2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc

Analysis

max time kernel
30s
max time network
150s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
08-10-2024 02:39

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc.apk
Size

3.6MB
MD5

39fa2c58237de702fc3458251f358cab
SHA1

16e4e5003046f5d07a0fb1eff0dad56d9ce53be3
SHA256

2c193c9f18db13d13903e0cd15c90ff9c3623d2a0b3b74c4d9e2a173e87cc4dc
SHA512

023b77900582d0b6629d587f7411ce5153124cd3870b9533cf9afc5304b874e4353d8dabb7adf8a199768992123e707bc6a87ee682463c3bdccecc8a060e7126
SSDEEP

98304:kyHTjmHgJcyw+WoeX89z6Odp/9hBbW+te6lXhAyHmz:k+jmKcyPsXMl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5054

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
1502e485a75c88f4465909bfe8710901

SHA1
9feb6cf7972b7f53ceec69f0561b122aec0af3bf

SHA256
b284e437f96f3e451de670b720f426ca5c2b410f0d1415965676ca044cf43a2e

SHA512
6fb1574617ac37a755462ab7dc91186b7f6ca04ae74c8e55389e2c10e8201e9ecdf3400931646b8864b4162ef5e1183dd4018bd16f05470e9f05d26030674c2d

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
09fc1ccaaeadf713d2604c565a72f08c

SHA1
e74dd45f4a65d30f8293332a2b21d1e73d7a22d9

SHA256
8640c0b8ce8f8b445243f724f938d90ec397688963e4925c68853eb7711da317

SHA512
da4d00331adc3faeb56b7aff94f8b3cc47d93a77eedae2ee09f51a10a5feb86534fae0bd999c5870c1de9f9c883929b3bfc48fc5d4586f111d256b79bad4d27e

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
11740b220c149f2a0df87b1a3d453ef4

SHA1
6d7d1a583975fe0f208cf84ff212447ac151f7a1

SHA256
1bbc08640321054b2ce260e6e6fc8576c40700544f870bf13895fe6ca90c8f44

SHA512
00c394c44e96f20aff4ef6b4d95186b1d83e3a31b67bf6ed13eff792725147bb7f7062921ccd576e488ccaefde72a5508791aac9d7fd5a77d9c04b996c8151dd

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
ca9d9c7a213d22f6e41a076e24c7237f

SHA1
54a85260d52729029d6c6372973bfddac9251b2f

SHA256
20cfcd99ed090428be9522d5315e8826070ce9999fbbe8c69ac3e3d1d034210a

SHA512
db28be23d9a8fd6c4d20bf0bcda3c0321725a3aa74609291e39efea7e8a568c133a3485ede74415a440efd8ae52a720383a36581492a07becfeedaa1eaae360d

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b3815240c2e823b2399454ec6831dac4

SHA1
18ab9113014b6a8479fb16f32690cfa2fbf1f13f

SHA256
345fd33314f9e621f9546e8730ca9e4a5ce1ff05d90bb43a43ad30adfb1f59a9

SHA512
91824e07bdf96b1a481dd7676d89ac4666d4656715df2f3515f340037f7c1601d63a03734b57f76306342c64d55c085644acb6948d73b389b16f8739622b40f6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
751262f20f2062df878386e56d82189d

SHA1
0bc6197f71691fc623fc2ae89a2a3d82639c9fa5

SHA256
b90ce203314e54f8efa6d3b8350c8f440f420c810a0a8db9981fff4300816926

SHA512
816ad6db53ee8b8899ee2e336fddc1c52919ec6ac5ce834178427c6c909add80e9c0cb07ae1a24ab5765968375647dc02589d7f399b51fcd2330137cd0c6d59b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d8ef67e2dd29e36afae6e0e8e8bf6a44

SHA1
53021020d02b6b60c9a670d7dfc4d78513fe9c2d

SHA256
857165898829c2e512a10b15b0be0256a2e35111cf8fc8f184e93252f16d00e1

SHA512
298bc117eb6a07f2c886685c07e07f921f4f2d9a53604c1dc317cc10e7b6bf7eee8fa99b5780fec6a0b0fbff959a4bd90db49760b2e3e87992f07e9e0edf4095

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c8e33d3c50b893ae5eb4182f259da977

SHA1
6d4408d3b94d2ea7c365616ba1691b65005562ac

SHA256
2c4adb5dd74b6a239e5b103c2a6147646bd94caf8ccf79a261f721eaeed45129

SHA512
6590c51d778b7caa86fbd43b2c0ca62d1dc756eb48b8c9a6dcc9ad367474332d6ce7006dfd1ecf0693c6fdacd27d001347d891b8155d063469c3cb94497b8747

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
1e3b25a1744ae31bd87e4de4c7f21f65

SHA1
4442d2d95fb8ca9cbad1a9e0523245c076f5fed0

SHA256
ff4e70df221564d98f1f639ccc1ede3645e25cf396906dd8048452ff1eb1f044

SHA512
4055c49fc1153a144b519aa3d3f8d8cce456a2073f76b9ebd1027a324960d5b7e4cf3fb9c3a5f0e348fbf32d7ac11823def624160b79a3382bde5237cc18ddb6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
733c7da370117f397bc61dbbc8e71bbb

SHA1
9537403bde962ebec0f90ce2b336202eb7d0195a

SHA256
1acbe15f091c7007c25a7fe4d189b9c9b8fab63850547d8f56a633e2d61efeb3

SHA512
3af0968e1df93940998b704a9d19752b0cb72988014e3a03505596cc6343690d2d4377dc7d59c55eb5190092ff7ddc427e7b11c7e18b3016a819465fd6bc2210

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
03b5777d1603dbd4ddccd45c4a66f984

SHA1
307d0ad60615582f3e03074795e0d36241043424

SHA256
45729f8127f44dd7667ef03422c4856a750d9a0b5aec6791d532a3b1345ef0ff

SHA512
9c67764b9bfbfdcd5326d05b87537389642fa00e5401e5d237826c74f281d3c682b2c3a590f97fb67f595877cb0718062117b5feeb5a10eca57b69859e168672

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
160561a2c7c4928262d189bf474c1c63

SHA1
7bd9912c5a8c97185ba0e283d0cb417205425632

SHA256
4a2a0a0cc083245646861140710484a12203bfcb568191c7450e7dc95c92106f

SHA512
64dfece84f84868a9cb9f8188cb5c827434041bf434d21806d1c85d4abacc7e6a0af07b961a14d71654ceb798b1e5ac0b20cac8671263c9d1a25dd8b6047cdf9

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
302a383d7cf1e03cbca07d85aa8e3323

SHA1
2fedf3571e8c4bb42d76361bf0b25bb8bfddae69

SHA256
b753c30b52159d1f1f7a7a813ae1505bb620c8790cca2f7710808219a874f1a5

SHA512
a6f23b1c654c1381b595f2259f23c6b9ae40ea990892c6b7ca10ab3b6ba81f988a53b89adf82cfa477d40c9e3fc29e67b6ff1bfd93dd1023519a3b039be13e84

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0401e75bb03ed10a51b27f82a984ff4c

SHA1
330c9fccd4cf46269b63ce3e61c9d7fdbce357ed

SHA256
35b8e566f52ac820aeabe36e50128f584aa7f7b5eca2758e544b828cd6ff0763

SHA512
5b0fd3f8a9e6865a264ddf1a48d3041e1cc9538c4fe4fa1b8e07043f13fba3c8c64df2e2a8e505a025f82bdaad1ffa5d9133ce0647b982eea517bcc3029d88c0

Download Submit
/data/data/com.systemservice/files/PersistedInstallation1894035441073258366tmp

Filesize
90B

MD5
dee26ca6d497098df4ed967ada63795d

SHA1
ca307282caf0a026bd12aac5efed5c6e7e91aeef

SHA256
daf616c002bdc5f1e329e5b044c9f20c60df1108425cc2f17f2ce85adf724c15

SHA512
425f1aa98cd2c335f0568763f42fed74449d99fc6eb3362506f8626e86542565a10269f0143e13a28b36710af47c3f1402a00c3e061f20203c5411e760a18a2d

Download Submit
/data/data/com.systemservice/files/PersistedInstallation7978268129891893822tmp

Filesize
556B

MD5
86876486c0c16309eeb8b99066e7fbbe

SHA1
84ac0dbcaa13f7d39ca56d47d547c0d673888c45

SHA256
e598dff3bc15385952332e69b2f7d739f7698755e1842972b986abfb847989c6

SHA512
fcca80a8006d5434cced8775546345d1f7d82dd5461a2161820a735fd7776f200af100d06ac57e6761dd06b061d46beccfe7a2883b1a412f28461e66dbf6e194

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
837f94b45d64351f288534c136b2255f

SHA1
64937617cc252a1fbbc8152273684950095a1cc2

SHA256
e662876ac012331bbc0a9d2963a81fc347f310d8fca22bc00ad1888890860bfe

SHA512
f32ff202877a337428240900898260f02a8dd7457905ebb6ff7973e752446e5b4e164d6c6a46a190c495cbf5f3c9e3df521bfba6c71de06e5cfc4bff3e87b850

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads