Analysis

  • max time kernel
    17s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    02-10-2024 02:38

General

  • Target

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk

  • Size

    3.6MB

  • MD5

    39fa2c58237de702fc3458251f358cab

  • SHA1

    16e4e5003046f5d07a0fb1eff0dad56d9ce53be3

  • SHA256

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc

  • SHA512

    023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126

  • SSDEEP

    98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc

Malware Config

Signatures

Processes

  • com.systemservice
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Acquires the wake lock
    • Queries information about active data network
    • Queries information about the current Wi-Fi connection
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:4250

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    881c08c1e5c2c743394dade1b27fbb7c

    SHA1

    c427177d8a4366730e24d5977ec8b509b7f3d9c8

    SHA256

    cc523e618164c56fcc95fc503ad4aae8285c0d71459a5bf7c7b945b4af4f99e3

    SHA512

    dd61485bcbbdfeb2d6607c90ed46739e92bb6fbf172d0a75d5889f4a7fdce0f0890d15f1602b6bb4076fb2b1af2456e2c0e5b61ba0f94c25077fbf781782b3c5

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

    Filesize

    68KB

    MD5

    82b05c41997a2263520414ecc7880e7c

    SHA1

    a70754cf6e2da2f826e408758678c455a9d92300

    SHA256

    a331c90ae05921bc0fad5d33e2da3357725589ff94b4ad9e4f7018b80b57f681

    SHA512

    e36b6242cd0ae3d5d33455496a86d055f8ee4b2f7eca30b429c42ffa8e817cb3dfdcfaceb110267180cee9bd5d2ddfe5e914a68e610f321139b76edded982930

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    ea811871b73a85926e54e4b1c035fb21

    SHA1

    9e683248c8650efc0074a0a5085fda6860d6db19

    SHA256

    4db23588d8e12bdb1f60279c5ef97d9280847688f7e1a17c1a2b15aec035739b

    SHA512

    5a433e79d8373440c64e3b9a33bdfa0320b1c8a34754d6001ee20492bb29b6a8fa0550b16d513b9b514616e71815b608d590ad621233e64b7944c1cdf452c215

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    1509d2a821d803bd33a3fde3ffc1e23d

    SHA1

    e37042abea95d97c736bd5975e912e07dc8f3f7a

    SHA256

    5f53c124970a3f1e7823690885d21d205d3c243386f1f5d9a21ed04b5116865b

    SHA512

    23d75b734a4a6a2b5354964dd8dd91e4e02324b0375db75396eaeb97c450ca1584a5efb4eb86660c6a27e50782e34fea172f4cec95b1fd87a356705d3a2e337f

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    a8d38fc26bae504a8962e279e5d73863

    SHA1

    5802363addb950287677b3b50281b3c3ca085cf6

    SHA256

    4aa45cb0061dcc6c331e4bff28eb14d2df9cdc3ea3da96adc079083e4885b044

    SHA512

    ff14b824621b02b29d128266ea41fd813952e19681f4ab1eb54bf236d026fd4cb69345a39da9767b2cd945c5be4409d4cae86d5aa841c44b2dd012581388f2a7

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    52ab631354ced12271a7ab13fe366717

    SHA1

    03a910c0d66c73f0842f44d45b9e1fce28095c29

    SHA256

    6a66510860a3e0bcb33bf731556c02cc76df590b30376e4dad1fed9bdb32210a

    SHA512

    c2e2d4625b9f3b9b7551cb851a3545d7cd4b88587d158dc6b19018ae4c4c05ffe57c5c32f7340faf81d59fe45f2c09d0897b8017f912967d4ea59bb4b67053a5

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    835cfc7decf507cdc5e54f602e3f9699

    SHA1

    4a55d424cb32e766554672cb2d0b3804fc47552f

    SHA256

    29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

    SHA512

    2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    51ddca4fc4eef61bbf3f9a5da9ad7a9a

    SHA1

    758b18909f8b55fed49cf91fa1092e390b3b74a0

    SHA256

    af8d88e085b073821d1f17c67b1babccf60c2c2129ace2588a04d56f91a11267

    SHA512

    18305449eab3a704112acd778d98a7b6e15e3ae20cdad0bcfaebaabe27913f4fe7aff191c936b9b55bc64b7e056e1e43bd8f99226dc128f6e7bc6b97979caa0d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    1dbe06f81fc4bba670bae92868bc747e

    SHA1

    9a36e21260a782f2e0c7f0845bd2055781f0aea6

    SHA256

    c5094152d1271f33587db17dd2706b211f62d6a3b22a3da574c1932e0b75bafc

    SHA512

    3b2cdd7b47b817e7c7465124562f2a753431ba3f4007924fc795c9b423addb5474c087b6a74d55c10d1f063a34c83df155697ee3ff7c8c867e28af63d9823f2f

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    7567382e55190a15e4a39d1b74f90373

    SHA1

    88d88849d1ed3f138a45ba1675b0251b9036dc13

    SHA256

    4ccfe04d1cddccb05837b6de1cdeadae72c3637a034f088989b142a11c8bcf0c

    SHA512

    b1bff3b8fc94d12e2fbde0547fe9c333d0999e30cbd531cc634cba9345898aceea07a42480230473f6540275a8b416fe3df2b7404c3f12b9b88af93ed86663d8

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    be64f34bcf5aeb4d03d946a59ad9c00b

    SHA1

    4cc0132f20e6d1129834c73771b2ce9062575e42

    SHA256

    a468416824bd6302e18766594761a704df4a68ccf48ce4b374a58d2455ef0772

    SHA512

    7d4ad4261fb4d7bb778cf89cf6177cd6f3dddd2826cd29fcc718fdf713c46cd5bac33e7cdde7dec1c4170dddf4f4ac73c3c7761fcdd22f06c3321d0968f6afa5

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    12dd5f57316aa455b7c9477ca9a34136

    SHA1

    859f110fcbee60a79a9446e254a415a6a8cf7a00

    SHA256

    e0ef819a6770e3c550a48301b59c9e24aaf2f98c5753ffd07fc55b8ca312e368

    SHA512

    6cfb2d29db566d62e4a7573ea9383af6724384a28507e0831acc0efc2a815116e3e27d443bfc4e34331dc0d7b8cb3c9854707c6989aa3a2f8742b1001985fa08

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    3f905adebfbd6fb5f8d16e935a277dc9

    SHA1

    98f0cac98e5dada8a7c67fb4505038d64d6a359a

    SHA256

    9d988bea387960c07ce5d3b2601bacf4e2d181d319555593835a89f0e2e7dbaa

    SHA512

    9801ba7d4641fb5c273c560dc4887d89e0b9732f75f921e18373a2d4953fa5420a719e9530985d017bdc50138913072329df7f68563440cf8e7c248e5ce92066

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    ba455af5c4edd53b1c395db37dd66169

    SHA1

    a1701b9d2ab8f7e106b142a5ac0cc63bd888cb5e

    SHA256

    4e3a6a6dc37f67327aadb745cffed2e6553c41ce81c8e466fae2442df07357cd

    SHA512

    16aa42173a950ef88094484d9e402162fb1439471c1b9fb019ddade36ca3e29115e3a5cb4214cf57b92bd5968db4e48d203fa5198efd2f959deb9effa85f46ec

  • /data/data/com.systemservice/files/PersistedInstallation2808206678745296392tmp

    Filesize

    557B

    MD5

    74cd11044b9ed02aaba5c9a1bbb4398b

    SHA1

    0adba03c75085ee45d564b9a961b84131fcce3a0

    SHA256

    1e3851833e0281ac22fc49c846abf0234024661c99ec69822989e60096de8e57

    SHA512

    3cb1f7a8d6e8faa1e5bd3d844f5961432c0c2dbbbaae620c90bc91e931e716109386deced9c2f489acfe7568316a2d440161bd9632b2be83f253596e2e130d17

  • /data/data/com.systemservice/files/PersistedInstallation9215842784204455708tmp

    Filesize

    90B

    MD5

    122180a504e7f25007ecbe12d2daa8a4

    SHA1

    ff02f08a40a4235c522e18d136e3f2bd0b4fe0c4

    SHA256

    41216629416d15cb77cf1724c710b97037f6e7da65e1e2e17e3d53fe4ccd71d7

    SHA512

    1fc0e5999efe5d4b4c435bf3e1c5283d663828f2c7c1e1f5b6af079bb78d9a93313f3bce259fe7893a9782fc0c910b0637c9703404c18a27ebe7e28355304088

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    3KB

    MD5

    a8ef88b6f6977e1db4d3ba49b9f7490d

    SHA1

    84aac74098941a977b96df716bc4b4eaf6d6c760

    SHA256

    9af9d67176a3ac6dfd2a8b4358f4f67a3bc58671fba6323bffc9761a8cf48ed2

    SHA512

    0f46342a551b45a69819d214391484c612cf277e65d485eb31513e258daabe13de4f6415f75ed508855ae0c540119cdc7bcdc8d835e2a9f3582ae8999da3c4e8