Analysis

  • max time kernel
    87s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    16/10/2024, 22:31

General

  • Target

    d042bbd220d0edd3723d18b0cf55dcfbf39a39ec95929809dffad9167e8901e8.apk

  • Size

    4.5MB

  • MD5

    97647c47e4fd5076356912b81d46d3ab

  • SHA1

    7e6dade1567ba1385228739ff5e45bf3206dcd46

  • SHA256

    d042bbd220d0edd3723d18b0cf55dcfbf39a39ec95929809dffad9167e8901e8

  • SHA512

    19eaa8da9cd02810241e89e67104c75d68e438cfc08580e502159fea92e8091cca97216f5710071716aab99d6ec9484226cede68eb29a6c3c8db4b3bfe5f88d6

  • SSDEEP

    98304:7/991NO8WDoOPxEstvef3iKO89m+S126ldhc4WfrS9:7/NNO7DHhefl9m+U2odKbro

Malware Config

Signatures

Processes

  • com.rhmsoft.codeund9013
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Checks CPU information
    • Checks memory information
    PID:4586

Network

        MITRE ATT&CK Mobile v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.rhmsoft.codeund9013/logs/20241016223154216.log

          Filesize

          33KB

          MD5

          88607a4bf5e06258276a18b3b4fe7022

          SHA1

          ee2945057045cfc4e5fd123c76318f7fd1edf6bd

          SHA256

          c9ba479263b1cd34d612cf0a907c5adc99247b026e817afb78ff01429692bcb8

          SHA512

          46c3695e27f7c901671699d922701918b194bc1b821a9d33afaff0c4a8898f2a3b3b3521064a67b8732607827e7d078487269a3cba428dccc9ed00b112cdf4f6

        • /data/data/com.rhmsoft.codeund9013/logs/20241016223154221.log

          Filesize

          60KB

          MD5

          661f731b6a3ebc7b859b66d740b17362

          SHA1

          e3eeaa218f3a2928e9ee08969a31b0815fc459a2

          SHA256

          fb1479f0fe73ad5a2a6cd2a88d053d5ba01edf27f12824aacdf8e0fb467596f9

          SHA512

          323ccc4249b6ccd818b2927fd72281530bcd190c95bae10c0167cb6fab1eec22f1cdbb165a0132a3f6175898ee409483be97a7a50c97ca349ecf3e2c3c504a0f

        • /data/data/com.rhmsoft.codeund9013/logs/20241016223154226.log

          Filesize

          20KB

          MD5

          5d20313df71c34ca16f1d7c8146ae559

          SHA1

          720dcbbe9e0c482649f1ad4e1c155843363599f3

          SHA256

          2ae13aace9be5f1d62584720019aa843dedcf5a2e51c739deea7872361bfa8c4

          SHA512

          5ba9d93e74ec5a8857ed5c3b439b09b27da63297409eac05e8b7ed0dd1fbbe9abd3556ae11c9a2661e98589eb55509612da1caa1480adcc99eac403237cebeda

        • /data/data/com.rhmsoft.codeund9013/no_backup/androidx.work.workdb

          Filesize

          4KB

          MD5

          7e858c4054eb00fcddc653a04e5cd1c6

          SHA1

          2e056bf31a8d78df136f02a62afeeca77f4faccf

          SHA256

          9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

          SHA512

          d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

        • /data/data/com.rhmsoft.codeund9013/no_backup/androidx.work.workdb-journal

          Filesize

          512B

          MD5

          36a5ad18ef13ee76de120306a3ac8bd2

          SHA1

          4c1d8e729fee0f8f8bb6031e082d74d407a9afb6

          SHA256

          f8ec780ea34b4ab2c7f302e681d1af152037ad78cf4d44b1179f77d99493dbd9

          SHA512

          a7c68dcc991bd59222b873e4d5465d52046cf37cb74ad85308676fc3fdabf57a1576a98595cdc3c7f33f9c0d7f6468d0bada973866b297c0a6ef0e8893636c02

        • /data/data/com.rhmsoft.codeund9013/no_backup/androidx.work.workdb-shm

          Filesize

          32KB

          MD5

          bb7df04e1b0a2570657527a7e108ae23

          SHA1

          5188431849b4613152fd7bdba6a3ff0a4fd6424b

          SHA256

          c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

          SHA512

          768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

        • /data/data/com.rhmsoft.codeund9013/no_backup/androidx.work.workdb-wal

          Filesize

          16KB

          MD5

          7d29e806cd9e7f8d7425f6d164ff70a3

          SHA1

          c0778004c9803cd7a0ceea5d933201d557cc580c

          SHA256

          e4e84f20a53f769c8fd9835c251e672f0992d6cf8252ffa5b05a1fefa91b09cc

          SHA512

          73ecba29e38c58105971ac1b26a0a136ea5ed62751ad5f3711eea3cd859af9bde24dbe59075ef468151e148da5e25c52afd88cbb969925193e4c83167e4e2dd0

        • /data/data/com.rhmsoft.codeund9013/no_backup/androidx.work.workdb-wal

          Filesize

          108KB

          MD5

          c636c9c3773aff15b8ec761047b64fa6

          SHA1

          c072a762563357bc4ed698d9d0c1b61a7a221e65

          SHA256

          5f634171da563c7544e6ed2695a8522473e4c42a1eb57288e9130db8139b8a3c

          SHA512

          cdbf4464c30c0186bcbefb95dc71fa62125c9e3f3b62d84700b0f999ff0227c164634d6df2f7ca8e40af494178269904258d44e46f828b9a3e3ad1547f93a092