500b2fbd1e1d8397b4363f7136946fdd57bb770f1397d734dea39bc7ce13a065

Analysis

max time kernel
123s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
19-10-2024 22:56

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

app.apk
Size

2.7MB
MD5

d40cdcca1b1ea83faadc4c9a8d821934
SHA1

7cbaad91f36d3170c43b2f8793ccf5bfabbf3727
SHA256

500b2fbd1e1d8397b4363f7136946fdd57bb770f1397d734dea39bc7ce13a065
SHA512

8e019b6d69c559345d991700036af7b3ed2d87a46339ad56326755e7c8651be8d2877e1654840338cccdeb32680cae30bcab7853fcd0da5838f1c8052b8d1d57
SSDEEP

49152:XY8/YREATUv2GxWViNTOFzRVDC1L3Nf8SMjQwbIinAfTy6eEMmx4RN07mPt1TnzH:o8AREATUvFx/NaFzrAL9MDbhAby6edTj

Score

7^/10

collection credential_access discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	Com.ukjent.app

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	Com.ukjent.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	Com.ukjent.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	Com.ukjent.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	Com.ukjent.app

Com.ukjent.app
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Checks CPU information
- Checks memory information
PID:4459

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/Com.ukjent.app/cache/1

Filesize
31B

MD5
0da59dc0b9c3ee127335d33d7772b59c

SHA1
4608f1565f3ade59a0a4d7e8e84a4252c75f0cfe

SHA256
9a7816f6c56b50f52b99a1d9fe7651bfa31a24c221ffa41f7d8c6985da680f4d

SHA512
bc33d96bacc0d452da5fb929cb736bd1833192eba9ebb21027332bf2fc62c1d236c71d70e5f8ef02bc9bc996d74883b6196541e9836fd63713cd536dd9c8e60e

Download Submit
/data/data/Com.ukjent.app/cache/2

Filesize
1B

MD5
68b329da9893e34099c7d8ad5cb9c940

SHA1
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc

SHA256
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

SHA512
be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09

Download Submit
/data/data/Com.ukjent.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
456579798eba71787be1999957eac55f

SHA1
f8ed2135ca8bcca5ceb6514032afa93172024af0

SHA256
168304c75db30461f5e223ca2233d6e53b694521f90ec2c3134fdf351efee9a1

SHA512
2f321d0b0bc55cc8f7a26126d55d0d1be2e57f7009ec56b9864d2a68437a57da106090a7140ca2eaf2e30f39acfef1ea2edd9acac3c6cf40ba8cd6102974bd0e

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2d2b89c7dabd0e29e9386890de931376

SHA1
d059cbf8e16b330dd07b8d16c6b9abeebc6c7452

SHA256
a1d7080d5cda59398deb2a0784bbec1ae88fcfa0ff3dca49356e7764942d15e5

SHA512
2d7781b8b81a54e5edd051e5040b3b2440388087b3eca265df6adce39c3216683c9d8cfa00d023cfa8babee65b91e2d06624075c843b4853033c7d8e9987d94c

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2d92869e1d766b21139797fdaf2e8338

SHA1
8a01c8d8928b6d42538f4c645608ff1c1d3f9aa4

SHA256
bee24cd3f36745224763f1058aa1ad2dbf565f922b1570d341cd7abb2074d227

SHA512
e7257a957376d956cf0821020000ae0166b15a5f2b1e16cdd584bcf26c84778fb3893ebef3b5aa7a643f33115d3331d462feda2bf9b7586098437f934a7890b9

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9262a4e20208a4256fb927cf18e4106

SHA1
8fbda6727c551e348ffed3afbdcde60c30283be0

SHA256
5ce41b6a4e375534dacb4a7d082702bbfccbd779246cb555f3af532df1a90172

SHA512
e95e82e979bd1373a441a35fc8b141f01ed140a8859f0bfa1e5d97a5602dfd279a8dc39f1565b41b1fd00c7f3bbc2f150ed0f69b29dd4517b5840f4cd64a9a20

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ebbe5947439730b05ff16e5457104754

SHA1
8f10ac290b559f060434b6f65e3f65d159b31991

SHA256
71fa6f8c8e2dfdddf14cf533406a24ce0a07889d83ecb390c57923a9e2313bf4

SHA512
4f8dc45735f688e5bc8d8fcda16d1c86c2da5afa2119cd49352511abc2fec7c89ca50c27f583fc3993d31771f46f9830d598f21bac6e0ccdf77447b0be9acf43

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
edea3c3e25ec62fc3daaf8bc6a7976fb

SHA1
f6c7743819b17847d328ff21b58104afbd1a2adb

SHA256
209ce51f4bf0655c9250f62832649b9db89b78128ccedf01668b1b35fa2804ff

SHA512
1e521ac41e579e7a7a46710294e5a852af8c477a10347aa6a9ce94714dd796bf3597b1ddb0cba1f003f5eb66a30c7eafe96986983366e8251137160f76b92421

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
8834f2b485a5f1fd45cc8cf6a2c924f2

SHA1
3f519a32757ac4a49db9b1d40f217d6377101743

SHA256
9c31e859f35e8bccd2dbb528bf00f4640c42f6f4ba9f95fd4ec741b90867104c

SHA512
4ca633502e52b208623135439044be088447e6c24f30d8603a95c292b0f16fdfe9553c5914cc5add470b5ae6d97c347fc234baa3e37cba79cce98ee9fcdec8f3

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
9775a360e568fff6e44d74e542a67aa4

SHA1
c77d7181d6125d57bb73b205c55584eea62f7ac1

SHA256
8f639edc97469f9f80d278ed4e1200eaf2931f85b07a95c7016ff88105136013

SHA512
710f49cd3d8c1a214871de8babee88c6df5fe94520e5f3cf07112c8f8d3566e42d5ee5794d11b457d1bd9bef83edff6329dde4cfc8f267169e9443a65463d046

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
a990b6f356c35d95f8d19d79c8d67cf8

SHA1
65058459ba66d3423ae3d8065f894ac7c1052eb7

SHA256
14eeba2b9b51c3b4b17d6353bd1fe25122d8d2ccd78d9bceb8f9287928393b0c

SHA512
69a45685ab2f524530e084fe00bd24ab0c5c90e6f03dfad02d6820711d4d4feca7727bf4938c954914780e85a3fae5ff3106aa715b0cd5d652000866787c92c6

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0f28146547d6ff78e2b57ee92064593a

SHA1
8da6e532bd6aa196a126e0983118bd95c373a62a

SHA256
b0d2ac645ccc2736562a2cff2532341d18cf72c7042b5c6fa7a5e1af047bab03

SHA512
7051a5f3fb383c83682428789eb39695de98db78641753895439db7c3af85099ee70111e07bd3f86835db00917c770fa835ea6453ec0d9e416a1603abac23e78

Download Submit
/data/data/Com.ukjent.app/files/PersistedInstallation490365504909778186tmp

Filesize
571B

MD5
6cbb667aae488491207f48558451fd08

SHA1
65c3a553258f38051cd8cc37c90ab1ef630d093b

SHA256
d712e214b6771c3701ddc8ee2d2f39809f89a9f90803b3e004cea6514451bde9

SHA512
0a021da64491143cd5edc4b4ce0c92d021138b50ede7a950e4118433ca817c1dad61b90c79789db4cf1da9f58d09dae3e3247e459ded8695d8d800200d3cf53e

Download Submit
/data/data/Com.ukjent.app/files/PersistedInstallation6875454459407697554tmp

Filesize
90B

MD5
20ca32c964401a3619f0fd9e569674e2

SHA1
471bc44bc40aefbdca3445dc3c3edd3f792aa596

SHA256
ee81693c1d98f7fe25d2a7e994c4573f1d456fca2f0be4f29754d7d1632ce841

SHA512
274b8d188b784071dbb8ca32615dd03c66d92259fbb0d66c95fc7a81abbeea42045168642b5daf7c6e16c489546e4c98fbc93f90c025d8f3cecafcf3d0367600

Download Submit
/data/data/Com.ukjent.app/files/keyfile.txt

Filesize
5B

MD5
a29567f9bc92c511fa3bdf2668e7596a

SHA1
fa063851812f00df7ef809db4a8934f232219d19

SHA256
862e128eaa2e880d63c85ba1f9d97393995ae3b1e243e691c8adcd169d9daaad

SHA512
3ce9c6256b8883a52a03dc7d94b2e343031fc27e1ebf7952e7b3ef07ee6040b5f294b7d4a6f29832a6600c5a0880ece8e49784979bb10191c5476f0671106690

Download Submit
/data/data/Com.ukjent.app/files/starter.txt

Filesize
4B

MD5
b326b5062b2f0e69046810717534cb09

SHA1
5ffe533b830f08a0326348a9160afafc8ada44db

SHA256
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b

SHA512
9120cd5faef07a08e971ff024a3fcbea1e3a6b44142a6d82ca28c6c42e4f852595bcf53d81d776f10541045abdb7c37950629415d0dc66c8d86c64a5606d32de

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads