Analysis
-
max time kernel
149s -
max time network
151s -
platform
android-11_x64 -
resource
android-x64-arm64-20240910-en -
resource tags
arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system -
submitted
16/10/2024, 22:31
Static task
static1
Behavioral task
behavioral1
Sample
cfda3707a17da15bba49270b2a101465d0d049cd177e181707f7f338b2b82250.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
cfda3707a17da15bba49270b2a101465d0d049cd177e181707f7f338b2b82250.apk
Resource
android-x64-20240910-en
Behavioral task
behavioral3
Sample
cfda3707a17da15bba49270b2a101465d0d049cd177e181707f7f338b2b82250.apk
Resource
android-x64-arm64-20240910-en
General
-
Target
cfda3707a17da15bba49270b2a101465d0d049cd177e181707f7f338b2b82250.apk
-
Size
4.5MB
-
MD5
3297cc15a510cc4940f1485ec9f86517
-
SHA1
b5e2809f75a148fc3ec02d085127070e82408442
-
SHA256
cfda3707a17da15bba49270b2a101465d0d049cd177e181707f7f338b2b82250
-
SHA512
1f4f7012cb74293272dc098e1debca919612d6e2f0400cb4cf9d6cb3eb05fa144f33c6d2b920de0e0079e2f7dd83b113e6a183da0da7162079f1061d6813c78c
-
SSDEEP
98304:vvGt4BWqeUzEcwbspK1W+OCUpiSvgAnuehHhkpsrQHJ:vvd8qeF7bsp20dgshc0g
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.google.mailtet13 -
Checks CPU information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/cpuinfo com.google.mailtet13 -
Checks memory information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/meminfo com.google.mailtet13
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
20KB
MD511bb013e172c04a508584e53de1642e1
SHA11d7276f22289a156f35cb1976deb543835521570
SHA256965a8fcd00b7c55ae840186e6ecf6f5d8648567e5e1beec25bbd1461ad70e58e
SHA512f98b1a16a9b81e4396f86891d906e13eba8e6e69fc272db6712929799d22a000590b276a9ef9b82e59009cee7a62261aab8d2c3fcf8790046ae4956c93de6072
-
Filesize
4KB
MD57e858c4054eb00fcddc653a04e5cd1c6
SHA12e056bf31a8d78df136f02a62afeeca77f4faccf
SHA2569010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad
SHA512d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb
-
Filesize
512B
MD5c97202d0ecb8cdb62d9b12f3e4230fb4
SHA1a6c724508b013e1795aeadaf10e4d0043bed9392
SHA256a6ebfe0ecdd61cbe83b2c0ef7c871d166a99344e6a118f3493f68b8cdcbf341a
SHA51284ef3f02d6a049509d7339cbc99d2d88ce591e26ba8c29ec55a56cafa00ecaf37545c675be87dcb076fa23215c7dde3db6f2c9fbd2b607de4a40acbba5840c61
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
16KB
MD55439ad151023490feed3d894871c32d2
SHA1e85e1fa4a6b3235637c6c788e4fe91b3aad9d820
SHA256b1a78fc6fc197c976b07b20099da9f8105c4bc3a3e9526c40917e0ea531cd300
SHA5128696154dd274d7fbba21efeea5a5863c12650ec7a2313e02c75f2a8d72f93eeca8effdbfbc3af6beb49be62d6e13b9d0324766e262bc2b0ec01c05d83f936681
-
Filesize
108KB
MD5f9519ff3db2a8f94c8da96a493c236d6
SHA12984e52030ac3400795cefc7dce630a409d92b50
SHA256c1adc5f7292e7d67847e5e9cc179c30dfbf95dae2de7c5ad4a55216482bb4223
SHA512e0ff344817f86882680591ecd48e316a891ead35e55fdbe3e15af52f947f0266e0acd383075f832fcca3daac3cf2db147e31fa7ce0ac4721fbdb6dc317feef95