500b2fbd1e1d8397b4363f7136946fdd57bb770f1397d734dea39bc7ce13a065

Analysis

max time kernel
131s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
19/10/2024, 22:48

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

app.apk
Size

2.7MB
MD5

d40cdcca1b1ea83faadc4c9a8d821934
SHA1

7cbaad91f36d3170c43b2f8793ccf5bfabbf3727
SHA256

500b2fbd1e1d8397b4363f7136946fdd57bb770f1397d734dea39bc7ce13a065
SHA512

8e019b6d69c559345d991700036af7b3ed2d87a46339ad56326755e7c8651be8d2877e1654840338cccdeb32680cae30bcab7853fcd0da5838f1c8052b8d1d57
SSDEEP

49152:XY8/YREATUv2GxWViNTOFzRVDC1L3Nf8SMjQwbIinAfTy6eEMmx4RN07mPt1TnzH:o8AREATUvFx/NaFzrAL9MDbhAby6edTj

Score

6^/10

discovery persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	Com.ukjent.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	Com.ukjent.app

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	Com.ukjent.app

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	Com.ukjent.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	Com.ukjent.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	Com.ukjent.app

Com.ukjent.app
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4258

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/Com.ukjent.app/cache/1

Filesize
31B

MD5
0da59dc0b9c3ee127335d33d7772b59c

SHA1
4608f1565f3ade59a0a4d7e8e84a4252c75f0cfe

SHA256
9a7816f6c56b50f52b99a1d9fe7651bfa31a24c221ffa41f7d8c6985da680f4d

SHA512
bc33d96bacc0d452da5fb929cb736bd1833192eba9ebb21027332bf2fc62c1d236c71d70e5f8ef02bc9bc996d74883b6196541e9836fd63713cd536dd9c8e60e

Download Submit
/data/data/Com.ukjent.app/cache/2

Filesize
1B

MD5
68b329da9893e34099c7d8ad5cb9c940

SHA1
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc

SHA256
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

SHA512
be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09

Download Submit
/data/data/Com.ukjent.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a6a400ebfa14b991afcf0e5221612838

SHA1
384745098dc2d0aea92fcc87d56466e1143e554d

SHA256
283d50b21471d0c304ea35b2373e1ee46e90b7297ab605e4ea2dcf7cdeea6b27

SHA512
3353bc443356ccff587436d75a5053e802bd85880741b4026e58081e24ee51aae7e50ac9026d6998fe151aa5d9577f67a642adf397572f13d4962ec08ca5eba1

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
9ddc8055d8d78d819b9521e5da244449

SHA1
aaab8d813d3f6bedfdfd0709216b1a5a16ba2ea7

SHA256
0c6ba8bfc4eb896964242018d1d349001b9705bbb2b1cd0f4925b6b400b82f62

SHA512
8e69ddd56017056d1ff01a7b42288cb95f51b3aeb22ad0d39be36cf7f882463df1d350f4a5e22d6bb291a58015c9aa699ddbc03de7ef5612ed775cc96e749dba

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
77ac73aad9dcd3be3a4a8bb97bb7d5b8

SHA1
df51754063aae90ebd85615e5c894345c621929b

SHA256
0514025953fd56020d5b4c813639b289509fdaa8d5d7ccc1470e1c0b07a9ac13

SHA512
d6baf09f91feffc7d99738ec15830bc394fc16f7b143ffe50113f3e1a2037276c1fca2590d78e21b1fccb62b293eb9c882371d685f8bf3d3c798b51d7ec4149f

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f0e71eae0eff8a45e82da30ba57bc513

SHA1
17be575d20e8acd1197e157c0e7e0f970edb5540

SHA256
5625f24c7143352bf628c209c1a5c81e63f6c601a8b49c53a557bb4e5ca112fe

SHA512
8e1ca447a5035b4181dfd4e1c82efd43e53033448a9f04f3527d7c44e330fd7c87ae6d73dab8fdcea4d70b443291d39a51046a6195470a7a5894fd84a3c3d3f9

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3e881d9a01ca707bed38018ac69f4518

SHA1
5820f9351d7cc8082de6e5686eb9f8fedf6fb830

SHA256
4a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c

SHA512
8f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
b96bbe33fd3f2408d36d8de350dbf4b2

SHA1
97d92354372456dcf138d61a8888f62338e84bc5

SHA256
f9cbf30d92028b2d2a484bb7aa97223968cf61b17ca3ef730e326acfaf3ff8c6

SHA512
6d90188939fec7a53ea7139b76f324052accad478423300569e28f50d4d0b36f61492167b4e3804e373af35b3cf463e9b055256ee11ec4be32ba17edf9111c74

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
7d6131419dfd2f17e8ebef92a28c59de

SHA1
e47fffa7bf28c9a8fdaaac85bb38c7b4bab5ade3

SHA256
cf45dc580d5657bdb8e3b3d3cd9a714bf8a98c873f9237ea92de257ef0959930

SHA512
20d9d5350405382290c23e28b639015bb3590d3823132bc961f350110c1687771b7f31927207198367f525e18c2456c1dd3108653fc5b3cee655efe1880e727a

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
01cde8df1a2985af3f1204c02ad4754d

SHA1
0335be87b1eb915affeccd098a1a706e00a1334d

SHA256
ccf30f986a61ce8a9526aabe28e17b7bfefcb778322228ac963e6e5f1dd3694d

SHA512
7bde7434f563adbd1ae9e14795eae4a856cb02476471f9d26a688a9a78ee73a807746f53007837ee0cbfd31ded1f16be787e1ae78e484698951fedd278ddec8c

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
429893f2c29c67c9714933fc3e44a5b9

SHA1
46f3bfc75a3d523af393f3aae27fd01d67652f87

SHA256
1394f2124b0751c8f820704db30be3817a6fbff15cded14e827882c3e9bd2c75

SHA512
afb6b4c97d2d25c50cfa1b8f4c1dd77c6440d262d8b5afb63295c95b24a7bd4ca01a3fb32e773ed88022deaf25252be06b48d92502e419f8edb168766dde3632

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
b8c940eb69f6da3af3624d0326de8d13

SHA1
2d0b2519cdf9a46b459a94307ef5705740dae4db

SHA256
b88139b7498b393ad4e46e05a409d37669c96a4c237864904bef15679ea24c4d

SHA512
b36296deb317df13d71d5b674936a303c7faab3ccf59ebe292a2e1fe3ec408585b9239695ab25428872abe135b6abf3bc264cedb49b6b0950a6dde40a845b0bc

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
e950e223d466c7d2766ee18cba75bbb7

SHA1
c7d9ea0a145468b01286e300d6380fc3269d902d

SHA256
e03c2e574dfc3499785f7d3c664627949d8cf95f1a15b9c676de76e86abc1936

SHA512
f2067246c1f8d87c1ca5013ab57d28adcf35cfec6da9fa0eff296bcebd080173ceb041a4aa7147becaf9b61a4d228a0208a6835335a5c33bbe23a185726da613

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
07119a1198e7469d9cc3bc796331f01f

SHA1
b03933aba5e20bd063afbbe37d78ee17b0ba09fa

SHA256
528c9fbaafdecbda5f81322d0abd6e7791001d88c67033fe7ff14c6930c6f68d

SHA512
12e2386d85ea8739e87185a99eb05951a6a9f69bffcb725d86cdf8efad59d91b1ef29a6fc86ff0e8911fa49dcae780d6444c36de3ece59e0f3d09832c2932883

Download Submit
/data/data/Com.ukjent.app/files/PersistedInstallation2960006244093118951tmp

Filesize
572B

MD5
8e8c5ccc076422cbd3b827d3c7afa03c

SHA1
397dec8cf5708b712eb7b845d426d6a208554d65

SHA256
e6d18ee966da5e4fc1845a2d95507265332cc48623ddec86cea8821fcb7d7b04

SHA512
4040b57f16fb6fee329d799c68c351a1b73d0c92fc6bca19b53bbc3f5afdcfd300cbd2ea2a015489281c8c65f7c217933c7c8d408258ea17b06aea8c53211073

Download Submit
/data/data/Com.ukjent.app/files/PersistedInstallation8709185097354960430tmp

Filesize
90B

MD5
0fa7ef7dd9c065a75992be0e3ac8ee25

SHA1
ec61505a92209a81afcb69daf188f98362dd80cd

SHA256
62f1f8ef6d19a90a76a8ce79ad9ad8105a43234615949d92cdd665af078877ae

SHA512
133d356ebba8b0c92a1fdd42929899bac18e31653b25d11205e34d9a3c3dc5366c8951d46b962b8e667f19ffb5b9b4026afb6e59e9ed749af5465941c250c4da

Download Submit
/data/data/Com.ukjent.app/files/keyfile.txt

Filesize
5B

MD5
fcfcac2db1b067e67846e75a38bbfb65

SHA1
21ddf1ea59b4ba57f7fd10c16cd1d94cf1723472

SHA256
00325460e8985b370505a9f1ac99a1ee58d360a39c3b12bc3563fd533a382211

SHA512
0bcb1e2c68eb0a45fed0641677a7d9cdc4b8ea14a21bf0f438d44afcf0f3ce50d61c073d9fe9560c8763a25a4bbbf6578c47f013776174af4cd4981c7dddcb88

Download Submit
/data/data/Com.ukjent.app/files/starter.txt

Filesize
4B

MD5
b326b5062b2f0e69046810717534cb09

SHA1
5ffe533b830f08a0326348a9160afafc8ada44db

SHA256
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b

SHA512
9120cd5faef07a08e971ff024a3fcbea1e3a6b44142a6d82ca28c6c42e4f852595bcf53d81d776f10541045abdb7c37950629415d0dc66c8d86c64a5606d32de

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads