Analysis

  • max time kernel
    19s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-33-x64-arm64-20240624-en
  • resource tags

    androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
  • submitted
    04-10-2024 02:27

General

  • Target

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk

  • Size

    3.6MB

  • MD5

    39fa2c58237de702fc3458251f358cab

  • SHA1

    16e4e5003046f5d07a0fb1eff0dad56d9ce53be3

  • SHA256

    2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc

  • SHA512

    023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126

  • SSDEEP

    98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc

Score
7/10

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs

Processes

  • com.systemservice
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    PID:4344

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events

    Filesize

    56KB

    MD5

    5205979546869f85e4f75706f0245ff5

    SHA1

    242efe9f92fdb1ed189cb01de5e500f671ca1af9

    SHA256

    ca7d1a51a5c00ef4476871d3d4c6e64b5174c4aaa332a997439b9c8d9f94b897

    SHA512

    a1c6ed852d30407b1e5b72254036f2fde0ab998e82e23eb421f0df30920379df88d6c6646d51e0f3201e5a53a451b16765399b2f877676c511803975df76349d

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    512B

    MD5

    1ea82076ccb24bd47d42c4ff95318fd7

    SHA1

    6e9fcb31a131b4f9a2b82e738a576f278b53e60c

    SHA256

    a3161a5ce7a8b1c8dc4dc0dd8b332bace03f6d33a013900b83e1e5b876ec37b4

    SHA512

    d2ce0101fa262c8bd48a694f878474454314d68e3aa2ad27623364db5e5273457ad97152791b62cb9c0bf995f85853b7567e0a4a1bf77a0ab4700e9e3c5d6953

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    dd8cb6938ed03fe6d93f6ce8d7d516b4

    SHA1

    8fbb10b558ae83f68a3ff5e60e084a2af4d01bf7

    SHA256

    5250e01d3ee7b025b28cdee4d6e72592fd72ed32e9bce32644e7727cdec33b27

    SHA512

    31a4a14de33daf73a63c03696ad4fa8ad12e03cb6b2f050a21cd419fdde874c3f38bb7997ad03df772a368e5416dcad27f36afe59381df67f3a3b52e0ab4c050

  • /data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

    Filesize

    8KB

    MD5

    e13b48d52827f2c84fcc75820328df36

    SHA1

    89f79680a0d401c44473d2b19fa93e5d582da6f5

    SHA256

    d673e4d18564f145b0568739546946ed3c48f10f368d46aa4403466de38b84e0

    SHA512

    6997f69787c76e2157a1a200d8091453e96b61bd2da132bfdd08b079e8cce5a35c0713767d064b8a22b2c5da7ab13dd673934ca0028f2702ab3036031e7c3749

  • /data/data/com.systemservice/databases/core.db

    Filesize

    36KB

    MD5

    045489a0639eee27bca52f48828cd93d

    SHA1

    436e7966e7c019273c44faa4d8c5709b816dfda3

    SHA256

    0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

    SHA512

    c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    62ad4a05cbdca7f47b3206b7dbda487f

    SHA1

    4f4044cef7b7b1e5c6184ed9025267fc92bf0cd3

    SHA256

    18b909096c7c61d51ab076ae8e562effb0d4ada28e2a4ecd0e6b88ef58f6b2a6

    SHA512

    0936531ed1b2b356a247123200739a43cfc765469ab47a424dcd6e3d1176092a212b0a28591d07f8c2d0cc9d2e0eeddfcea8dde314c2f9343783c61075b071a6

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    abf32df6c78aec58cbbe9b486be22101

    SHA1

    63a89f556916009d358505563f4c8aa1ba08038e

    SHA256

    aa30ce416f7bc5c01789f9271d7ec8f38d3a5d5bc180da10fdd49b10f3f815c0

    SHA512

    f3e2b4e978b9a8fbf269f78fac71b7cf99428963b1a0b39180701409aa91dbf1cf0820ce2278b99e6a3adeeaff0e0f0d3e317b03a3184ce6066ee000aef71240

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    3b8472614ea1fb28750693c8a8b3105a

    SHA1

    8d23928f4410bb48e6584fa492fc15677cf7a3cc

    SHA256

    540a989cb1cda9bb85ea32ac82f3dd29c22a717e659ae6663a6a2c1abab07c05

    SHA512

    75f2de9f1b0d77d75ab41e27b3c9e86ee0dca2f672bcc359fa986d32119a54d519899434ad710d5b53823b808fbc90efca5604547c0a7275be4eddaa586577e6

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    01c199be9acf5eeb57c5d2af03e3eabc

    SHA1

    0bc0cedb4b928ad05631ec9b2122868def05bf6a

    SHA256

    2286ecb317d0378a9d53aedb007f36a2b433d588af4c728fbd7aae2f6e2f24e7

    SHA512

    b583444424b0c94da33bb9bad7cadfcfb34b85b7da1e1b4b768c5cfbeaa3f6a3027dfbff3e9ce5599c1359867a63f4488d93e54277663fcd145e29d7f663b872

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    f4c5764c4aba86f8ffe74709c5226d9d

    SHA1

    63527ecffc354108e0270382b212aad8e6ddb62e

    SHA256

    57b7bc82831251a3bd9dd6ffb9c8232a26b29e74f02d82b161a425bb2fa3985e

    SHA512

    1f62524a8f2f0fb33e50824cca2cf1d54d2737c22594481a76026755ff2cd815af3b3882f703135ea0fafc014070ed980c4544b326fbfcfd3518ef4757f772b9

  • /data/data/com.systemservice/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    e3f13c7d7678604e5b293f6672bc0ed1

    SHA1

    b16c998ac7ca1db79cd4983b207a292ac1d96e21

    SHA256

    486eb5bec4ec277ea7b334a0d0e431e5e62881d3462903e8294640edbe96b2e3

    SHA512

    b63bab85a373912587e78dfc9daf8b4168a223c7af08fb87de8140d66b9f35042052d2d25694e4ea7c9f2064107e5471318b6dcec39c4e3dc0aa352627fa09f4

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    ff2d5fda3f35f52ab48de1432abfb332

    SHA1

    f967a21c0af7b3f6886ba6dbb8c128a940654e06

    SHA256

    90a9e4aea4510ba9dad2b5caac66ef20cfaf246e5e1251bd8bfa1fc2ccbce224

    SHA512

    f547dd7857e390d42d6466075eb6026ab396bf510adc13f6b31fff2a7a2c5986a6c7458fda0a9f722f2b7ddb485e968038780e7795ef386c16d1c742ae355bd2

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    9068dce04eb816dfdfbf153ec5987b11

    SHA1

    d5bebe6dd80e325919216abeadd7f761ab2a07d3

    SHA256

    3a8baeb9e32bc303ec3f9a7db7995efa6b1d9df0367e483dcf2165eb47ca61be

    SHA512

    5cbe84392eb7a087b05513a7baf82cf02f39e9a13d03e8a932b8b0d6d8cb48eb224ffcac3a6b14515df8522daca4e004d97d7ae4d1f43b43a111652ee8662f33

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    53e02121f3c7f899921d9fe85fb3574a

    SHA1

    c0e6c4ba2064eb7ae5f904a52f2a5cba83170f62

    SHA256

    c3530d605c9aba9b092f75af5a4f31f3df6eed41545a6ef12a02673ae13942ca

    SHA512

    b52c05e85a9ad1477da7bcb4c2f9824b1ab4d12cb6773cd9be7d0357d0038cbdc2d2be25c131fb5f624d92ca6ee6cc896c347cf685b40eda65b4d877cea04c5d

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    49556f00fb0e0f89999b44cc397adc45

    SHA1

    f0c815acb6356bca67a40be1014926a9b7866f81

    SHA256

    ba0937207c31c3c3a2c3d4118c84630e7c72defe13926bbc63a6ac1a59b0d2de

    SHA512

    08d63bf694a8981a08fd10e17cabb98fadb39f0f6ff96e6fd379b354035f66834c2187c0b7288180b0659cb0b4a79736c29bf6cb0e91710e385bdd94627897ba

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    8f16055ddd6de676ff07fdc44a55b2cf

    SHA1

    ddc1b68b17a5a1b0fa3f71a3a139ec2ce2bd8c50

    SHA256

    0bc33d1309426b0845ededc8d4e916de6c189b1b594af1984d875ff20efe1ebf

    SHA512

    348dd7c546fb27153cd63e0f7b293ca6a10e82e79348396f563e00aa125d0e554f907392927d23e8526237eede552baf29303633a05fe28d4ec0b07cc06e4737

  • /data/data/com.systemservice/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    d5399fe91de47c6a171c79c2a7ff926c

    SHA1

    c976e5ae917edc48e5ac89e9ec926de5021a4a89

    SHA256

    d3cb655674bd7def1a1e0e11e0d22751d0d108aeb78e16913bac8e3760c42b0d

    SHA512

    ed107288cb6c37ecf2d754e7d5bdf3eb9d581104886066ae328cdb00030d4d422c7c01efd5dca920e9bdbe8ca13781c1ae59ef075a0188cf7ed0b2094204968c

  • /data/data/com.systemservice/files/PersistedInstallation6903740247419492622tmp

    Filesize

    90B

    MD5

    19d7ec0be306b3acfcbbdc1f1a4ad923

    SHA1

    08e4781d8b033eda98083f3c9697d83ca2359e81

    SHA256

    3ccdc3ff2ad22dd6abe6580c3ebe326ce4826a00a5332bfce801a283caf442f4

    SHA512

    82ecc776e36d870be975aaccad8dd26d25d05bf9875418f4ec92b969a99e81f4a44c6caab82f893675adeb120d53fa0ad14ac08f6bbc71934a13afccf45119bc

  • /data/data/com.systemservice/files/PersistedInstallation8516403422994668259tmp

    Filesize

    557B

    MD5

    a522de67c7cbf9bc60cad1f2159f9618

    SHA1

    da1377e37c407c3f45ab1c0a599ecad93410e411

    SHA256

    79cbe27d3b1969605be975d51e482460034bbe6565e82bfb6b0d23139dfa1b30

    SHA512

    9f9f429b647db3dcfbeb3205a25b882f816aae138d650b3e09e03328ec035ec321ed4a30ce6bf249c2c29f933f4248c42dab5effb9e449c4a1b9b8328c42e83d

  • /data/data/com.systemservice/log/log4j.txt

    Filesize

    3KB

    MD5

    d35962cf149bc47afce8746d10a9f499

    SHA1

    cbecd9729f8ed92ebc9f9380234c8daab0cd141c

    SHA256

    013d74ab18693ad71bb5b5b50a866a0ec664e1a6f8ddc1047feed3cf8fc5cca2

    SHA512

    f2046ec291951096fd53d3518ab2cd8619419dba342d93bbce2b08421233bc5891c1174fcadaf2073de9e5bca5d2a15e1c7b570ab41e1946b6d8d9bb100c6e90