92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
13s
max time network
151s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
25-10-2024 02:31

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker collection credential_access discovery impact persistence

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.systemservice

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4341

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Clipboard Data

T1414

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
1130c53a54454eb4d1ed87e1647d22dd

SHA1
46efbcd5a1633341f1db3abb08c06daf0eca4f1b

SHA256
fb556b3faf92df406917e8c4303d96b3ed9ee04fd00cda235cc7c61bb727ab0e

SHA512
cc2161af635cb72476fd5e578e76b6ae4b264f04c0ad24c059db4f116c5ef6d37725bd323f5aa9fc7d83c38d82327faf5cddda07119e1b4dd456549c790ae11a

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
c35aaa689d716988652c1a5f18a5a3a9

SHA1
8862c5bbe6facff4c4ddca7a3dee9c01096a9394

SHA256
254b3e3c0afbd1ae683a21c1ddc9dd9c3fb2bba1144f452b1616a8bb1986c4dd

SHA512
b535bfda3c6302e28eb639a02421dd17aa969d2e94a557feac3a283cff26de99de2a10f5d8ec590cb2dcfd382b9d394ea35e26d7865059b3166c2c945207423d

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4f6bac5d41c45986d782244818fc8971

SHA1
cf3416645f9e6a53e334c574e842bbcd43449781

SHA256
2cbf37efe111b5a1cc3cc44e5df90042d63ea404301914509bbfc014a3b121a6

SHA512
cae5efc149a2f065aa6041a8d2cd0d160e620a185c80a5b1bcc5da0f20cc0748db7e3e01b70b7c1bbd0bfc54ebf233af71200cf2807690ac8194ab4bc2dfa3e2

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
cd991dc182009fde52573ac8cd25111a

SHA1
8c0891834ed33a440ecf29bebd7efc169ab8584e

SHA256
11d2289dd4af88734ac49e378b451d166bf62ae8558cd74f5436010015b0df2f

SHA512
ed606ccc8dea588ffe0c8ef7e75176a4573d4d57868300f46af17b4090ecfe4452ff06efd7e72f7376082b21259090a887384ce0a2513cb697779f4e613b1268

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a5b8384610293d2e75d711da305bea91

SHA1
c0f370e50304189a45c3f6ad340cbd340fe100aa

SHA256
d8dee3ba0de9e0b4368fae9f9af7e481f7d2a98bd683b800db5a2a6c8ede07e8

SHA512
2ee7e47d80d700463b1494c19186baf2e4b60fcf1369aad4a3d9bae6cfaa999edb1d144152140f8f1b521b786fb00e2544eb4ac1cbb6863ec07d8961d2ef32d5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3f74b27611c8ec9acd7dd4e670c2d425

SHA1
9adc6fb75088c14609bc2cc587f700fa63e30b23

SHA256
641b03cd04b90824a7d14f18e2fafe4335b428973bc7e476f4ba0745a32f93ea

SHA512
ea585c2b8e7be8991628b97e1de8c8f94ffacb6b8d634cb899fd286b9525bfcbeec0d8a6aed5890030c48922c4a433defed5d0ac65231dc4f4cc8ee01b06dade

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
835cfc7decf507cdc5e54f602e3f9699

SHA1
4a55d424cb32e766554672cb2d0b3804fc47552f

SHA256
29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

SHA512
2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
d4715b83124997f0fb2aa4ec815518c4

SHA1
f885cae9bb1698ee3e42c778de2d8ead15774a44

SHA256
5e5e01fed4a5ce4f639b70d3c91e5c5ad9d2709b510b3a6bc693749ab8b88207

SHA512
73ee8fb7a65ad5e3f42ca26a36baa3448237914d63d092503ff60782377e4775cc14b2af537910a4cbd8069a0898ca451a01730dfa97726665a5bc45d301e7d0

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
c92db30d8b8af68888829f054c1b1243

SHA1
bc31206a688f78970c25d58edc5aafe813bc4ffc

SHA256
8417cd7d2c30c759ced87a540c040b1dde655bcde8e57e7012d2ec5d96612ea2

SHA512
f21acbdfcdacc0a29b4e25f3db3ac96c3ea2663b5472de7f704460ec1a04574cefa8c7b4d90e43b8269db55b3ed09a528f34c381942b253cd906124f877078f0

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
689373e8fa97f9740cbcbf4def334f34

SHA1
b551d75586b16fc5eeb41b2b8d9fc8f80f74ff1a

SHA256
266543795207c5c215c22b47832d8688f2c8773fce7e53dc96be722c2d68278d

SHA512
4758807ba750edc5b462edfe1bc8dc51cb0915d34317b812028dc7370d449d2ab4ad93868aed025ee92956cdfab48c4ace701e0dc06f30d71f7f9ef50b02c239

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
6efd5b76ddb3e4297664aac50fbafe81

SHA1
7d4ffe04cbbfc61be38a72a428c45f7ea9408f13

SHA256
3cab992c703017c5ed53993f7d4e8981a1fe65325b6c5ea90351d23dfc0225ba

SHA512
c2a638cdda473fdf2e0a821e9e997e3bfe399a79492f0e622e58e4fca44333b130bfa4f8dd7c368ab1335f84bf5cfa1843376e31fcdf0f020daef8354c9496fa

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
d78d627e6a639febf79bad6340cc378f

SHA1
4f9d5c1cc30aae469310113b311762708571b206

SHA256
bdd01f17b02a3298f772cdf9b3b630aadeeab0284be11d0600b8772628d3fcb7

SHA512
fb9372c2532a651a78a5f060d57fc65988854ba9a2f57829fedc99791081e6750e05d1a37ce819e4048991bb590a6ab50048544384c49b3750374fa087881b80

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
537465f7d6a3382feff002320351fc22

SHA1
79ceedc8864dbf56109daaec35428fb3a85078e5

SHA256
e6594dcd9cee2eb984d7f67df41a46de7de83138e1a0b5826e32f812328830e6

SHA512
465105ad281fb0d8f0c6550b4e38ac05034c54892d54b75605ef1c0117f0b10b89663ae2f327c44589050478f16c84051df908f29567b1d5c1e27bf80df7491f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
a5eacbaeb683c57721e9f43eff823c50

SHA1
da249d380f78a3e4923d7da72d821150a8d96ac5

SHA256
883b0ddb949581c981b55aa78d3d68644be3967713cb1700ea995e81125477a2

SHA512
15812dda20f6c62b70f4ca716b446e1a19281223318f230e8b3d8c68cf0eeee571b586cb44d768640136a2a0b7226d1b04b518ecafba72043c61619080c2aae0

Download Submit
/data/data/com.systemservice/files/PersistedInstallation1141757833319911360tmp

Filesize
555B

MD5
6b9effdaeea34e154f3e3da6553a4539

SHA1
138a4bae38779b2aa17f549f0a3877916fcd31bf

SHA256
ae3ad15cfb3207e989a7ec3f5a8d7e1a51e421af404217b9eeb035016068f95d

SHA512
6e7b7f2c9b9b650b8610b9c9831030d4fc74a9bcb88eaf3918027f9e3b97eece864f4641ea4088ef2cb2e263f22459ee430e4435c44ee0999551a83c119250a7

Download Submit
/data/data/com.systemservice/files/PersistedInstallation7805978011045787726tmp

Filesize
90B

MD5
652a0a0b60ce6d89bd087c91bb27988b

SHA1
8d795bdfcb055cd2992d7e11b0b9d1fc3f0b5d8a

SHA256
7e4b5f79843ed02253362a4d24d193211b6ec0390d8d62963ea964c686ad32f9

SHA512
5597e0ab30b7b446d0df6cb5940899d65bae651963cb4cf8f7cc757422c2300431ea3fd485dacaf2ee3fab837ce53759d4216671657358305cd4b920b935c044

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
9087347f20dabcd47323e0bdb74e132d

SHA1
558cca8b3ce06932d4410f372e9b66c3c79e0025

SHA256
9f4f4da6e208ec324d251e87db89421cb2e9ade7310f91f01e7110645425170e

SHA512
24b93dff2fc9113993b93ec084552e17651940a0554e027972b5fcde2ee68e5eccab81f1ad49f62bc81cc07006c11e825aed5db31954eb633251656fb9af8b42

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads