942dee6c8af0156c2936c63e8e131514f69407f8e1dd962af5a1b0f2f1bce0d5

Analysis

max time kernel
25s
max time network
468s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
28-09-2024 11:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Ahmyth-aligned-debugSigned.apk
Size

293KB
MD5

4dc44afb21f46dc88ff5f9553c3ac9f8
SHA1

b01c920c64223c9d1a230dc1e4b87c24eed2e33b
SHA256

942dee6c8af0156c2936c63e8e131514f69407f8e1dd962af5a1b0f2f1bce0d5
SHA512

5cb276bf25acc19925e03685362e997352c12a49e7973c817209a750433895dab8124ce7f6238ab42d8493a149c96e068a20499dbbe68eed39e9c66feb8e400d
SSDEEP

6144:Ab2+Pu8LEAp4d6l6jM8kkOhhZUqZArRl8N3DWHHLkLSD/PAbvfp:Ab2X8LOd6AjM8OTWl8xiHgWD3sp

Score

6^/10

evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	ahmyth.mine.king.ahmyth

ahmyth.mine.king.ahmyth
1⤵
- Makes use of the framework's foreground persistence service
PID:5047

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads