Analysis

  • max time kernel
    20s
  • max time network
    133s
  • platform
    android_x64
  • resource
    android-33-x64-arm64-20240624-en
  • resource tags

    androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
  • submitted
    27-09-2024 02:19

General

  • Target

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk

  • Size

    3.6MB

  • MD5

    39fa2c58237de702fc3458251f358cab

  • SHA1

    16e4e5003046f5d07a0fb1eff0dad56d9ce53be3

  • SHA256

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc

  • SHA512

    023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126

  • SSDEEP

    98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc

Score
7/10

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • com.systemservice
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4327

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    56KB

    MD5

    3c5a1a525688ad39af1ca81c92397197

    SHA1

    d3440eb5e3195697e030b0a320266bb10d9faa67

    SHA256

    350a22be02c5688ac63fd071eda8fb76a82bd55f18d5c918545755897a70b7d4

    SHA512

    0b31fce68e3d9c04387a04e97fed9f42953940bd3d7bfe387176661611b61559e136bff79fdf1d74aaebb433f32e574f222473f61c955fb195a17b699790a44b

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    676475a0601da2cf6dfce2c1afe6eacc

    SHA1

    499a539c68eace1d50be33deb57f7180fff02084

    SHA256

    69d83a1d5f389e9c58a19cecccbe904957e3b923ce97a6e81f5e41ec3bc941cd

    SHA512

    89f58cf6a7ebb6b4ea1c6d23e4b4f665c0fd0182ac7ea0de5b280ec5fbb51b1e9b0c5e050de6c7a3d169c44c9f4135903d713b890de2b2aaa524ff655d768adf

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    8319658c10aac40799899d57e97e5f2d

    SHA1

    40a0b9b86ac14c7c9356ba87b9f9565b143f7565

    SHA256

    bd8c3f3042e2bd8f5af1f43adc70284d5d3339f6701cf19e7bea790698256fbc

    SHA512

    025774a9ae929f2962ffdc12fdca3a22002e7187e8d705d8025f2ff11b74e0a67da609e52213ba0bcbf9576e45a08defe9fcf383f05f594a61470e2b8c858bb1

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    5adaf41bf5ae08dd43833c3a08c5ca1d

    SHA1

    5ae2fc1a41a39933a36041533dcd8716f974978a

    SHA256

    887a42b81c19e27ca69edb3f4b782e1f89340c1423d6c49b056ec284ee7802b2

    SHA512

    c26fde53b3f8c1f4aec89eb894515e8eb2c01ee800f86550440a8b4664d19106cf191a9344c0b8680828ed4691399c9758d77d15f35e3c84a0ed66f21d5ade36

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    62ad4a05cbdca7f47b3206b7dbda487f

    SHA1

    4f4044cef7b7b1e5c6184ed9025267fc92bf0cd3

    SHA256

    18b909096c7c61d51ab076ae8e562effb0d4ada28e2a4ecd0e6b88ef58f6b2a6

    SHA512

    0936531ed1b2b356a247123200739a43cfc765469ab47a424dcd6e3d1176092a212b0a28591d07f8c2d0cc9d2e0eeddfcea8dde314c2f9343783c61075b071a6

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    92bee05b44b55436b9d43282af9a7310

    SHA1

    3b58f899dbf741e89a8a17557c240bb361da7807

    SHA256

    bc02acfacbaa01f8bbdb70f40d3dcb902f785161b38059ff5be980dd7ea13535

    SHA512

    7d6146f7c275cf4a2e7b39e92b1cb621f5fd03c969b4879d3419664986c22f6448dc7089d63d31d421cb80b064e4d083bf6bb1252f8cce3427f97d44e47243f2

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    2e539c3deb0bdac88e2c083f83764602

    SHA1

    8aae98e38aab0b7dd2e317e91d607ba4f5032759

    SHA256

    4be3f03dcef7dbcf1905ef22aaf677867514fb44b1d7cdb94a092a64fac9cc10

    SHA512

    094610b5f16931680f906c7148a79637c2863fd6032bfeef629c94bd8e7c0e83dd9b4604f53af0743b527fc532231d7770195b008d717198dd2aec76ca27b5a0

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    5ac51e5d619125c275570dcda8ba1982

    SHA1

    389fe4043706cf86024d77280f0cf3e6411d591a

    SHA256

    73651bf32b46f26bbcc86e559647b332aef3fd78b4e315c842e033775b95e2e3

    SHA512

    66a4cb95954cdabe09709417ef0330d02d30158921abc6a2249fc14f2ab787ef53d2ec4d3cf4f764357c6103514236771cf214e9f3264baa9014ffe9af1157dc

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    992488318da200392c829ba9c3730b0e

    SHA1

    5e039f2b02318201f1b8e1f389e0d3aa9593582b

    SHA256

    9844080031a24904400b1cefc146a9d5305613b261f1b751af22849869de57f6

    SHA512

    1540d71e02ea8e6f5659a22a59ba51d6e29d61c4e5b707685d83763423c3da8a216bd6ddded22a5c02ba0f87a4d2da2d75a83067d16dbb193e1367805ddf7a91

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    e3f13c7d7678604e5b293f6672bc0ed1

    SHA1

    b16c998ac7ca1db79cd4983b207a292ac1d96e21

    SHA256

    486eb5bec4ec277ea7b334a0d0e431e5e62881d3462903e8294640edbe96b2e3

    SHA512

    b63bab85a373912587e78dfc9daf8b4168a223c7af08fb87de8140d66b9f35042052d2d25694e4ea7c9f2064107e5471318b6dcec39c4e3dc0aa352627fa09f4

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    6c7a085b8ae7fb0abdef7c283445b0e2

    SHA1

    6c563bbf806897962ee9f11fb52ec4898c8ca7be

    SHA256

    40effd37a2333b15f2d2d633cbf1cb4944998d3cad9f748e05c933382d08c71e

    SHA512

    cb677465385f82f18318d5853620e151b04fad910859cca7650759e0c7152a1264a80c9f21fa5d928ef25429e5ade39f9936d24c3f3a57f0bc982d5a5a5d5694

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    1be7389f07b55d16368be520b71746d6

    SHA1

    612fe65daa168abe06cc0c4dd3f6db564652f9fe

    SHA256

    e48a126b0e6d06512ecc526174da05c75e9b04f1a30baef85cb0cd1387683b0a

    SHA512

    3707180fcf4be9f556f2a49bef20fd5adce6db9a64063ed4a1a03150475cc2933306f9e8cc8ec90583ca4c78b24e5272e2eae943069f5e24b8f6245de7dab003

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    dfef211b7385179d74f206ce70158acc

    SHA1

    63ae9f6fde67d4f73ce9f1d666e9238d43e09f91

    SHA256

    ea104671ddd4540d74f8eb62cfb8f1b1fff9c8444d6fd02fd8fd1c002654a865

    SHA512

    da7253a10963e482b1bc167eb190e201b9f2e04cd2db31de5c719533e44f74d12c984a5341891540794fbac2e7f97fef53b6e5fe39eae3b6f02fc7c5b257fbb7

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    51c79032f303d9e8fb4e4d383d4b2364

    SHA1

    346f60751ae50faa40c0e451de21670b41e92d68

    SHA256

    9d089bd904268f8a00b3f46dee5a5324511f85796fd6ad29502fb5f91699690e

    SHA512

    760dad08021e7665b2f5757905ce77d6a6224b767d2dd6b2575371d514b326e26d67f4f593e6c68bbdb509e0e6b3ab77b034e87c027005ecc141a17e0580bf35

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    95963b648989c889c46708bc2aab5032

    SHA1

    d64551744d7a6b4078fa20d80fcd4a25f0029016

    SHA256

    480afd241546ddfa5c27ace823c90ace7b6abdbe23a66949490e996f2996fbd6

    SHA512

    225db53ee4732125733d9a403a380bf4aea6a61f2f4d68778484e2a5788d88fa3ff959a282d30d5c77e063ec4dd3dacc6cbeaf667fd6577fa87832193f2aa760

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    06b805755663008739d6ce03a124e202

    SHA1

    3b720943dba8f7786351f80361bc70011f15135d

    SHA256

    6183aea48ad54cce8fc1a83a7b62621aad4f4b068cdfc2d1c1d11cf54914f275

    SHA512

    dfe9a3f26d91567059b52de6f270eb5ccb8c5286cdae89914ac6bf8a39d267eca4304b52ef0c42d95d5bbff297749dddb26869c1f8daac5598917f2202c06667

  • /data/data/com.systemservice/files/PersistedInstallation4084395489120680956tmp

    Filesize

    556B

    MD5

    da280e3f62143a46264189c7df13b728

    SHA1

    7ca2e7b46a73b342566ffd34d9b7fd29fcd6afe8

    SHA256

    6cb7f4c3f4cf4198198eedb1b4fac43879e33ba183652e28244dc19585879d0a

    SHA512

    dc897cc7b34ec958e1b47786e24ff95067db521b411f133bc6379653ba485609dcb5cf4fd820202a4a74dd7860ccfc882a5b3d2bd72613a60889923b1ae98125

  • /data/data/com.systemservice/files/PersistedInstallation6907304384932853097tmp

    Filesize

    90B

    MD5

    fc1a92e4a32966ade3b7ba9d9d52a055

    SHA1

    96b995da02c49fce828f86495c8ec791cbd45fd9

    SHA256

    c26c1742a767c27147f52dd09631ce150214ee89ee85745748844cc740ecc941

    SHA512

    2b564e963cee412960988f093ee5a0cbade4e515284a436ec999af934bfdd74d0ad8e7029f91d8e3098e8900e17ca4f9120317589de47cacbadbbf571d026a0f

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    3KB

    MD5

    7537e3ea442dbca95cc9bc73fc87e741

    SHA1

    e111e5c78759eeb6ada1d7cc1f1141a3c019e8e9

    SHA256

    a982577d10fd794b0a57017b3fbe9ef2e9c01f94c7f63955d5535d62043cf305

    SHA512

    c38867ca20ab6a1322a1d03c0aa2b2bb4a54e519da07e517423ef8af40eef0da3fea18e4f5c2be3fe97855e9a84e82eda1f987b3a82057e088f0f9d0db16f714