20dfb6c66a2859f3774a0649f15977d8348ebc5fff8f7b3305073fd9afb0f2af

Analysis

max time kernel
8s
max time network
156s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
01/10/2024, 22:05

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

20dfb6c66a2859f3774a0649f15977d8348ebc5fff8f7b3305073fd9afb0f2af.apk
Size

2.2MB
MD5

e41ed01927e048e253f4b8edf53b728b
SHA1

9b8bcef150982712e7ab686bc57b89a1db12657f
SHA256

20dfb6c66a2859f3774a0649f15977d8348ebc5fff8f7b3305073fd9afb0f2af
SHA512

fe342706e4b8c5560b5986862ce01cf49e8df7b04a91ec09599eac0f6ce9f5d229f8c3c9f608191030d64acba1ff24497d2178e8e6803f62a2628945c86de00c
SSDEEP

24576:1ZYxRxT9XdS36yHCmIxTrQv8p5rF/w21mE1q7ic3MDUlU1:rIT1zyHEnQv8p5pB1S7ic3MoU1

Score

4^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.monospace.battery

com.monospace.battery
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4965

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.monospace.battery/files/profileInstalled

Filesize
24B

MD5
52f7b20d3f6ea511e7ee6a635754b79e

SHA1
5092f315d64c19cddc0eea732a4bd768dbaa0687

SHA256
caed35c88ba1afa77818534b41167a6bad866201c8e262a70968547b92eb6d55

SHA512
eb3308acb30cb5de48f07758b0f48396eb8667599cac8634b9a844326377e51e233635dcdf5078f318d9d31a97c5907ceaf140e27b3506ec3f0324aae37e41d2

Download Submit
/data/data/com.monospace.battery/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
05d479dcafeffdc03f0d525ebb4b4a49

SHA1
a37d205801f878744bd5149712e3920f98d3d83e

SHA256
da367fb65ddcee58d6f5a95b132b0f3310d9ccddab123303ed221a19e6526ccf

SHA512
2fa1093d346cc5423a0620f41e6c0c2e40c7af8d687f1205de9abbcf05858761a594edc50959c69a40eedfe75ad085fd1c5d92d08bf3637bf50344a1b1818c91

Download Submit
/data/misc/profiles/cur/0/com.monospace.battery/primary.prof

Filesize
1KB

MD5
5f6452f8047d853ab7969dab5ab6834e

SHA1
6062bf796cd1600070e878f42a3defb0676c5d64

SHA256
672c792d63414148eccf8720c214e1a602ea67b8501d5ab48fce3da4738e5b00

SHA512
192bdf1bbafc0a42ca86f4926300cd320741488d41b676d498ed804017b34b6b111a001864eb7e48d4677772883db6eb7e1613f3adf5192797b93c896a490c3a

Download Submit