Analysis

  • max time kernel
    12s
  • max time network
    132s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240624-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
  • submitted
    06/11/2024, 02:32 UTC

General

  • Target

    4488a4b12230a9e40b1c03e97fea9884a804cffe82eacf121798223589c1d401.apk

  • Size

    14.6MB

  • MD5

    60bd80eadf48d77303ca3aa4e859c4df

  • SHA1

    0665819584132bed2f42bf7ba332166b795fd493

  • SHA256

    4488a4b12230a9e40b1c03e97fea9884a804cffe82eacf121798223589c1d401

  • SHA512

    84df47f26be1c776537d6dc04a485d7ce45ecb0a05bb6a9a0904a2c1495603f16c1c5e80ab9627b379aa94d6b194bb34aac9f0934cd6986a48e6a307ec527634

  • SSDEEP

    393216:nVgo++UEBhPQT75d5Zb8RuI1rhMlIPDNQPa0hAcdylFPqC/Dwx4:tdUZ5dTKuMMlILMrjyHPE4

Malware Config

Signatures

Processes

  • com.brata.rat
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Checks CPU information
    • Checks memory information
    PID:4634

Network

  • flag-us
    DNS
    ssl.google-analytics.com
    Remote address:
    1.1.1.1:53
    Request
    ssl.google-analytics.com
    IN A
    Response
    ssl.google-analytics.com
    IN A
    142.250.187.200
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    142.250.200.46
  • 142.250.187.200:443
    ssl.google-analytics.com
    tls
    1.5kB
    6.3kB
    11
    10
  • 142.250.187.206:443
    tls, https
    5.8kB
    40 B
    5
    1
  • 142.250.187.206:443
    tls, https
    4.4kB
    40 B
    4
    1
  • 142.250.200.46:443
    android.apis.google.com
    tls
    4.9kB
    7.9kB
    21
    20
  • 142.250.179.228:443
    tls, https
    1.7kB
    40 B
    4
    1
  • 142.250.179.228:443
    www.google.com
    tls
    11.0kB
    11.1kB
    27
    34
  • 224.0.0.251:5353
    3.7kB
    11
  • 1.1.1.1:53
    ssl.google-analytics.com
    dns
    70 B
    86 B
    1
    1

    DNS Request

    ssl.google-analytics.com

    DNS Response

    142.250.187.200

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
    109 B
    1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    142.250.200.46

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.