500b2fbd1e1d8397b4363f7136946fdd57bb770f1397d734dea39bc7ce13a065

Analysis

max time kernel
123s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
19/10/2024, 22:48

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

app.apk
Size

2.7MB
MD5

d40cdcca1b1ea83faadc4c9a8d821934
SHA1

7cbaad91f36d3170c43b2f8793ccf5bfabbf3727
SHA256

500b2fbd1e1d8397b4363f7136946fdd57bb770f1397d734dea39bc7ce13a065
SHA512

8e019b6d69c559345d991700036af7b3ed2d87a46339ad56326755e7c8651be8d2877e1654840338cccdeb32680cae30bcab7853fcd0da5838f1c8052b8d1d57
SSDEEP

49152:XY8/YREATUv2GxWViNTOFzRVDC1L3Nf8SMjQwbIinAfTy6eEMmx4RN07mPt1TnzH:o8AREATUvFx/NaFzrAL9MDbhAby6edTj

Score

7^/10

collection credential_access discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	Com.ukjent.app

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	Com.ukjent.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	Com.ukjent.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	Com.ukjent.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	Com.ukjent.app

Com.ukjent.app
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Checks CPU information
- Checks memory information
PID:4465

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/Com.ukjent.app/cache/1

Filesize
31B

MD5
0da59dc0b9c3ee127335d33d7772b59c

SHA1
4608f1565f3ade59a0a4d7e8e84a4252c75f0cfe

SHA256
9a7816f6c56b50f52b99a1d9fe7651bfa31a24c221ffa41f7d8c6985da680f4d

SHA512
bc33d96bacc0d452da5fb929cb736bd1833192eba9ebb21027332bf2fc62c1d236c71d70e5f8ef02bc9bc996d74883b6196541e9836fd63713cd536dd9c8e60e

Download Submit
/data/data/Com.ukjent.app/cache/2

Filesize
1B

MD5
68b329da9893e34099c7d8ad5cb9c940

SHA1
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc

SHA256
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

SHA512
be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09

Download Submit
/data/data/Com.ukjent.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
bbafddc1c8983cffcffed42a60d004cf

SHA1
d2619194bd702ec5737baac0e7debecaa7bf7855

SHA256
7a07a75ba3ca4cb8647888fe7daf150f4a157ef758bcafae78f46ff87ffbe041

SHA512
a4312f7785313dfdab48235bd4cb2ad37593e2ebd9118b296e81dea7b67c9b233645a6dc9cfe7244ec907cc5c7f96a529f14b677088edd3603a72b7b3b02750a

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
bb7144b10bebae4e86e0abfc0e76d361

SHA1
9f36e166014b7c2653cd091cd7920af533c78dc7

SHA256
7570de73f06042f629c93380fd9974031037635b660cb2fb27eb98312d94a61d

SHA512
48835b816e0caf88901a1f84749beda114cb66c11bfb93771c39f4d6110b038811b5d5cbcae759870625abf8784ceaef67e2a9082d5abcc00f0481f6071c62c2

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
02b4e0cbdea9afa8100fdd71d5626bc4

SHA1
958778150b37cc89f543d69600f17ce00759f72d

SHA256
8d58dc37ab7d78a968df730f964eb9ae06cb3cc8059d571930b932fdef083f87

SHA512
891daf96a09afd7bbe37c0c628b312d0655ddebf569e40ca2c9ed5abc036a0198786527605de2971f4d19863eef5f618ba0323fe1bcc487b7d5362ca217418e9

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
890a12aef1443e345a18981f36c395ff

SHA1
3c681a2b8c3822d8f4abb685390612a06bd7b9fc

SHA256
1a1f356c5019808954b7e735d615424a96be969c390e1a68ac18bffe70ceebe5

SHA512
ffb87a5829272a284ca35079f4cb8f5c803a0faea8c7b89d76963ab5b62b60ba480dfadfc0706527e05035bbdf8c9f4bd3160800629c75ca7e732eeaf1ab2157

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
10dd9e44dd296923948a9cccbe730103

SHA1
68f0c68ce6a2649afec0bb9f097da94826b0124b

SHA256
db4a816da839322a7b26b29dd768661ec9a2aa9bf15078220226814e8a57943d

SHA512
7d7ebe66cb16d30e03f0dfde702907b61fb87ac929770caae08f020de38b80319a6c211666cf35e0ea4f34c7f1661e629123d9f66cf20d5169fbc15da8817d83

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
4841a27e2a4d6e080634cec0fb945ebd

SHA1
3278093d08c130bda337ebbb94ba752b7438d301

SHA256
60c276c588d86994f6b633fb8a05cef3a49f86967d1dc5dd7cc5a21739549121

SHA512
0c6083bf0d9eb77dc844747e91f135c4343aa5383cd29cdfb5094c4cd7c380a671e3be2f16dbfaba2959276d09dd28e8aec39d763833777bc959a17985c69f13

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
5fbfe133e3db2a6109764cb3ada223cf

SHA1
47ba7faa891f3722f14055c838d7936065381594

SHA256
079cd7509dca2b2db41b07cb6478e6eabf174fe0c45e2be4987f2118ae88ae50

SHA512
14d3099a5cba06c98149b7be705c187a898d25a208948df50d7f36bfd37a8253d379812f4eec6f7ba81e1ca518fe89e06644f2d2c91f4c3ad8e255fe9067548c

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
2e3690b4c45c8bdb65567cda1e5cf62f

SHA1
8fa3e5d5e30259a278df3578bbfcd17668398be5

SHA256
7d875f64be17e2c8dea9647a9025017d30f924b32ec7636eeeb513d0a659ffb0

SHA512
c46b5405d7f959ca8fde3c77c5406f9e96cda318d027db1cf7ed0054d305591c47fc689ea859481132e39d56142aca196d441dea626acde5261709dd4f219a0a

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
e5f6ae6493a6c619e5f22b9b744e0674

SHA1
6730b3ae9b85035e38ea326e1a58f2de2a5fd375

SHA256
54ea8e1870faaa1c5baba2ccfe3e84640a64e6575ec9f055f0a59ee54430795d

SHA512
c36615bb28d72370d2d5a23a7c5fe7b64175dbb9dd5f3dff8b503ed5af989ce22d2a35787f06fe6072dcdb7c520677350e5a7c64e0aaa750575b79dd9cb3d87b

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e8ccd9282657518f02060b038144b8cb

SHA1
f255ca916f7c120fa036abe887e6e1ae8575aee8

SHA256
b75d60bde5020a5806f29ca252f5f6c4d9d1a99289e92cad23fabc585f643947

SHA512
326f7044b563042c2f9123c9107def175ee1132e4f34d4902b774fa3e107e8a117551cfbf66181d3de8e5dcead1de614e75abb64f1c4cc1958f48800b2643fef

Download Submit
/data/data/Com.ukjent.app/files/PersistedInstallation5746705974229125824tmp

Filesize
571B

MD5
13d4a8f72f1dee0fac2103ccc81dede6

SHA1
29605f6b2066a2587194c3276f76cb3d212323b1

SHA256
33f76111725a5411413ca4a1ed5229a40d8a26303894ddfb460637b5c1cd613e

SHA512
3e66032dab133c427e13c5b0fa309f5b7a6a1b3a3774f466ccc2e43ac8faad1a63b015861e29f2d908dc638921f71d319bba815fd2317af1633ff3ced9a7dcfb

Download Submit
/data/data/Com.ukjent.app/files/PersistedInstallation6141225053346393903tmp

Filesize
90B

MD5
d7fc08fb2a8970af2e58715cfa735955

SHA1
be835433af5c95fe441de23ca27462db4fc6467b

SHA256
1961e3c2d022f77c7eacf71a1e41dd5fa4ac035d8f8833220e7da853d0efff59

SHA512
52a193d68f7b61eeb35db411e7a33c71079543445cc909bcc91281d13eef94d7704f4431ba127f23859840cfafa0670abf979b37e5ce10c86596eed4d0b760aa

Download Submit
/data/data/Com.ukjent.app/files/keyfile.txt

Filesize
5B

MD5
58840eb65da053fbdea5f4d19dd3e00f

SHA1
2d52504edd4f0ecbeed9efbcdab8aee95755f283

SHA256
2296befbe9614d837aa22f43d500d840c591a8f605326036fd010dba1ddf7d5a

SHA512
9e39f2440f302436c7ee94cdd6a646e861c7170eba7738708e3a71ad2f43f29970ff7d02a35fb59b0ef7ddab1103e3b1fd52d5715ec00ef785df5de1f0863a73

Download Submit
/data/data/Com.ukjent.app/files/starter.txt

Filesize
4B

MD5
b326b5062b2f0e69046810717534cb09

SHA1
5ffe533b830f08a0326348a9160afafc8ada44db

SHA256
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b

SHA512
9120cd5faef07a08e971ff024a3fcbea1e3a6b44142a6d82ca28c6c42e4f852595bcf53d81d776f10541045abdb7c37950629415d0dc66c8d86c64a5606d32de

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads