500b2fbd1e1d8397b4363f7136946fdd57bb770f1397d734dea39bc7ce13a065

Analysis

max time kernel
121s
max time network
151s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
19-10-2024 22:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

app.apk
Size

2.7MB
MD5

d40cdcca1b1ea83faadc4c9a8d821934
SHA1

7cbaad91f36d3170c43b2f8793ccf5bfabbf3727
SHA256

500b2fbd1e1d8397b4363f7136946fdd57bb770f1397d734dea39bc7ce13a065
SHA512

8e019b6d69c559345d991700036af7b3ed2d87a46339ad56326755e7c8651be8d2877e1654840338cccdeb32680cae30bcab7853fcd0da5838f1c8052b8d1d57
SSDEEP

49152:XY8/YREATUv2GxWViNTOFzRVDC1L3Nf8SMjQwbIinAfTy6eEMmx4RN07mPt1TnzH:o8AREATUvFx/NaFzrAL9MDbhAby6edTj

Score

6^/10

discovery persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	Com.ukjent.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	Com.ukjent.app

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	Com.ukjent.app

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	Com.ukjent.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	Com.ukjent.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	Com.ukjent.app

Com.ukjent.app
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4275
- /system/bin/sh /system/bin/settings put global sms_outgoing_check_max_count 10000
  2⤵
  PID:4316
- - cmd settings put global sms_outgoing_check_max_count 10000
    3⤵
    PID:4340

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/Com.ukjent.app/cache/1

Filesize
31B

MD5
0da59dc0b9c3ee127335d33d7772b59c

SHA1
4608f1565f3ade59a0a4d7e8e84a4252c75f0cfe

SHA256
9a7816f6c56b50f52b99a1d9fe7651bfa31a24c221ffa41f7d8c6985da680f4d

SHA512
bc33d96bacc0d452da5fb929cb736bd1833192eba9ebb21027332bf2fc62c1d236c71d70e5f8ef02bc9bc996d74883b6196541e9836fd63713cd536dd9c8e60e

Download Submit
/data/data/Com.ukjent.app/cache/2

Filesize
1B

MD5
68b329da9893e34099c7d8ad5cb9c940

SHA1
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc

SHA256
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

SHA512
be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09

Download Submit
/data/data/Com.ukjent.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0b2ea2197e410039f34d60d431257914

SHA1
c3a6932766ad69c75484838c39855c35443b8b0b

SHA256
1e60f85c8cd5ad875cf94d934c3388f76b48e3b08dce096d7c29c05155f97f7c

SHA512
a63ec94b203fabd25616f7af6f9cce6c4025323a7e2c5410063419b10b73751780fd24ac0fb11262ed2701987bd164b997ecef3c41dcc6ee9deb9b2d15a54023

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
058e4cc0832bf9b20acdcac6bb7a577a

SHA1
11096f852beef0667a1d1b73651ee81dbbd576c1

SHA256
c7949c7b94c9b0cef0f741e0d3cb908e743ba7b8a78fa3e1a7368f1d20529eeb

SHA512
60f49429b0126388d477bd49d6e27a71997a1841b33a14e600b0096edfa76a178ee58a2256e2aa98d29143e99dc5b1b799bd592f510f2f31ce85f5cace90963a

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
adda909a23da404fe8f13540b99edf3b

SHA1
22f7c555babd47e92601b68519fcf416b1aae084

SHA256
fb52c37f0b759245d7e1439857f18f86bcc8a1c4e46af69559882fe828d80216

SHA512
d4ea09b9f08cd327ecf2c456f0d362ad3686dc5b5c8c12ec8c2ecff9b1a38a2ba672107777735cfbc2112072493515243c1ac2ba4f4a4d989d78c0ecc526a5d4

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
dc6ed4ce79387d31675040c29892e2c9

SHA1
00fac8eaea996394e973dcdb56a6224d5dd9417f

SHA256
6e28f65b9e7568c5703fc258cd09302befd6f30e43ce1204612a3ddab8e1f3cf

SHA512
e612bde2949c4db21ee9f13a4cf189914e598eee768916fefd3f24edd812bd53ee1292dd64d5543366b1b6ea3a7b8b57712213e61becf41e2e591a8b5d03dca0

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3e881d9a01ca707bed38018ac69f4518

SHA1
5820f9351d7cc8082de6e5686eb9f8fedf6fb830

SHA256
4a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c

SHA512
8f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
a028a078098932517c20a77c9de594a4

SHA1
32880b000cd53f727b3295c0aa1be008146a2dee

SHA256
19b9b79ab701be0b356af6a159b02e13f701806760679e23d975b527b98889a4

SHA512
e2ddf6c127eb4d4fa28cab5707ab8c654cc9f58f5ebde7e09a9fd3ec11f0d3c2f24d84ff257954e189e74e0ca2fc45efccd7ddf2f85e99479ed80fdbae4e39f1

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
ec0270bedca574da3a143f625a2a5fa2

SHA1
ce47367c941780ba64e6f9fda679438b98f4e68d

SHA256
2f867d79d5bf9ea006358aa51ae939548b8da29c739a4709baef16786966fc1d

SHA512
bdb6d8a118203d5f4924031c3f1b2a6c000bd90b0acdf86462b110420a521bd96a7dc883286bc0fd588eabebc6cd57dac7294755c440e4206832a4f8f201685b

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
2d4a87b10fc5834d30833becc06a29b1

SHA1
b6d7b0ce95f05981902423bd858b0b185aefd692

SHA256
32caaed45be7ef160ea871e256499058982441f5e87c4dda83523f920e238427

SHA512
3121980ae132c173550ca3e8cbc6ecae5f53d9c3a2dd90685130e60764c2a24e71bfe0f302ab05e7129b4e490de4ad7fa77b0dbd2dcc177095c92bc6ad2b28be

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
1a5a7cbee66d7ad0775e716c47ff5d9c

SHA1
6cc26b7b285586bbeee8003e5cb81e6588e5f81b

SHA256
e7218350195bf5f03d2b3409c1b071378518b505364ee93fe3ed29e4539f54bc

SHA512
8028da3ae3f337db118c597fb9fbefea6c44d86f2164e0aff7daf9f5df43297542883af905fbcc1f715ba9e12fb1b97d7e2387e33d4cf01b75ef0dcdb01bab62

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
621dc8fffe4a9af13dac5562d9bc8164

SHA1
26c40810b29cf83b0489ef4593013a4d702a31d4

SHA256
204eb38c691ba1635dfdfd89b089f73772b63e9dad74d03b7f19057d1e5659b8

SHA512
6d0ee32c630c3e0e483f1e68b51f6dc0da6d7655e0540a2c1365c565278fb9d4b1e88810fe38fcc22d193a3e32bcc13c661536b5f70681d8304c2c0981a3ea26

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
ac6207a80e82ebc703e33ab70a364351

SHA1
28b100069625da06b3ae0e5a833a4246a00d4006

SHA256
2ffb44566e2baee65dc99613544973d7b5c554f38d059f8375ac75e1b9074cf3

SHA512
06d2441f907442cbdde4982c4f1b9b0aca65875ed656cc6391e194bd9d5488d4653a04e6b316ac7af1ffa4fd0eb494fd91c2e68d757c2581b94dfd70b053a49a

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
0d4355bdd58e9dab020f6f1427c53521

SHA1
c0299ce07061cd3f3360e0b0b4d607ede24ec151

SHA256
c1842cfe882a93d8d158368f10b053ef0ba79a7377302643e7e38dc6af96c47e

SHA512
d78e4b104e73dd859b7668d4b70bf76197b197bc6119a94a577e759ba245bb453e720483321f1efcdb85a589cd717bb0d101f84f48697c2b6ef7ac6e2a9e3f8b

Download Submit
/data/data/Com.ukjent.app/files/PersistedInstallation1438979735119258778tmp

Filesize
90B

MD5
a33a8d57642829f7dfefdc8df88272fc

SHA1
526834509cc10b6819eac4b6c2a5bb71f47dd7b3

SHA256
c8578ff0a1acaa81d5182820a52bfa2cd01949e4d9eaa06bce02a16f9fa6bc07

SHA512
4e6f210dd51c110cbf53e6ba7566b080dd174d33cdf2d74645ca029a19d989b76440086f37ec3354d56bae9742e54471faf047c05a832b406c43b850ff23d1a1

Download Submit
/data/data/Com.ukjent.app/files/PersistedInstallation5535250769329637044tmp

Filesize
572B

MD5
803b9156d188337d90c50f32a9e73aab

SHA1
e8d95117fc3958452d0f507128cfad1d29941a42

SHA256
0df60f8d70aa1a1fdb42e704f3414baf70af2ebb18c985d0b3bfd5155e7589d7

SHA512
224a98c814083d6b0d9d3b815918c61191f182a9f4cc06d03e485e8b6a2f3f8272b38884e5324772861d0173a75f4eb0571c38b73752f8c310d4b43d249dbe78

Download Submit
/data/data/Com.ukjent.app/files/keyfile.txt

Filesize
5B

MD5
4c3419c75074a0734e4d1851aa66eb8b

SHA1
78eab489f6f9764c09fa50c7db377d9b93b3c8cb

SHA256
d465ca81b0d224f3e6a8de966eee577a8a79756c0cde08dbbc354b6b345941eb

SHA512
047be7175927edc8d795f30abae8d52e035bcca718a5812fb2a75a9336e60c5ca5bd202ba13206048a2c076b17d6cabd35d17fa40b140314db667f4593496263

Download Submit
/data/data/Com.ukjent.app/files/starter.txt

Filesize
4B

MD5
b326b5062b2f0e69046810717534cb09

SHA1
5ffe533b830f08a0326348a9160afafc8ada44db

SHA256
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b

SHA512
9120cd5faef07a08e971ff024a3fcbea1e3a6b44142a6d82ca28c6c42e4f852595bcf53d81d776f10541045abdb7c37950629415d0dc66c8d86c64a5606d32de

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads