Analysis

  • max time kernel
    17s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    28-09-2024 02:21

General

  • Target

    5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb.apk

  • Size

    3.6MB

  • MD5

    d836feab9d4bf3c6cf086bdc14724c8b

  • SHA1

    c837cf7b181679a0081165e5fe4aa0eb94f748f8

  • SHA256

    5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb

  • SHA512

    8c7801c5f1d8dfda39e0c65bdbea83feb8f217b41b69a245d01dd9e983a6a357c8b0b2be79123bed07e638655fc66ef3a093cc01be68c696ecfea5ab6c692dad

  • SSDEEP

    98304:5s13ZL3Vf6JqeomaMDmQZ75ub8GoRJ6Odp/9hBbW+te6lXhAyHzwI:eTLVf6JumaMiQVWovl9jS+oS4I

Malware Config

Signatures

Processes

  • com.systemservice
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Acquires the wake lock
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:4249

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    42e2cb51003928e58add91621c7086da

    SHA1

    0566b4b14af0aa8ee17522a86356872f89a12709

    SHA256

    497ed87b2f7a420e08e57e10d285d22c631e79eea8d00bb6b1210efc2b1b1558

    SHA512

    940f4ddbb561aaca4620e71ae5358d1e8585dc4540e53b2ddaf995de5d1f6cb940b5e6e22cf5bfbf06b5c521b48ed7606b29088ed174a5c63bf045ee06740910

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

    Filesize

    68KB

    MD5

    c4c2acd5d24c6673aa343dace760150a

    SHA1

    e2af06f3299ae29582fe2b2c93281b5da3277b25

    SHA256

    cbf4487c4d56177b94757843f45369fd010415e99ef00b63996a1b72b0006ad8

    SHA512

    963f665543368e757c7bd41febd59a69c040d2e4fcd33514fc62358e17ee214a754783ba90439c68731963d5815d63e8197b8067b40b49043e5997929b31cc30

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    52272afadbd243d6a58ec590e665f843

    SHA1

    97af5c32716b086641276912994401559911166c

    SHA256

    7cd48a8651207863d62f880f4cd5e2fe7e16203ad709a42ec4db93703ffb0a13

    SHA512

    fc4af610c56959855a5fe4729e07a882afb7693b6a7a61afdae5414c2f468197b7006de95b06cf1a6db3b9a6210cbf234326c766f7ef926c12277138c7684897

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    99adea7e70d3fa204646568543afef14

    SHA1

    484ab9a570aefbb0edfc3adf80868ee8f9fb43ee

    SHA256

    8574fd8b4c80a4d3cc82a5c4b267e568fa29f201ef8f8458bc94b20403d5623f

    SHA512

    a66d46d025228337126ca1fd9fe2f8dda753cb72049b9ccc78749cd9500642514f66922c005248fca4330b9e668c96d477e8cda89caa470940840f69867c170a

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    ee87422f561d100b61a721c691fc0c50

    SHA1

    7f1bf8094c77d7eb487e2f8a47eb49f789b75c17

    SHA256

    826797970080407537331914216c7d8322c849e8574f662d69d4ae51ce92dae3

    SHA512

    98c3883e252abd1a1aadb27e562fb6bbb3415e734ab82bc5624987dca168e99bef1ece5afbe27c13efd3265dbdf0938777158c2a508e81e12b6ff234468b3939

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    1c9adf9d27be70729f93780a08d7ae36

    SHA1

    9088f27500a454931fa3b6c2643a31267b1fd300

    SHA256

    88c0223e0ffeb149212c8d4f45cc142342de2d492edf520806f01c7c71d0c39e

    SHA512

    003d3db84215696b1a9167edb175a2384f08f5daa289835efd233bc67f812a9570e14185e7b5720fc1871e7b8a31f2783b3e100b3c171896ac8c61db1d073df0

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    835cfc7decf507cdc5e54f602e3f9699

    SHA1

    4a55d424cb32e766554672cb2d0b3804fc47552f

    SHA256

    29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

    SHA512

    2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    82fd8767c885ff4b33bbd8bf70809ad5

    SHA1

    8210c26d22d8335b1778be9d4861a182898d7716

    SHA256

    4f2837cfdd6abb665fdc32035a6ffee40d0c8086c0348a40db226207bdc07492

    SHA512

    9ba6c6ef5192735a974aa865fc0733e5cde4fabdda373dddce5f360a044e32be884c3c7a4028b0c4406832acf397ed40ef6ddcacd0fce5527f48b88655817de4

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    3ca52036ad01cd7a44c3586174d599a2

    SHA1

    006ab40c1ed2fee4e98208a009ac454ec83fc7de

    SHA256

    db251ec8d6ffda75cee608cf6cae6aff2c2bee6f3937b3fac2c8c622b21e32bb

    SHA512

    a9fc6e869b8ca59948d0d3e0108772a42dce8a2da17446e8b7377dbd6ff86869f4fa04b1c4d8dca09a5f4632763f34a2353ec7541dab83c0cb99f995842ecabf

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    53e2fe07d3f05cc5ad9b06b88b92bcd6

    SHA1

    477836adb0d25d05d6df10559a3a513cb3fbc2df

    SHA256

    2ec45b61d7e72c615d8d8c10161d66a1ea83bb93c18b1580e5ccec3eef1f3b2b

    SHA512

    76541fe947ca800c8c25b469169605d0eec425e0187d7ce06b333eba43e6b637e96c524032a9a3080782111a2bbaccd54f1a2360614dfd95b5afbf8b1577c99d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    33077954a4d4609904f9df7934691909

    SHA1

    59293d85f011d079c12d3b8c1ac2ea688a4fafaf

    SHA256

    acdf5cb065f83e5557c19bb04bdaac80fa9fd337a8444507016bba4db987320d

    SHA512

    9570a3a80b3d9394d495426c3cc5883e33bc3a9e9816dbe6baf8f9c63958345788c7afd60db9f38f6fe80af2b1cd2c3fc092329e390757b3e5b20b3774090a15

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    eb252b1d6a927548496429a75effb773

    SHA1

    0a46cdf38d871d079cf9cc2b0f37549f14e2d352

    SHA256

    2cf6576e1f34d394c165e294d0b54d49c01577b85b5f997db03b0238a04c0e56

    SHA512

    4dbd958e38eb98f0f40be7f9e0b865ecaf34cfbbcf62bcb8ea64bb62e59e8b69cb53305ec60ed9263d893de7f8eff83189bc94788354265b6b6978afb9cde835

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    9e0e009ea7a227652376b0f5ad28f71f

    SHA1

    c73e13f5037ffc18cc24771f165e98a6137358d5

    SHA256

    7182e284af946f5e1a5b7adb23af51cdacbd56270c1ff7bbdde7d0d0c5742a3c

    SHA512

    9f7e21b77ba2a02a8e345900e7034a186331380b004932347acefd487817664ee6cc674d0cc12f6aeef2901779c6b1c982ba394313ba78443396c668b0c40539

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    6240b94dec4cecc94ccd82cd798e55fd

    SHA1

    44f4edc45c7027a55ad64df8e4b71e1b4712928a

    SHA256

    7b9c41cf1135d04889474e5f1d5149b9f55ea51eb706f36c5e2d150b34cc438e

    SHA512

    ba2800c1dcf11825d252b078d78f91bd2479eb9f3c571a901d647328af4061186321e6d2c8cb5e3b690058c0db42d7fa11120d67dec2005c92691be2352590ca

  • /data/data/com.systemservice/files/PersistedInstallation2862382706733126192tmp

    Filesize

    90B

    MD5

    685970ae7fb66867c95337a3d3448946

    SHA1

    50afadd393e0b62e112f7153fe3052e45f3b3ca6

    SHA256

    c7332b40b946ff8481a2fb2483a3d0721dacbdedaceb8f903c40eac0a595ed32

    SHA512

    ea3805ad52cd162377ee5797508fdfc9cafb2463768973cbd92eda57106d4dc539a24aa4a62c954f195db3714599c89b235c7055ce8ab03de8dda95aff3039f7

  • /data/data/com.systemservice/files/PersistedInstallation2877073032238877040tmp

    Filesize

    556B

    MD5

    54e6e44d2be5f7c68408ca7fe7454681

    SHA1

    e4188d101ea6289fe77454d12e4c42073b928294

    SHA256

    93350f4e23f18906815973c183fb8496865354869fa860f15a260d5f393f19c7

    SHA512

    20e296c94064d95aec805e6974a4f70885d4838d017dda6caa395fa29d4ff75d6dfac6a4e5022043a5b281c22f8d96f8d2e8edcf99006e9a96faf6c8fef4dfa1

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    3KB

    MD5

    2be4caca65e4ecc8ecbda851fbbb471b

    SHA1

    fc8e26206f157fe995d5204d3b5174dbe2bd421e

    SHA256

    b21a22917e16f812cd6e0bad52ca964ed014f51a0567b3ed7fc37ed2be6d76cf

    SHA512

    eb2766fb7399124046efdb06ba224a83b82bf8004182a432f4ae2151a3765ec91682a147192d40e36ac3851f62bda6526e18ee36703af3ae1e999257284fd265