Analysis

  • max time kernel
    18s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-33-x64-arm64-20240624-en
  • resource tags

    androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
  • submitted
    30-09-2024 02:29

General

  • Target

    5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb.apk

  • Size

    3.6MB

  • MD5

    d836feab9d4bf3c6cf086bdc14724c8b

  • SHA1

    c837cf7b181679a0081165e5fe4aa0eb94f748f8

  • SHA256

    5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb

  • SHA512

    8c7801c5f1d8dfda39e0c65bdbea83feb8f217b41b69a245d01dd9e983a6a357c8b0b2be79123bed07e638655fc66ef3a093cc01be68c696ecfea5ab6c692dad

  • SSDEEP

    98304:5s13ZL3Vf6JqeomaMDmQZ75ub8GoRJ6Odp/9hBbW+te6lXhAyHzwI:eTLVf6JumaMiQVWovl9jS+oS4I

Score
7/10

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • com.systemservice
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4343

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    56KB

    MD5

    2e9d94e9df0be6ad1044e972ace179c8

    SHA1

    dd1da4c8a7eb6678f79c0c70324ebf5fcd8376ff

    SHA256

    c9b477593d77a3dbbd19f937dc10cca352c93be4547ddda4a8e1e6a896f3fe63

    SHA512

    98e3a20f4d43d89bdfe22f6c4b809a9b73155cf41022c99e890f96d6700ac449bad18be8bbcb9fb2283695d67856eb7c75f5c9f88b4ed72240e7d0347cfcaaac

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    7f7ecbd617e0f19b5c9b775fa3cedf66

    SHA1

    7f620728fd5c5c540790942976b86ed63c8e6396

    SHA256

    ebab138eeff5d521f65f629e04ed6cdd582079aff80528890382ab85c0818a34

    SHA512

    bf97c74c645015611b3bd99fdbf3214a9dcb1cd4bf55ec8b0d1d744d3f56c8de2bed46a9e3d353721a57ee92f2bbbf2b88793cea63a58d41a36496a5ef5f1642

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    303f00cda72f15fcef0329974c136acb

    SHA1

    7eaa3d56e81c750a9172290fc081edff8149e975

    SHA256

    0b8e668047b02bdcf2b1b244afa2ad7ce299831b0f85e075ae86fceed29386a0

    SHA512

    6c3089deb9d8cfe099a68cddbc73575891b929b09fdb6e19ced6b8da4fd0add15bccfe9d1a90576b0ecbd0fcc87086302d0aa01cfcec5bcff77e75279bb97582

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    ca5784410a5d2a1edc270e378d319b03

    SHA1

    ae77e1490f561c6adc2634ea673673baf10d3c9d

    SHA256

    0db1a5fe8830c71400eb5995543162c25bf5ab395e5a224a1ae2659441917467

    SHA512

    def039f3652dc8aeb50fa2c3676b9476e8bc23141127c5ce445a96683b9ed91160642940d2b29b519f4b256ae0624cbfdaeef7b007c7ee30e86076040e442e14

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    62ad4a05cbdca7f47b3206b7dbda487f

    SHA1

    4f4044cef7b7b1e5c6184ed9025267fc92bf0cd3

    SHA256

    18b909096c7c61d51ab076ae8e562effb0d4ada28e2a4ecd0e6b88ef58f6b2a6

    SHA512

    0936531ed1b2b356a247123200739a43cfc765469ab47a424dcd6e3d1176092a212b0a28591d07f8c2d0cc9d2e0eeddfcea8dde314c2f9343783c61075b071a6

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    afd3c0d8082c068371e279fdf4b42011

    SHA1

    f5882dcb738f80b5580402e82c3333aae290cb0a

    SHA256

    53bcb48ec2ac4a9c35aaff93df92aa7239c3e0fdbbfcd0ba60841cc710355645

    SHA512

    c18e26acc75c5380af879c822edac003b9e724bff61fb99b2564ab5a588b24d8194780fde1aa6233bdab28e9e5a58687ee0ed1497e311b98b7c3d822881e6136

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    b386f22bb12f51702c395b133d630033

    SHA1

    410be990fb199eb12e82a03e7692e44fde939f90

    SHA256

    2524bf295e9b0fa7a2296528de90deaf2f42c9a3835567e17429310c775fd9cf

    SHA512

    073d7efd734af8ea2551523c620c752c780172aad61d9c155ed9b7f3bbbb21c11cb4c8a259e681df4128a0b5e5015c2d9003f60d0b259e6b304297fd51ca542d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    cb81c26fea976ce771d77cbda5d528e0

    SHA1

    e08255572fc4b6e8b728f45b8d84745d206d0f1e

    SHA256

    3e838a8506ace5dc5730009a85b35d298de873cd0b71936477a6b6c8adfade97

    SHA512

    310b98470b9e8b4747ea54c3140fde180033661d3a3be4f5c961ea786abdb3753866cfc9537560b1200ecd7f5fba98ca171c22e2f326c53e79ac9f27cc96b53d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    e2f571c4bc1df8d4677037bbfec44fde

    SHA1

    4d203f6de04a04d4f9b6f3fafbb76aa5e3520b39

    SHA256

    a5680ec67a8a135855b91c73f16f34cc1893382e3fc832a4c929560990ec75ee

    SHA512

    52e4ae594a710f2decd174cbf7ec508709960a69f9935c4674e0dc4135463da23d317c282a6fa87a8c56bbe9c5a5368dd67e728e419edb928e5bd9284783ccb2

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    e3f13c7d7678604e5b293f6672bc0ed1

    SHA1

    b16c998ac7ca1db79cd4983b207a292ac1d96e21

    SHA256

    486eb5bec4ec277ea7b334a0d0e431e5e62881d3462903e8294640edbe96b2e3

    SHA512

    b63bab85a373912587e78dfc9daf8b4168a223c7af08fb87de8140d66b9f35042052d2d25694e4ea7c9f2064107e5471318b6dcec39c4e3dc0aa352627fa09f4

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    8a2960921bd99cc2ba59e9d31aef2d32

    SHA1

    7b01d232bd88ac1f00a8d3a4378242cefd78fd40

    SHA256

    bf5e5405c9dd2bcf1d1bdc8b465130a6ec2f94ce9a03f360c243c223a3e2e5f1

    SHA512

    72945f645d05ac15f90a5fff540054372f6d7499e8706141d704cbc9d67129a55cb735ce802294aaf66ccdcf61a97fd37293776612c9ee57ac6496fd9dbb6dfa

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    87ec860f21e5090026e3685ef8a4e0c3

    SHA1

    810b3db78a440c209ee35be187d853d867511d26

    SHA256

    4a567d1f2a958389d536138ec483372e26508a5b5d05559ae243f3f3dbd8a312

    SHA512

    945eb16601198a0d44080ae42679a275a59e0bf1fdb1b84fd245a29f254a74415a5183033cd5a2fc285098ab3aee69bfa1b01e49664455aec8969c318f441228

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    f450374cc405a00308668f16a3766a22

    SHA1

    2aa5e973f9ded75c0ea7d3cf20d6af3c62d3a4ca

    SHA256

    91396d95255e18b1dc5185685666ff1682f0636519062ffe3aa0f2f2ed814908

    SHA512

    17b0be7ae9464bde7900f3bfc20bbbf01013bc5be58e3f157ef459ed90e934713fbc25ff735681399412ae8aea09b0ea2637d03006188cfc1396d120264cdeff

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    7a9399d83e5ec596a02c2bd9add7ec30

    SHA1

    fe9c7e9a9507b6fdf86fdfe9adf7158a5a7f99c0

    SHA256

    93ed1d72a90a23d7548db3e577a2c56536d3a8663aa644e209441e3433c488c3

    SHA512

    0f24c588134e60d7f17f0484f04c397f2cb2d4519fcdbedd7797219018ad1628610b8aa6bc7155f772475ae793741a342e5f1a113d8e6b0b173ff12aaf947c26

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    144e240cd89b7322fce40538ae262ffc

    SHA1

    4c8561772570a1c18eb1638f648345e944910f9f

    SHA256

    08a5fe431d2e4a37a42b3c7481fa086d89488883b159474d1f767d53a0e3cf62

    SHA512

    b7c9a1dccaf9255a2ab836dac622004fa21eef0a635f74180980c9984ef90969cbdb9aaaa59d957ea8b1c522ac9731982f61b07ebddfdbce1481213f50817260

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    796f17a8642118c415103b64d5cfeef9

    SHA1

    25fac27c8f90a0cba014176f2102415c62bed3ae

    SHA256

    4dd2a680e8893ad59fbf2e089ad6e1b4201e7aba09ff531ef40dbed435ff1741

    SHA512

    0882ee71a78dab6c5630aa7a628fd03d6afeba51bdca36ef33d458389eccf43d3b249d605848a6bae9877d3e6a228ba17bf5c9cd4428114df896dc092e89b2ee

  • /data/data/com.systemservice/files/PersistedInstallation5338595103840724293tmp

    Filesize

    90B

    MD5

    567eb8a7a3f58dcf0d20a48c30deff53

    SHA1

    87b8bc714814b462f83da8c87a9e5c4d72541d9d

    SHA256

    876f8d0616319968dfa421fdd60e3ce165f4234d5484885294e6d7002656c7a2

    SHA512

    437677553cd2edce2828a2f6a83a8d33840679e8329e400a0dd1574cb3d2b5f23bd96ca9159f722b6a1699106fd23edf9c2821b6e7c59ffd3bc7a67d8b21dd40

  • /data/data/com.systemservice/files/PersistedInstallation8265951836380093780tmp

    Filesize

    556B

    MD5

    64241d92591928897848ddce666ce35e

    SHA1

    56980b387919d784ea4018b3489d2ce2c9deaec3

    SHA256

    ab1ce58b64b53706ca501995df8a7986d04eba2c22dd0fa24f233abfa17be581

    SHA512

    ec73a72d7375e2433c9fbd50b36257972c1b7e906bf26134f40c4087baa4cf8c77413e52b988c6ae2d7511a72652768ebf21555dbd62d6f26620623347596967

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    3KB

    MD5

    2f76916e521a420627b4c8140fcdd8b1

    SHA1

    41af0a4260be0618bb5027535af5fab2f67f3ba1

    SHA256

    068bbcfe7c5a9b992c8eccf2e835931c807788d8deb8231ae6d5cb83339d759e

    SHA512

    50f0a896c48a8accf3644067eacc6dcb0a5d3ae105c0ab6b25453fc16b0323a5326230262e612c96cb6ed643bf1934a0f7a51025ade9d08daa284353c990c434