78782e0a4788e640fc297a673d08a0efe2a52e17be5412d72a40412c41f

    SHA512

    f06457219ce94c2fa5f09542324f5ad9a3c079f068ed3cb1e1af9e0e81304401eea1be5ffe584ffa7c7090fa1705a3e77ceb6b9eae93ee01ca680be827d4815f

  • /data/data/com.systemservice/files/PersistedInstallation8263312611070183600tmp

    Filesize

    557B

    MD5

    d5b0e844665b416327fd3152cf9cc86f

    SHA1

    b2d116c2aeeaa4200feb5c09981aeef9e7899a27

    SHA256

    2dd153ec8037089d55e3d7b7af59b98ef4baac7170d6b10d12d061cbee237d69

    SHA512

    df005ae8c750baa4d4f23319889546e01c3e3227e7849b6982c6137159283f6dad9c2585a1df1673ab623757890fc2a2c93ce938c26e051dac3ae1b263a676c6

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    6KB

    MD5

    fc718ea33707f4f7e5379fb11d23b00d

    SHA1

    765b278e5552a309b8301e6d8767d2d3f48ec7f4

    SHA256

    c1863714d67fd600072a10070850ae08aad01eef78f0b6fbf1f13e91ae12d054

    SHA512

    31d58d9ae40bd4f7eb9d95bc70f987b8755f09cba7fec795cfcdd125c071b2c849231c1b68680a0cf3d385ec968c8e958a4dee2018c7b6737e2035ddb2fa17d2