Analysis

  • max time kernel
    18s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    03-10-2024 02:20

General

  • Target

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk

  • Size

    3.6MB

  • MD5

    39fa2c58237de702fc3458251f358cab

  • SHA1

    16e4e5003046f5d07a0fb1eff0dad56d9ce53be3

  • SHA256

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc

  • SHA512

    023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126

  • SSDEEP

    98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc

Score
7/10

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • com.systemservice
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4485

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    56KB

    MD5

    fb396f363f5073fd552037756bc98e84

    SHA1

    e1a7e0f7d66cab3f56107467d56703e0e1828807

    SHA256

    0dd6cda5dec68b0ffd7d65d9b040e4df9f89dad238baef05afd00ca05083fa35

    SHA512

    474fd8a639238864bec821d2998f24b4176292f2eae8c3c06b7097370b044414adc26027831da1c9b9d8bdf3872f29652f7a305c0f060bc81471be1186c0b1e0

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    f6e1ba9b3537cd9379ecd71bc9332232

    SHA1

    28d1d0bac48ec88bf427e11f13521c4a56b4c00a

    SHA256

    945a42aece309c9927a3a31b90ac51ef224efcccd0b6a7b0fb7d21e38e8575e4

    SHA512

    5f2126783f8498f928bdff69578b35e5820953afdbd750c3cbb6520afcd097c536e2a899bbf938e0ed3f35d13fadf3a0c7e1674ed07c066104094ee9a2a5f490

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    0da6be56253a136212bd28a6887c9d1b

    SHA1

    cf1a196efd347458e2912e64d7ac2c57e191f52b

    SHA256

    eadfc373aec609b7bf67f27cf43a23eddd2a311cd18d3991300f40103cc7db45

    SHA512

    47c8fc03026fe4ca41dbfb69737fb63174eceb5f405888618ec42d2de12b78583e9e5bee7be584c7e703fe978b4d818323f3ed0870fc8cac98b2303d4f272bc0

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    7ff171c56ec7ec2c03325e6ca22e85a9

    SHA1

    7c179ada079209f78d32fc6f9ed5da2a918911c5

    SHA256

    be8ad5724bcc7ac5bd8de7a0eb8c1bbe6a801d8868fd123d9cdff809486feef0

    SHA512

    429c9828eebdc0f0d52b81806831f31ee949f989cb3f369f0466010a01a1583413397d7cbfd28ae4ef694c02c0ca3e4a707569d12eb494df8665de5e20ed6dfe

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    d9cf75fdd1c2292d986f6c3d5d60f2c8

    SHA1

    07ecb1d3a26d952ae5fecf54f36699ab498510b1

    SHA256

    2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

    SHA512

    442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    50a3795f6385827340e047f14038a3ee

    SHA1

    c4d25915d049fd8b8ca7a0f0b978be9daadc7cb5

    SHA256

    80b7d554293247f8903bf9daccc52b8b6dd7f9e2a6e8945ef933e3a0e99fdc26

    SHA512

    dad1d53fb525c25e1862410be53b04b0388448108c0e9f5072ab34030dc8024c25ba6857bf3e34b719b05afff9ff5875d0f63659caf37ff037880123e16a6c50

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    745e613b7498d8cbe2330fdc346b6885

    SHA1

    043fb7c3b1460deaa4bd52e6cdff53eb9fd651aa

    SHA256

    6b8cafac65b13ae94a08b163f5715c2495712b1761b00e56c60fa476f075693c

    SHA512

    c5470f073ed605bc477df8b3575a1d02ca1b1888edd314c04495ca882051851ceba1177250e841386e21f4c8a8298f8e6dae1ea6d98da77679dd34a0cc88d237

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    484ca460eef56ff86dc92a5814ed923d

    SHA1

    a5d3df52c3999d8734332d4e029934428f2e02c7

    SHA256

    8091994594518eff03abc8bd9957428acd4aea3f6d572aea957d76ef1785e92c

    SHA512

    e017297ddf807aeb975f630c143e9d5a5d43ed2f4b1e055f8c637bab3f51c556c188beaff02a7e98280c44d2f8d28f26aa6f6564cfc197ae3146540617096d60

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    db0dc987b10280f1182a68b4499d712b

    SHA1

    200a86df092ef0e77a5d8702dced4ff75bc9cc2d

    SHA256

    3f9acc1a3e8ae6d702ffe789e5691c5f38d85ee4618d2d3b3096f973b924420a

    SHA512

    0dfe1d2bb86df97884cc444162508312803f47a6f973bb011eb808d8ed555c07e1d219ac10510174c876278ee21cd879b632f505ba7be9480947a6051e1ff8ae

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    2238195eab25764b61f2d26ef6a720af

    SHA1

    d366efd0cc079f0f87d23c630ec8d99f90541731

    SHA256

    599d63ed390f7e8e81d82b379c9a733ffbf454bfa5843bd0c909737c8d40dfef

    SHA512

    478111185428119bc92f0ffa3b6d88a7c644108c4b1d9b14a53bea1d74278bc78e67752e41d464dd81e3d600de8b7a723d0c7fa0ce920250ffd26977f9fa3470

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    820df3542b0e417cea2d1da1c0d2e854

    SHA1

    c81ac43daf49ccb04d9d46081b7d1d8ff5235ace

    SHA256

    a05a4f5f696da9d868ed89f5b8fc6f42a8d017f3b53f2441a862fd4914015f2b

    SHA512

    dce08f7ed8fa462d07f070c7084b5319afe66f2e710c6fd752757e811c3178821965c75505451060074bcaee6e67a0a0b1aa7a4134aa03e185647b69df250133

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    13aa31541f54b58dc76b4e55766461a6

    SHA1

    df917324746c8f197e3714ca4868acf32adcd22e

    SHA256

    fa0348327cb569baad0e09a865ebe30457e4e15d6fe375c9273ffeaf3c2f4862

    SHA512

    1dc335f15dd84179660df4def798dff041580f0b35c5552c5489ffe0fed4e1c152c769aceda9e9add351a27345475954e21abfb1bfc12c692f63d580e45d46df

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    54950a5a46c608570976d49a7857cc5d

    SHA1

    e13d379ed8891a268fefd51393de27f3806de095

    SHA256

    a190cb208ff8dc5e7e24c89ae3bfeb65b50f94a4895a0111d003ac3e0ec2f0f2

    SHA512

    027a850dc2083e4b728063073fbf684b0cb70baafea57cb0ec91da269e53dee2e05967cd799c7526a5ad607ada23ea7d80acd8698065652bfc9a32b35a20fb97

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    024c11ca84f838488be6825c51b7ab36

    SHA1

    333a41af345572f8cf8ceac9a5f1bf36038b9921

    SHA256

    419b9ca315a633c99c7bf0f8f636da7bdbb8322fba55e02af02e21cfc6512884

    SHA512

    ef52b75bc29606a7d10a65825a032a4b358ca4fb254acee5d54122bd5280924de35cb90c2bb1624772a2f363b7a17276cd47e289a9879106052344780754c5f2

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    50fb9fa8a9f4ce5c039254b5236efa8d

    SHA1

    54a35c9ad0f9ae77bf4b31901d9a63d9da6e6348

    SHA256

    e96f5cf2539ce8c105e8035a80a3c67668db837fa2771c6d45cf78fb244a3da0

    SHA512

    f04809f9aba47f9aa768d0973dcfb182ce05f4f846cf522eb6cc1d1f2cfe9ba49fda4fc5e0f743270576f6bebc53c857db6aada8736ab34fe488181891ab9aee

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    fedb7f238ad95ba793d013a1727a93d0

    SHA1

    3356a90a983ffee6d76f6fdd19868bb9ef6830c1

    SHA256

    d7794774b1f27ecf73c7773504e68e4900644a37f75fe6969c185a11fbfaab4f

    SHA512

    6826fb541f6418f60a80f5e0740bce18289d5541870b87cfab133029252c8522d72b0f38df771636ea3ef177153b9739d9000130b79aead10bddfbbf832125cd

  • /data/data/com.systemservice/files/PersistedInstallation3182266905126591196tmp

    Filesize

    90B

    MD5

    bd48da2cb40ab640d3267c131c76d390

    SHA1

    390d0564bc894aa5d2541a157248db99a8a0689e

    SHA256

    4d5500c2e968429b3633e9fe32272ea530c550f938463bc9d68fdef1f5cbb9ea

    SHA512

    00f7c7983be10c3d1750a86ba55d4088937cfa0478b15047597c75aafe631a2986c1ffdb048d90c462307de1c0a226e607e7c1c99d0061a86effa02f40e04777

  • /data/data/com.systemservice/files/PersistedInstallation3687495333825135974tmp

    Filesize

    556B

    MD5

    6afc139954a5a2ebf280f40906aa4a41

    SHA1

    f459226e295ac5fd50639d41bab843fb6ebdafe4

    SHA256

    5af1fe2234a1dd8a3f64cb3769d34160f841ea95c721b597176d1dced9e00b97

    SHA512

    4fee7b2a306f5c31a321a019c0d79885cd23a16c41f4f5eeb78d256c58654b9eb935e1e8f21e397fd7b1e3428b0afd7942490fb77a621767aa0686600ee09d2e

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    6KB

    MD5

    01078b5cd2150bd12e7f8e15c0c560d9

    SHA1

    471b76440cb27f509cc13774bd63afd213076df2

    SHA256

    195b601d726de0e1269848d214ad04e00005051d0a8165bec439820d0c33f3a9

    SHA512

    ba0ddc286ee927c557bec1aa73390370d29bbba548a5f0ef58fbd158a2cfc9f4101d72c65fa328d99616f1f3335bbf0d0830d74b186d1256d5d1c72a960bd6cf