447171bde5f29b97f2e1169b9550117aa549153173230ce3f138b7ca6322b96b

Analysis

max time kernel
7s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
25/09/2024, 13:38

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

MiGameCenterSDKService.apk
Size

4.9MB
MD5

fd4834f5cc303a8b5e990661d4538930
SHA1

d2bb9ab928202418cf0beab99e1e3ba0fedfceb8
SHA256

aebea7a704c7db584125ae0adf24e5f15894611b23de86b5e3b8a525fa0fc69d
SHA512

4318b270ed1df32d495f5c5a0c0b7fdf23f245f389657f08f716499e03c4906b355fc49109e374651e576d3d7720f7d0803c3237ff42c147b744afaa072b81ec
SSDEEP

98304:qgOtUcjbeJDTndD3zzo0aBNzKKKKmSnmhLdPgqhwxrPRxISTJYZ:VQ3XGTdrXG9KKKKohLdPZwx5fTGZ

Score

7^/10

banker discovery impact persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.xiaomi.gamecenter.sdk.service

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.xiaomi.gamecenter.sdk.service

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.xiaomi.gamecenter.sdk.service

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.xiaomi.gamecenter.sdk.service

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.xiaomi.gamecenter.sdk.service

com.xiaomi.gamecenter.sdk.service
1⤵
- Queries information about running processes on the device
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4251

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.xiaomi.gamecenter.sdk.service/databases/mistat.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.xiaomi.gamecenter.sdk.service/databases/mistat.db-journal

Filesize
512B

MD5
80f03efbfb8ec04a917fa427c2ab1db7

SHA1
df5354d4848470ede7f1a8c7a0e63955f688af31

SHA256
9d6646d7f2e6f132d1c83f925194274404493103848c88c6bc21ca89e3ee89f0

SHA512
96ebcf50cfa7eeb4dcfc7afeaf782f98c82ffbee2a01f966ec86093df9e37e339f1153e248e0fac8b444f45a69be31eeeab3b234a91d6fe96d57e7bd40ff85f9

Download Submit
/data/data/com.xiaomi.gamecenter.sdk.service/databases/mistat.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.xiaomi.gamecenter.sdk.service/databases/mistat.db-wal

Filesize
32KB

MD5
ffb8f10d70062baccc292ecf89efef09

SHA1
167e27a9ca5d0dc1d0bcca65808a38ab66c780bf

SHA256
2c2017cb38fba71543289ccabee8c3ff5380f8c9df434e4be64c3d46c84cb5f0

SHA512
de0c164f7d0f9f775d80b25f0827e48ffaa64bf37b87f19e6c2cc9930ba05cf5d4e4486f44da349a90f55728dee9c7a5b3c42595e0efcded2ae4f0cc1eac1f63

Download Submit
/data/data/com.xiaomi.gamecenter.sdk.service/files/users/0/accounts.db-journal

Filesize
512B

MD5
8a8366c1e3b2768457ec33bf8396cd64

SHA1
f06439a157ea540bfaf90eeee2331f91811087bd

SHA256
e61763a6592737f2bcd716954185bbd84c8cf8feee2e01ba3d4f0962d1abe0fb

SHA512
6c6568800251a7a873758555e025b7dc1b9d0c6ab1eb0d2d38521ea4e91ca2daf4786dbe7e58d072ab699c6a92ee6f4f443c80044127ff9e9a1b8287bf6c2820

Download Submit
/data/data/com.xiaomi.gamecenter.sdk.service/files/users/0/accounts.db-wal

Filesize
68KB

MD5
1a2d6749a23e59ae597fb047f6f1a0d3

SHA1
fb37bf9540fdf9936c6a26850dc9b983ca381c62

SHA256
cdc179c3b007f991b6d79bfa0be2f1d34915c78c9c6a9bb6e11e58593b01f54a

SHA512
fd4febc17bd6d6d9cee8e27ac79f0d28ac3b10dbc0771ef736010f7b9c7f0b28b16a24159b0997986fda57fecf956d579c2c758f9fb400585729f89b8f3c3c14

Download Submit
/data/data/com.xiaomi.gamecenter.sdk.service/files/xiaomi.cfg

Filesize
48B

MD5
340611b379e362128c71623c5e8da1b4

SHA1
0673cee3ec93948c5474f182f9bc0bf0dbc0076e

SHA256
ecbb19ea2633933cda78f7ff1d954581fb582f04a4ef3104c28b20c9afe65f69

SHA512
7f6aa02295b963c4f3b1f93118e5a5230d163b54faafd0efb2ce3d5a8af9f1d8327f612013332388a6e10fb851496e147e300acc4f8d79389ffbb04ca2dd7555

Download Submit
/storage/emulated/0/mipush/log/com.xiaomi.gamecenter.sdk.service/log1.txt

Filesize
268B

MD5
b1d991f55d4ce4c761b698c4c32f514e

SHA1
bddab0d370873d187635a7bcbcbf16198a1b5b0d

SHA256
a1508aa0b0579fe790ea7eba2fa1d745990159cbfd02f51c48729764521069b7

SHA512
18590afeaf946b8fd056907ba1159c034fa74cc88932216e3283409e5d9ff94c91f93768747b3804ae4e30ed4c5aff0356a26d1431cdca1ab323bc85eb10871d

Download Submit
/storage/emulated/0/mipush/log/com.xiaomi.gamecenter.sdk.service/log1.txt

Filesize
71B

MD5
0e6fc7347c580283bf51bdb8dc643ae5

SHA1
0c72ba9841a2b45fc9b1dec4483768cdae5a65a9

SHA256
26b8d5d0c00b5b04a487678ca998c3a4958553ccda98ac8040faa43cd3821e29

SHA512
de9a61760f9c2840d5cf22801aee6cc70a29042d5f6c9f2aac5c27baef72f85fd1d912663a3312fd34065e00f937cf4379a73964997eb8110a5580413c6e1bed

Download Submit
/storage/emulated/0/mipush/log/com.xiaomi.gamecenter.sdk.service/log1.txt

Filesize
272B

MD5
ac833707a6773f790f4c1c42b8982122

SHA1
e53d3d1d55cfe2b8fadf676b8b16ca1f49a5d697

SHA256
c934b354a14295ebeed49c4babd48561498e0299e88f77e20504f8035f35d8c5

SHA512
ee575395d0026f25c6979f1c23c3d5b57c03f2c636d0c557f77cc8565b513def2c0ae16e192a7808ba221e3dc85a4e96c53e546b7f4ce3c1c0d51f3ecee38516

Download Submit
/storage/emulated/0/mipush/log/com.xiaomi.gamecenter.sdk.service/log1.txt

Filesize
236B

MD5
73949d7214199893e520981c9081c3e2

SHA1
8b1bb5a5d95bb0e05fade1adde7e1d01e0a7fbe0

SHA256
728f43ffa62054418cdbb5d45375fcecbfdeae68f24c422bc81db3289cd6c1eb

SHA512
e7d8f2f700f5eb311d86e5e46f7f262d5072aaac6045aca87d01e719858ce831599f2b9d30dd1dd66949e22d3a9c1d11ccb0694e40a8d51fb3171e0e4e42bc91

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads