5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb

Analysis

max time kernel
18s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
16-10-2024 02:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb.apk
Size

3.6MB
MD5

d836feab9d4bf3c6cf086bdc14724c8b
SHA1

c837cf7b181679a0081165e5fe4aa0eb94f748f8
SHA256

5d2ff3a0a3820997a9929df3c53768079a7b4515f28ec4dc87dcf646a543d8fb
SHA512

8c7801c5f1d8dfda39e0c65bdbea83feb8f217b41b69a245d01dd9e983a6a357c8b0b2be79123bed07e638655fc66ef3a093cc01be68c696ecfea5ab6c692dad
SSDEEP

98304:5s13ZL3Vf6JqeomaMDmQZ75ub8GoRJ6Odp/9hBbW+te6lXhAyHzwI:eTLVf6JumaMiQVWovl9jS+oS4I

Score

7^/10

banker discovery

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4326

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
24cf4204a3f7a1ec04b1f67de1c6124b

SHA1
ab3f6134c2d7c5621e8e768e3787067bce51e536

SHA256
a8b3bcbe61ce1390cae5e211d9182474f4c92f9275e249a20a5c7cbb067f5128

SHA512
12e461dbd6a9d96753918781b2b8fc7305e0d4f9966948717e7c6cc27fae3864b4f422936fa24b608f881bafd91d88bf60795d8e768953080417ef79e937cb05

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
f41267ba559607abe6f63036bf219fbf

SHA1
9c92ae2acad6f0ff06ed6bbbf135751805de51b4

SHA256
b77656d89ae8be4cab7d5b20dc277beb1383127ebc981912a7a25e73f1647680

SHA512
dc4702be562fcc56e843f8d0858bbd7d5bc3f8921ca7e75635f655b78cdd4ed6a42f1c47a9931537c879b81df292f6bdc579ab028c46a43d18fae4c8f6657e93

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
99a08730eb4a1c9853996c61fa9cbfb9

SHA1
ae665f790710dbae0d6538c6ff0b0dd1be59c9ae

SHA256
dba049d18a59c3fdb1cf3b6be7345dafe5decd2239047a450bee2a151bcc53ca

SHA512
ee312368926c6da4b70f7d14d5d162f896fb2f8750380da9f68846b6fd243e6b76f2bf5abc4a434d4827fcb7d417021517262ac580eee0996b2cde38743642e2

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
ea91f33e29448f8fbae93fca309a3557

SHA1
b2f10530427623fda7b0c057f219907b495124d6

SHA256
058b6e6de1aef86da68508f8419ed547070f1092006435929fe9adfe09e0d832

SHA512
4a69229b4fa1a5f276ca2c5f0fa90a148caf84d65153d81191a2ad74aedeca6f6ba0e7e869d35fa99e8726749610b1aaea588480d58cf49471c81a4acc138260

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
62ad4a05cbdca7f47b3206b7dbda487f

SHA1
4f4044cef7b7b1e5c6184ed9025267fc92bf0cd3

SHA256
18b909096c7c61d51ab076ae8e562effb0d4ada28e2a4ecd0e6b88ef58f6b2a6

SHA512
0936531ed1b2b356a247123200739a43cfc765469ab47a424dcd6e3d1176092a212b0a28591d07f8c2d0cc9d2e0eeddfcea8dde314c2f9343783c61075b071a6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
5e3ba192df54adb484adbac7bf4061f1

SHA1
d47b907b6cc225a6d34c99b5363707e9906a4b0b

SHA256
40e52801036e107480d78425b136740b2cb419fe31b2696068c8cd57cbf70cc1

SHA512
b6c9463c5ddf33a5114ee18f3c6f8d3956fa98636234c264339a81023c486ecd340bbe42fa483ab5c5d59fab9943e70efad801ff32e9ea2cf37b6c81dac60a8b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b20ca68db8e9dfba1143a9436281b1f0

SHA1
3abfe5a79a8cb514c0a834ab12785cac76d6c657

SHA256
d8bec423ae77cd15839f963cc68c751ed51c480d86a6d6a04bc3b9189ef1d1cf

SHA512
290933e0b2f6f4aebf709bd0e7b0fdb9d7960edc29212e25369b278d18ec7bf91fac12b4ede397ff1c3ef12fda8a7b02e9818d2ff5be643ae0830fbee4749d81

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
901526e80740adc8afb07a9a874e3f6b

SHA1
79e0088cd24a319a959f099d4ac07ac29928e09f

SHA256
b87a82a572f38d6c635611209cce47145ee79305fc1e3c9258bea9e600ef0fcb

SHA512
5bd94eb0107209f044d6ad7032d2d01d4bcfafc3aaae492818db2feaec44bf18fa58f304afc3249a1cd7fd61fed0db99e31deaa50fd266a2925c68ef6d59d57a

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
6369db5f69fb47029fc4c07e3ab9fee3

SHA1
35fd87a3acd285d4126da8be8cd71d6fdab8372b

SHA256
6d52a22f85f9e4a0fe0b44db114d0279a311645a2df151f29b5ddbd61e33cdbf

SHA512
5d322af0c6c1e963057b9ed00697bb77333d5ee27fa3a6634a91b660dc950c0ac2aaae803b9edd6f12d42ce73de2d1dd7076981e500ba2e6ad0809fde61a6797

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e3f13c7d7678604e5b293f6672bc0ed1

SHA1
b16c998ac7ca1db79cd4983b207a292ac1d96e21

SHA256
486eb5bec4ec277ea7b334a0d0e431e5e62881d3462903e8294640edbe96b2e3

SHA512
b63bab85a373912587e78dfc9daf8b4168a223c7af08fb87de8140d66b9f35042052d2d25694e4ea7c9f2064107e5471318b6dcec39c4e3dc0aa352627fa09f4

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
dfc0679093a14672bb30ff1959dd6497

SHA1
92325d6aeb10e2edda5372e0272d7645848324db

SHA256
c1cd5c861255b45e4341c31af7ae19df666f4ccf4ee96c64778abb1cefc4027a

SHA512
b286cbcea7c0c81d4360e6e146887fe69c8a6f3401a7030976dd1767acb1d2610b3402b5a72f54df6577ea97b643d89de29032f889269c66fd4c7eede5af43f1

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
b8ed55ff63f8ab363a05ab38edc848ca

SHA1
fa561a1cda2a0986d42842106c5b18b164fb9f86

SHA256
beb91ded0bb4c040531c381adfebb9140a84de18ea70fe6c7ab5fb33e4d966bc

SHA512
4890d9cc627a73be483bf37db16c1945c58c33869e5d1a7a6a619f27c9eca02f8ea0719f86c0b6552e383e51b0a570ec53fc4c4788f883d68d9f23cade08ab7b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
96b9722f62f1eacab8d4392818f085e0

SHA1
9cc2d261914741f8b86371dc36fbe260c2fef5e4

SHA256
49cf43c51c2769758736c939ff317a7d60c9543102c95589cb784028b4080716

SHA512
eb4ac4e934ee288daf84c5f125a4e56ddb65b5de9a8e265ec18af695f9f56bd0d381d91067cee248f39dfbd636b6d8c58582b96720c0b9f36afa206dbb6d55f6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7f8218cbe6f7cad9f86e405096b98bd3

SHA1
fa6c5b4f17b0f8b189230213930b9f6b0f188b67

SHA256
f82ae508c8a8bb6b9f7cb3e2c5706cc748f6d938fdfd01e5f285960ee00c7ed1

SHA512
4cec240c578e5937c68c3094608a00831b674cbe72b78efdca4f9aed80419ff68d624697d05d480e47215e40838f15228b85ecea5dfe896bb741afb91989f9a5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
da512459759e143e84d6797b2d912f37

SHA1
4d3e31fe8f362f9fc783503376d753f27a2fd850

SHA256
3702d705a278cbd00a7c26a51473e2cd22aafba33c7ed7f819fdf3169931616f

SHA512
d88553866ce2e9dd52d37702892182f7123c14e9e6068ec2282eb5610c3b27134573d98ba4b9b366db6382260c68222c1a21f23f030a00f6bd969ca8b47e0517

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
d1bae49536a35c76d5ceb3cc2ccf0dd2

SHA1
8824855cd86806251a381dc3e53158f59b6bdaf9

SHA256
3ee23cd0a2d2750a247592194537f56a8b09a3ec320bc89570994198b14ac616

SHA512
06c00f87ff8f5bc8db9b497bca3351fd09691143b559593ad87fa7a567a61c4fbf997615dab3ae6627c193694b9749390408374b6295dfe8017b103e3f9e697c

Download Submit
/data/data/com.systemservice/files/PersistedInstallation187142363429857796tmp

Filesize
90B

MD5
eda8a0e4bbda7f579996f56915409c2e

SHA1
bd18d0e40fc7e46002deb8609f9c54547aeb94a9

SHA256
e4e2f7fb5683be7284c13a6407db7017d4a13044deddd3169194b84007cd99ef

SHA512
4c7272e6176b4f4a8d0510b2c5b70d30d8ec2042d06c5b99264ab315f06781bb6cd80b3f5a9ad7e1bed8b1c0136c7dc54e72886a8e3998d83edbad66d7f7d0bb

Download Submit
/data/data/com.systemservice/files/PersistedInstallation5192747566790265440tmp

Filesize
556B

MD5
ece244a4b480d045cb40d5b9432d33d2

SHA1
8f7822110f148e6137acdb65f6b61be6d83831b0

SHA256
05e0d6c819c4077823f331ff23cc6ba3c3ba6c0cdde6eace44a54ee3a4138510

SHA512
c8c3ac8b9c35edf8092e1a571cf1036565eca2c8299d4de17fb60b6724a6f58c26a23a96ac7f9c8f4a8cabcc61ac8ee97a4390c9562af97ce058cceba7dc6cb8

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
09ad6d351a0d1a7688371e0ab9f62564

SHA1
117825d20be6097a0b3be9f71f5e148302546fc6

SHA256
2634c3a8afad417656af6b03885d33ac0664e092c802263ed2c00a70d796ca82

SHA512
4f41bf97beac6e4f035ccb11bf051874d1c588aec5e80a79bf442d0cc82ad0bedb32ca4d9faf7d3b80921eb91c2280894e605e0933d6cf589c3e90b2443e5aa7

Download Submit