Analysis
-
max time kernel
3s -
max time network
148s -
platform
android_x64 -
resource
android-x64-20240624-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system -
submitted
10-10-2024 08:04
Static task
static1
Behavioral task
behavioral1
Sample
cd89b4cc7dc155f30db39e31b30894ed11f3fb6ad0fe5b2d014b123e333084c6.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
cd89b4cc7dc155f30db39e31b30894ed11f3fb6ad0fe5b2d014b123e333084c6.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
cd89b4cc7dc155f30db39e31b30894ed11f3fb6ad0fe5b2d014b123e333084c6.apk
Resource
android-x64-arm64-20240910-en
General
-
Target
cd89b4cc7dc155f30db39e31b30894ed11f3fb6ad0fe5b2d014b123e333084c6.apk
-
Size
3.6MB
-
MD5
df1e45aa0435509d552602ca1b84ccb6
-
SHA1
bde9068c2deb1e3dcf9b7646dc8960dbea97d8b3
-
SHA256
cd89b4cc7dc155f30db39e31b30894ed11f3fb6ad0fe5b2d014b123e333084c6
-
SHA512
66f79d11af15ef7adfd35b1ea035dc1389ce5658e2434ac004be945b8eaa3983952767fb5bf8b47a1042db61e726b3fb3990c5d150090a7d24031dc149131cb3
-
SSDEEP
98304:KP5slpvQwAdRa2JXLs50GilGWAi6KRFt5zpP:JEzRnX3lG6p5
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
Processes:
sc.stdescription ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener sc.st -
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
Processes:
sc.stdescription ioc Process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone sc.st -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
Processes:
sc.stdescription ioc Process Framework service call android.app.IActivityManager.registerReceiver sc.st -
Checks memory information 2 TTPs 1 IoCs
Processes:
sc.stdescription ioc Process File opened for read /proc/meminfo sc.st