Analysis
-
max time kernel
17s -
max time network
131s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system -
submitted
02-10-2024 02:38
Behavioral task
behavioral1
Sample
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk
Resource
android-x64-20240624-en
General
-
Target
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk
-
Size
3.6MB
-
MD5
39fa2c58237de702fc3458251f358cab
-
SHA1
16e4e5003046f5d07a0fb1eff0dad56d9ce53be3
-
SHA256
2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc
-
SHA512
023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126
-
SSDEEP
98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.systemservice -
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.systemservice -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.systemservice -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.systemservice -
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.systemservice
Processes
-
com.systemservice1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4250
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
512B
MD5881c08c1e5c2c743394dade1b27fbb7c
SHA1c427177d8a4366730e24d5977ec8b509b7f3d9c8
SHA256cc523e618164c56fcc95fc503ad4aae8285c0d71459a5bf7c7b945b4af4f99e3
SHA512dd61485bcbbdfeb2d6607c90ed46739e92bb6fbf172d0a75d5889f4a7fdce0f0890d15f1602b6bb4076fb2b1af2456e2c0e5b61ba0f94c25077fbf781782b3c5
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
68KB
MD582b05c41997a2263520414ecc7880e7c
SHA1a70754cf6e2da2f826e408758678c455a9d92300
SHA256a331c90ae05921bc0fad5d33e2da3357725589ff94b4ad9e4f7018b80b57f681
SHA512e36b6242cd0ae3d5d33455496a86d055f8ee4b2f7eca30b429c42ffa8e817cb3dfdcfaceb110267180cee9bd5d2ddfe5e914a68e610f321139b76edded982930
-
Filesize
36KB
MD5045489a0639eee27bca52f48828cd93d
SHA1436e7966e7c019273c44faa4d8c5709b816dfda3
SHA2560151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e
SHA512c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e
-
Filesize
16KB
MD57237409e0640cfab7bdbd429bf821a3b
SHA14c3da934842f8d4835dfe2a9c275a300e5123309
SHA2565c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f
-
Filesize
16KB
MD5ea811871b73a85926e54e4b1c035fb21
SHA19e683248c8650efc0074a0a5085fda6860d6db19
SHA2564db23588d8e12bdb1f60279c5ef97d9280847688f7e1a17c1a2b15aec035739b
SHA5125a433e79d8373440c64e3b9a33bdfa0320b1c8a34754d6001ee20492bb29b6a8fa0550b16d513b9b514616e71815b608d590ad621233e64b7944c1cdf452c215
-
Filesize
16KB
MD51509d2a821d803bd33a3fde3ffc1e23d
SHA1e37042abea95d97c736bd5975e912e07dc8f3f7a
SHA2565f53c124970a3f1e7823690885d21d205d3c243386f1f5d9a21ed04b5116865b
SHA51223d75b734a4a6a2b5354964dd8dd91e4e02324b0375db75396eaeb97c450ca1584a5efb4eb86660c6a27e50782e34fea172f4cec95b1fd87a356705d3a2e337f
-
Filesize
16KB
MD5a8d38fc26bae504a8962e279e5d73863
SHA15802363addb950287677b3b50281b3c3ca085cf6
SHA2564aa45cb0061dcc6c331e4bff28eb14d2df9cdc3ea3da96adc079083e4885b044
SHA512ff14b824621b02b29d128266ea41fd813952e19681f4ab1eb54bf236d026fd4cb69345a39da9767b2cd945c5be4409d4cae86d5aa841c44b2dd012581388f2a7
-
Filesize
16KB
MD552ab631354ced12271a7ab13fe366717
SHA103a910c0d66c73f0842f44d45b9e1fce28095c29
SHA2566a66510860a3e0bcb33bf731556c02cc76df590b30376e4dad1fed9bdb32210a
SHA512c2e2d4625b9f3b9b7551cb851a3545d7cd4b88587d158dc6b19018ae4c4c05ffe57c5c32f7340faf81d59fe45f2c09d0897b8017f912967d4ea59bb4b67053a5
-
Filesize
16KB
MD5835cfc7decf507cdc5e54f602e3f9699
SHA14a55d424cb32e766554672cb2d0b3804fc47552f
SHA25629257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852
SHA5122ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d
-
Filesize
512B
MD551ddca4fc4eef61bbf3f9a5da9ad7a9a
SHA1758b18909f8b55fed49cf91fa1092e390b3b74a0
SHA256af8d88e085b073821d1f17c67b1babccf60c2c2129ace2588a04d56f91a11267
SHA51218305449eab3a704112acd778d98a7b6e15e3ae20cdad0bcfaebaabe27913f4fe7aff191c936b9b55bc64b7e056e1e43bd8f99226dc128f6e7bc6b97979caa0d
-
Filesize
36KB
MD51dbe06f81fc4bba670bae92868bc747e
SHA19a36e21260a782f2e0c7f0845bd2055781f0aea6
SHA256c5094152d1271f33587db17dd2706b211f62d6a3b22a3da574c1932e0b75bafc
SHA5123b2cdd7b47b817e7c7465124562f2a753431ba3f4007924fc795c9b423addb5474c087b6a74d55c10d1f063a34c83df155697ee3ff7c8c867e28af63d9823f2f
-
Filesize
4KB
MD57567382e55190a15e4a39d1b74f90373
SHA188d88849d1ed3f138a45ba1675b0251b9036dc13
SHA2564ccfe04d1cddccb05837b6de1cdeadae72c3637a034f088989b142a11c8bcf0c
SHA512b1bff3b8fc94d12e2fbde0547fe9c333d0999e30cbd531cc634cba9345898aceea07a42480230473f6540275a8b416fe3df2b7404c3f12b9b88af93ed86663d8
-
Filesize
4KB
MD5be64f34bcf5aeb4d03d946a59ad9c00b
SHA14cc0132f20e6d1129834c73771b2ce9062575e42
SHA256a468416824bd6302e18766594761a704df4a68ccf48ce4b374a58d2455ef0772
SHA5127d4ad4261fb4d7bb778cf89cf6177cd6f3dddd2826cd29fcc718fdf713c46cd5bac33e7cdde7dec1c4170dddf4f4ac73c3c7761fcdd22f06c3321d0968f6afa5
-
Filesize
4KB
MD512dd5f57316aa455b7c9477ca9a34136
SHA1859f110fcbee60a79a9446e254a415a6a8cf7a00
SHA256e0ef819a6770e3c550a48301b59c9e24aaf2f98c5753ffd07fc55b8ca312e368
SHA5126cfb2d29db566d62e4a7573ea9383af6724384a28507e0831acc0efc2a815116e3e27d443bfc4e34331dc0d7b8cb3c9854707c6989aa3a2f8742b1001985fa08
-
Filesize
4KB
MD53f905adebfbd6fb5f8d16e935a277dc9
SHA198f0cac98e5dada8a7c67fb4505038d64d6a359a
SHA2569d988bea387960c07ce5d3b2601bacf4e2d181d319555593835a89f0e2e7dbaa
SHA5129801ba7d4641fb5c273c560dc4887d89e0b9732f75f921e18373a2d4953fa5420a719e9530985d017bdc50138913072329df7f68563440cf8e7c248e5ce92066
-
Filesize
4KB
MD5ba455af5c4edd53b1c395db37dd66169
SHA1a1701b9d2ab8f7e106b142a5ac0cc63bd888cb5e
SHA2564e3a6a6dc37f67327aadb745cffed2e6553c41ce81c8e466fae2442df07357cd
SHA51216aa42173a950ef88094484d9e402162fb1439471c1b9fb019ddade36ca3e29115e3a5cb4214cf57b92bd5968db4e48d203fa5198efd2f959deb9effa85f46ec
-
Filesize
557B
MD574cd11044b9ed02aaba5c9a1bbb4398b
SHA10adba03c75085ee45d564b9a961b84131fcce3a0
SHA2561e3851833e0281ac22fc49c846abf0234024661c99ec69822989e60096de8e57
SHA5123cb1f7a8d6e8faa1e5bd3d844f5961432c0c2dbbbaae620c90bc91e931e716109386deced9c2f489acfe7568316a2d440161bd9632b2be83f253596e2e130d17
-
Filesize
90B
MD5122180a504e7f25007ecbe12d2daa8a4
SHA1ff02f08a40a4235c522e18d136e3f2bd0b4fe0c4
SHA25641216629416d15cb77cf1724c710b97037f6e7da65e1e2e17e3d53fe4ccd71d7
SHA5121fc0e5999efe5d4b4c435bf3e1c5283d663828f2c7c1e1f5b6af079bb78d9a93313f3bce259fe7893a9782fc0c910b0637c9703404c18a27ebe7e28355304088
-
Filesize
3KB
MD5a8ef88b6f6977e1db4d3ba49b9f7490d
SHA184aac74098941a977b96df716bc4b4eaf6d6c760
SHA2569af9d67176a3ac6dfd2a8b4358f4f67a3bc58671fba6323bffc9761a8cf48ed2
SHA5120f46342a551b45a69819d214391484c612cf277e65d485eb31513e258daabe13de4f6415f75ed508855ae0c540119cdc7bcdc8d835e2a9f3582ae8999da3c4e8