Analysis

  • max time kernel
    10s
  • max time network
    156s
  • platform
    android-10_x64
  • resource
    android-x64-20240910-en
  • resource tags

    arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
  • submitted
    06/11/2024, 02:41 UTC

General

  • Target

    50a6e55d056a71e2c4727743dd38e3c5d0d1ad9abca32db3b43c9546bd19341a.apk

  • Size

    14.6MB

  • MD5

    0ee0fd1549279eebfa63616accb5c6f0

  • SHA1

    b7962c3a23e14019309c3d0ddd20c38cdfdb6dfb

  • SHA256

    50a6e55d056a71e2c4727743dd38e3c5d0d1ad9abca32db3b43c9546bd19341a

  • SHA512

    cae8e7c18065a94fbbe1e5b7baaed36700835a3fefb4d047416cc9bcb76a354565b2f4cb589116762ad09c48367a6c0f69e947b4f87dbabc80747869f26d9552

  • SSDEEP

    393216:+USo++UEBhPQT75d5Zb8RuI1rhMlIPDNQPa0hAcdylFPqC/Dwxd:TdUZ5dTKuMMlILMrjyHPEd

Malware Config

Signatures

Processes

  • com.brata.rat
    1⤵
    • Makes use of the framework's Accessibility service
    • Obtains sensitive information copied to the device clipboard
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks CPU information
    • Checks memory information
    PID:5112

Network

  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
    android.apis.google.com
    IN CNAME
    clients.l.google.com
    clients.l.google.com
    IN A
    142.250.180.14
  • 216.58.212.206:443
    tls, https
    914 B
    40 B
    1
    1
  • 216.58.212.206:443
    tls, https
    914 B
    40 B
    1
    1
  • 142.250.180.14:443
    android.apis.google.com
    tls
    4.3kB
    8.4kB
    15
    23
  • 142.250.187.194:443
    tls
    135 B
    40 B
    2
    1
  • 224.0.0.251:5353
    3.9kB
    13
  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
    109 B
    1
    1

    DNS Request

    android.apis.google.com

    DNS Response

    142.250.180.14

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.