5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb

Analysis

max time kernel
17s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
10-10-2024 02:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb.apk
Size

3.6MB
MD5

d836feab9d4bf3c6cf086bdc14724c8b
SHA1

c837cf7b181679a0081165e5fe4aa0eb94f748f8
SHA256

5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb
SHA512

8c7801c5f1d8dfda39e0c65bdbea83feb8f217b41b69a245d01dd9e983a6a357c8b0b2be79123bed07e638655fc66ef3a093cc01be68c696ecfea5ab6c692dad
SSDEEP

98304:5s13ZL3Vf6JqeomaMDmQZ75ub8GoRJ6Odp/9hBbW+te6lXhAyHzwI:eTLVf6JumaMiQVWovl9jS+oS4I

Score

7^/10

banker discovery

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4343

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
3e1fe2e60873584d2b7d1f8d5be74f85

SHA1
d4c2b3d7a090b70961aa97e22bcac492e008a49d

SHA256
09b3dac2deb862a55b73bd6eba22f5db13cd2ad4d93551388a24d727a301c2ac

SHA512
09181af1dab19422e2994778b36013535622ceb347407c2e627bb0450bef9ee4ff46ab521bb95b0ca5a3d8c201f729a37d3f6da7f615a2ce7a0c77bbb9b3479a

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
af74e6175f90ce2fbe97da740da59fc4

SHA1
39cf22e159c92dd63f79f97cad8f06e4d7d34135

SHA256
170f5d4ad8802f4c70a0e64ac3dd958a208880806665d7cf998c511d16f1a22d

SHA512
1950f6a4c44b1d5e34b231a79db48c8c5a9a26ed8a747cf47cf1f889a15eead3cdb6ddf2c2ef8ef283e5fe80d13d4e9ef8cd32e4e475d9aa1a95d880ccaaf899

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
7796ed21d81c35794ebfe1ab6e319301

SHA1
429e17b0d51260a606b5ddf097fa08cec8c057e3

SHA256
2b86280def29bbbf14eb1bd47b73831730e517ae45617ed9a572df9feb837e5c

SHA512
a6b720976d67f7b27d41975590ccc214c6a118690b424669a759acbbcced922d0ab20904f59875ed0c708cd0bf8f8683a29a00687eb364de435911ace31e8dfc

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
30684996f5d4193d94c32eac9b831b7f

SHA1
d0a62d21d5fdc0030b0b3a68559e1452927341c8

SHA256
a5c6d91d02e2ceca01af2d8c74dd9ce34733b3e7b1faac4e046d86b417549f57

SHA512
4fdf8dd1bcf5ff45aa55b63fbf798dca3fe17ceb58a9ee44b54d4ed5ee315188c924dcc809b593dab4989028566d901253aa68602d493021814c5cb3db817d39

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
62ad4a05cbdca7f47b3206b7dbda487f

SHA1
4f4044cef7b7b1e5c6184ed9025267fc92bf0cd3

SHA256
18b909096c7c61d51ab076ae8e562effb0d4ada28e2a4ecd0e6b88ef58f6b2a6

SHA512
0936531ed1b2b356a247123200739a43cfc765469ab47a424dcd6e3d1176092a212b0a28591d07f8c2d0cc9d2e0eeddfcea8dde314c2f9343783c61075b071a6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
fa2b2de2271fbb871e7c5e9fd0baf0df

SHA1
3e885a6e640ca8357db7ee87788c99ab8ceb1410

SHA256
8bc82d984a4c5da11effe84bac6d22b26dffec4bd11cf03b8abcc5de7f878435

SHA512
1efa6c22db91e5feb74f6bd81f0a6e4456a4ffceb5c16b757f7edecbe7192c718a230ed38df1de6f33e30d57b8ea2b7b674c5ac4a8d09ae4f81ad1ff42c8f159

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a5a7d2e63925b3ea4fe2d92b8bbed585

SHA1
fa04226497bed74c71c92bb3e37bf7cb3b965919

SHA256
7d6066994282b2d79d1fc7c8b7d39ee2672b6d2be6409824de13a0f3574cb5e0

SHA512
51eae1410c350b3869b61bc88faaba65267d65159f66cb80bea9db32596f41879adb247ce77fa0f6b246507f84c92f8398937ea20447437676cb8eecc9d50f92

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a857239bb4be618771ea7535a5785c36

SHA1
d455255aaa534343eedabf3b95757fcf0db6d08c

SHA256
244fd0aaff4b0d1bc474809c160d109012007595e6d73cadadad709248bc2e9e

SHA512
838cb227011338c5bb749f8eb8fe8139c43d05a1fc6bd666187953756f15d6f9f32473bae09a296d3857ecce3f3028249885b7f8ab639300089591b6513d09af

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
514e8121a3269fc4fc3d93f2fd7e1463

SHA1
21a20d3023a98b069b3874fdd332c144c8921d4a

SHA256
b5b2fa11284900d0ec81dced6d6e0ef45de9fb279be23518f2d8a59ba09de4cf

SHA512
a6f104ac2925e9e5adf5d0588dfc94d1ae56aa208857ea2cceeb4906ec1d7e29826b4820eea87ecef046da93ab7d6769fb55234867930376e1d9acb0e43813cf

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e3f13c7d7678604e5b293f6672bc0ed1

SHA1
b16c998ac7ca1db79cd4983b207a292ac1d96e21

SHA256
486eb5bec4ec277ea7b334a0d0e431e5e62881d3462903e8294640edbe96b2e3

SHA512
b63bab85a373912587e78dfc9daf8b4168a223c7af08fb87de8140d66b9f35042052d2d25694e4ea7c9f2064107e5471318b6dcec39c4e3dc0aa352627fa09f4

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
679872cd705b24c532ea42503aee689e

SHA1
e4d5c2bb78337e58cc7891a4eea3e5340025d123

SHA256
3929cc5b0b70e7dd43c7dfd576301dbd348cdb35f232546f8a70df5e10ed6f34

SHA512
bb3414cbb5adf82721c27a18b6f02e7c42e3975a5e3b6eb1efb2ae087f7e46fc78dae93ced4b774894bfcf489e38b0cc4bed41e474d756b4ff053733a1a66ddf

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
47c83a05637de70db704bd7da9e5cb06

SHA1
bc55c4ca5d3ede45c5a08dc3cb4ac30c1e596dfd

SHA256
20b3e9772c2c4ab7cb5777a66083f29ea13652f26387dd33ba090dc570772344

SHA512
b7c2e607e2b015ea587a0779642683d402e65d55b2ab6fb454571fd9d560f422f240fca9d533fda1c745ab6a9d2e2d092c6ea2a79b874b890b0498988d4b35a5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
b78ce6ca478dd65b15201dc8637c49fb

SHA1
a6fb25b1ebceae0e528feee117bf89d61673f2e3

SHA256
12a8ae0a0c9c191955fe5a542c57f86e61cd8fa4dad532afa59d737be17b175d

SHA512
814a2e61281d4d760beb7c80e3eef27c293d599a40597adff616bd93d1ff1f2d46d6eb82e16ba95aa71cb5f56bd1f036082235177526008ee7e7ab88a3948aed

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
aa60e2d817f7f0b0d200f2de632f1978

SHA1
8681d81002836142306eee99d1d150fded8b802d

SHA256
d114f540accccd5843c69d70908fde988a71e35fe940b46088cf29f0dc5c53bc

SHA512
3c463ad5268ca16f8c56614e4da1f96017af5c9c29688ada9314e937b5df4c02e00d8a5a43ff81684633ba18f767bf62f5a0f6e915e342fbfea285828801a8a8

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
23556b7587328ec94443310d0fd2473a

SHA1
b83f7ccbdca78134878186067fa42136ec6778a4

SHA256
92f0220670328c3a10bbe7fa004789c18cbde0266af09139bca9ab6345375e53

SHA512
ef7721e13ae6fc8f59a4c379f0288c5809f94c2f3880082a5bc4c8f74d79f4f6809dbc95a16eb566df9613f989c749f019ac1e0228384e71469fe35a0c43d839

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
2e50534758075c2c8b2156170a948ae8

SHA1
52830e23673255207dc41d03690692bbb4eb56b4

SHA256
5f0faea5a10dbaa888e69fdd130fe46d8fb001347c5eb624ad1757efbf09b9c0

SHA512
5c02e511e4a650fdc1842ea8f61605c922e247a0bca963d244820b4e54c46893c66a58b6b6efbab63cd97e57d5c148a6240499bbcf12cba80a3b407d7082da0d

Download Submit
/data/data/com.systemservice/files/PersistedInstallation1146550081690668172tmp

Filesize
556B

MD5
e61db3b5bee71f01f0c23b72e21ef781

SHA1
a6ab1b700669ed64f87c543e49de5d76c65fd7e0

SHA256
3acf1700a2d53d8982e6d58477c5063a439ed0da915a668b44dcdde5ecfcbb3d

SHA512
2376c92db75565074a9afa5b8e8351cdcde0135936faaf6f53efcb946af62642994923b048ff6b8f41d08a05dfd0b1406902cd29b90e12f8eddff3d88bcb533b

Download Submit
/data/data/com.systemservice/files/PersistedInstallation743226170859228894tmp

Filesize
90B

MD5
807e51120d757c12e2ed89428e4a2e3a

SHA1
c794b0e0c441d611db67dd68511a2494b728cd61

SHA256
144152daeb8c2cfb6b478928b19dd711a93b1f01577209d67accc25563203913

SHA512
965f9be41c8201902359d7a8fba47094ff65cd5f1bd876b15c37bc4cda1e2ccf45618fe173618b439be44aa59d045d1b34e7ab9577976c77b6c7370929a6878a

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
918B

MD5
d60e60348e8bec2871f202f7f0689106

SHA1
167da28d1791d78df69c1074f0855f9bfa0e66c7

SHA256
86699ca0e63dd1e94b586b50122fb01bf0b13ec3a38056498125f3f8a6c9f4b8

SHA512
1ed78c40e54803bb0dd921998490782d2c9605e7aead4d19c417e081b9e7d0aa8adf2c452f5793a7789b6a0e82314c8d25d06b142c69a26c74a2e83ff1c077d5

Download Submit