5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb

Analysis

max time kernel
18s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
13-10-2024 02:24

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb.apk
Size

3.6MB
MD5

d836feab9d4bf3c6cf086bdc14724c8b
SHA1

c837cf7b181679a0081165e5fe4aa0eb94f748f8
SHA256

5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb
SHA512

8c7801c5f1d8dfda39e0c65bdbea83feb8f217b41b69a245d01dd9e983a6a357c8b0b2be79123bed07e638655fc66ef3a093cc01be68c696ecfea5ab6c692dad
SSDEEP

98304:5s13ZL3Vf6JqeomaMDmQZ75ub8GoRJ6Odp/9hBbW+te6lXhAyHzwI:eTLVf6JumaMiQVWovl9jS+oS4I

Score

7^/10

banker discovery

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4353

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
2b12d3544dac0bc013e85b2a7a1d58ac

SHA1
7a16fabd607932e43367e99dafaa690c780c580a

SHA256
91ddc91d8d576d772511724a16244f37021f1d42712eb3b62cf2b7d37629804a

SHA512
1b0b826a253fb806a1262c19de8cb28b3867d9d23d3b823adcfe9072b60f327bfffa69148f9b6d63fd984de622d6c182eb375f64bdb29d28ea5ce6f20955421a

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
dbc124f25af73c6131ae486391eacf23

SHA1
b329cb54bcd167dbd7d9e16da87cd2461a83e7de

SHA256
33c9ac38ac465e38cb972838426c9e439c99da538505e576aa6823a19cd84100

SHA512
a9e88bb76354135713f9d165e1ef63c9233a8ad24342f9d34b727f89c29e4e61162e6498f87d018b09e7361590357c2d4a96323ec73ba6c7a3de52cde0a26b3a

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
e4beb6364c7fd3fc4126b5c36ddb0510

SHA1
ea358ee7c02f606a1938ecc91f1ee9115411bf28

SHA256
97402b7bc4de97948b349ef9c2590de13cf8df9d5b7629aeca1f577ea668fde4

SHA512
273a93f19d80ebd37d3f82d8b738b38748028764d9f7aae2148f90b73f74bb59fa3b1cd7f81a582d9d40109715ff7cc449033c62efb4eaf50465eb700baf02f3

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
9f3fb0203cb38ced0a1a442aa1290ad0

SHA1
dcb6d90e471d999684f18751a6bbf66c59de3d49

SHA256
fde444e9114c59df15cf59f0db0167dd56836468c03ac0cac7d0100546a9ad9e

SHA512
7b3ff22792e7f162b28f84e608f44876931ceafadcd8ae3a76dd9de3137f74a0fb5d8a798fff89aa40a480e1923f83fe7df9c092fc4b8f6e057bba725aa289c7

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
62ad4a05cbdca7f47b3206b7dbda487f

SHA1
4f4044cef7b7b1e5c6184ed9025267fc92bf0cd3

SHA256
18b909096c7c61d51ab076ae8e562effb0d4ada28e2a4ecd0e6b88ef58f6b2a6

SHA512
0936531ed1b2b356a247123200739a43cfc765469ab47a424dcd6e3d1176092a212b0a28591d07f8c2d0cc9d2e0eeddfcea8dde314c2f9343783c61075b071a6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7453a563e83feab93b4b0c949012cbe5

SHA1
41d2fb26d8e92f68efceb30a5a0fa468780b8402

SHA256
30c5ed1d97b6d00370bbfdcec06b880e5b7c5fc853e17b5e90892ec8fd75827b

SHA512
3994569be1801096265c944e0344d8a074b0e84030ff0587188e734431d70aa772de524d2cd14180fa6200fd7170e2e1813ed1ab19e9a93141daa5edb4c1158d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8fdb3511a71d388e7684acf7d9abd53e

SHA1
394958118ac1ff20d4989f2bbadb54de15339a5d

SHA256
f9105eeb6c546c86b60a2bc66ea0755cf9b49b05ee786d9a63ae868ccd44c959

SHA512
df01576bd6a2787731baf113fc40ab57ba455c2086de1a6678d2ef6af46b9da0a17f62182f84c30b7ffd4dc8e0c504e5501fd611036b5308e18712c5eae91906

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c6e2ac444500c428cbf6fc28f8786741

SHA1
760f60bf6bfc8d6e14413fe1d5c3a8596315996e

SHA256
3d9e148c4e18b7f352c44dc72066410b573677c0b9fbe9506a8a2e16804f2214

SHA512
c7d47a4d8ac000b3ea75ef5610dd3fe0c58f23428521e331fedcf6ca9bfcc3de359b088219b718f54f3608b8fd8b6f4ad296160259bdf47b1ac92e63edb34779

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a09ccd3b98d0037a43f042c9a3060f47

SHA1
215f6132e2306a977ec0982fdde6f228c24efa18

SHA256
632dc8e2ee55ab8adc15cc1fdc09d993285179629c53a7b0c4d13e20c55d67c5

SHA512
36604e7adccb45803d312cdcbb0d32272fcf8376f4dd46371c849b1e37da2f31b461ea27fc2b584a71b870c89785122d27a3be83e6695d4f4899c897e34d4d63

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e3f13c7d7678604e5b293f6672bc0ed1

SHA1
b16c998ac7ca1db79cd4983b207a292ac1d96e21

SHA256
486eb5bec4ec277ea7b334a0d0e431e5e62881d3462903e8294640edbe96b2e3

SHA512
b63bab85a373912587e78dfc9daf8b4168a223c7af08fb87de8140d66b9f35042052d2d25694e4ea7c9f2064107e5471318b6dcec39c4e3dc0aa352627fa09f4

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
d203f87767a35c23aafbed24e4205772

SHA1
f43c8bc7459af290a26ccd8657b14466ab6ba5f6

SHA256
599c4c25470cae32cc753b39277aca760110ca6ee683c8732755397d603436ee

SHA512
8519977c55084f9dfe84ba2a8f74589d8e04c52ce4bceb6d98dda792e67ff7d224a799f87dcd446a56eef5ff325e857650c1622ee9c908438a5cbfacb832b6e0

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
8bb6dfe25c1bcbf43d46039d7a057c37

SHA1
2d3ef5f459ef4d8bf33d8adb3510bff6be60f039

SHA256
0c3abe1ae962c2f00acf20dd7a20c9174be886ab50728d97ba2f2556d487b189

SHA512
c2bd630aac63eb50b5b78dd26434396c948a4fc495c35c1cb6bc13ae8be4fb68fd38c8c35e5bc939fd6160a528be5c74f7dad7512416e9c54b4ddb2e708a127d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
2cf30ef85821042f741367f76c95c7ea

SHA1
dbe0c463b9517cbfa4695c2f558c2a72bef288a3

SHA256
f0cdbe92632c2e3800a4ac022399fe241e7788901fe268d88811a599d8cab8fe

SHA512
d428ef76b130394ab9e1a0c6b87eb54df29933e2cc15e8253c615695a78c6de33c90275a395e896014128420df5cb346ab9240be04761b7945d91ff9ed35bae5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
4f86c4513ef63058fa7216bed96b90cc

SHA1
4bbca748dd6c3d01d888ac241ab74e2b9b1d445b

SHA256
48f1bc25b0e73fb72c491e893e0d1aa339351917ae5dc54d204c2356f127a12d

SHA512
a0da92fda53ec8f6c2c27472e96d183c6010feef80fd9de9551164c007fae256598fa82ffb1bbc809316bc3a170b6ce7080c3908289a61eab10a77272d7a3769

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
588c696bbe1c6636138cc6ab071670f5

SHA1
3c3c470572bc7faf25174f97c5398717fb6e9c07

SHA256
256a7233ed80915d26785a2707b5e6df2d60eb1fe8ea50dd9e85873eb76aa333

SHA512
bc3a4f51bf75e52beca4411f30cf389929f325cbaaed3baa369bf6435515d2d92a2e5237d85fc91727a784b737bfa2039ce7929b2760688f7c2c39f62e0affec

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
1026da6ea6c1a353ecc3c1b28efc7a64

SHA1
35d6816b5e41ec20f622ee1049f271c20dcddb05

SHA256
c674b13d6ff479246e701a9ec3640b088687ff8c90034362a3eba482b61b9d30

SHA512
da5bf1ece44c97b202e161a2e5ba73e510399f40f0a54b517fe41ca3b4054041b0b847ee576e72ca12bd753fad93bc268d083bc7682b4a63e891427d52ee8be2

Download Submit
/data/data/com.systemservice/files/PersistedInstallation6660384426866806057tmp

Filesize
557B

MD5
2fbd1976374e720c078bcad8f096e063

SHA1
0805795b04369695af2f65c4857935b4b5359b04

SHA256
9a224765fde53854d43db0a5a558a5cc9750f5aa076869718b31a188dab9be28

SHA512
313a446d5017d4d352f867dc21cd41745acd6b1e8cdc55588b62034e049708f66d24d9411972bb482eb40b8bada1f83f141ea3bada98742b830757e8ee7b2540

Download Submit
/data/data/com.systemservice/files/PersistedInstallation8977060672348942780tmp

Filesize
90B

MD5
949bf8fa99a9198477ad9da1fabc3ec1

SHA1
ee993484b3443d9a3912428a56aee0000942dbd7

SHA256
5d837fb5d58e39a4ca2fd4efda99d92135fad96986afa1c65a2af29035b65d39

SHA512
bef34bb0e89a7bc4540239b09217499513b98cf97455d9168ee252bc3a66f0aa8c94116218a229736a45b61ec80a311238f915aeab2a809f3e2252fe9fcb0804

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
1d2b36cb6d600abf04b894f5c36d92d2

SHA1
c8286bd230ec7e333475ee3ab936edc239cf3458

SHA256
cae13275608a93c161acb91287503bbd04acd3d9dd80bb828cb9528178d8264b

SHA512
4508b6567d072f7e62e7e800ff1e24883a218d1e77b0408436ec15555252ecb7be40a6e6c974e10a1f8d227c46312a28ca11e1de32f2927991c4777a06df870f

Download Submit