92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
16s
max time network
150s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
08-11-2024 02:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5102

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
0255d082b754d17a427b6051a4473913

SHA1
221325336dc69acd44d7e3882e53125e549d5a96

SHA256
9144096017c8c471d846d6a47d33efa435731bcc7f29c3cf2089b2a07d4612c5

SHA512
8d758b0837ff3043cb372b43880400b3a5dc6ea68d70bb225277551ba37cb2776209d8a2230addbf6b2bf470e802bfde5e6cafc0388203c44b574a986cd9b7cf

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
9a1671e62c3f338fe8276fe2f79e357a

SHA1
a5fe1df6cd003f13907a08bec5a91314df12296f

SHA256
75c008cb422bf101f2eac95abd2a4978857e1d29d70cf27821bb16e02dfc4104

SHA512
72488aa1325ce1916c12273ad79cc987dafb845c8f69dc445d48620f5701ee5d1ba86d1f5bc1ad42b3d58a40188730648d0235ed29176828a3254b2e53370007

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
a4bdeb633d8e14e7f3838c5c9a4a697d

SHA1
694efd24410b6c22a75e37dab771350fa4833650

SHA256
ae279f18078de8c91cf229acb5ceba9864b29ce69e09707d4eb0f3280da24b51

SHA512
bc6ef8dce7c05874d213b6cb2b7efbb3992c91c682ddf6a5d934bd50adcc3b3ae21e14607bc5e0749c2ed4ba6870862a6f2720fd2e7c94ca8ec9217ccfd2a3f0

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
6540073c2e4dd0170bbdaf26189c08b7

SHA1
31c5df9d1ad68da6e9f182fea85fef25f8a10c28

SHA256
f926bb2155586982eba04a8b92b8dd9ced45bb255a0b1cf88aaf14566d31f455

SHA512
82b0ad1c3ca02b3b185a8f24c893e60056c6201f726cfb8601b019f96a6c3cfc94aa77c2568d42a4d837a75bcc35b18bc08e1818b40e1b828dcc36cd4d1da361

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
39f6e6e8222aa9a5f0ac35efb72734d1

SHA1
76e520b70dabe33e88ea8cf896314601005cd280

SHA256
5336c1ea4b96cc6256cf07d7a6cf2305eec4b78bb6796fe569dc2f069604ddbc

SHA512
7f37a3d4c74d05ddefa5fce08cd93f2a45e24706d8c99d58eb4bf1b1731fa11335f8416701c6ce17bef9c7e43beb9fd8719958eb4ebef43b33cc0d53a6ec346e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
19374c714137c3cd8d5674744f2a6499

SHA1
59d0903cd9b634d68deb4f71794482ee2857f5be

SHA256
859056ea9d37f8209a486b41c0c0545551b14cdc96d76551b9c6ae69847dafc2

SHA512
e4d192af21b02d7ea58a4a8d24249373d9dc9db71b9c2139ea5dff71bb3d3c234caccc6feeac701f0d1290ac6b0fd97da88fa4b913c4b2acebc120a54bf40e40

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
aff4574bf480b8b7b426d9407b4e2546

SHA1
be22b34a556c5d0e1893a81116189e772717e476

SHA256
897b4cc3c165f26c43c9f01dab275a2c7d83c103144bddf4c0f8da3d5c56d44f

SHA512
0a52d71871e54c32893b4d8d3100914445ae04d95ff37d3ca88d5bb7f8ef9850cff2c6c0e1560c796d473a110bd8c41a942c404baada8b355bf343a7c242a22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4eee267d59813cf2950f66382db430a6

SHA1
a54e66d085c3d70085c3b405bde980895e4f5a28

SHA256
210c5fb3bb25fa28531afb0bac9d9acf7b5ee53f893385f7e01ae1cc9865674c

SHA512
46a29567b36feeeb1e73e558bd1a46e7089362bedb8aa5b7a28d981b58a1f95b9258774838a1d6d083a0f0aaae41dc3ceaa4f131e27af222adf17b85b7d87d80

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
cc6bca4cb9d0671199714291136d5db2

SHA1
5d558074fd6f6f1ceb9fb8800bc72bdd5c312060

SHA256
4d2c1d026b6b988b887cb16d2b0e4ad54fe47ddbd518756abe36cd23acc7848c

SHA512
019bde3664979cd685dbbcfdaa4a13687bb7e140fc30197b967cdfa76680af77b137e2edac3474fe5178bdad273026694358977e02ca6d7113d947335ccedce8

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
10f8e11f7949c47f7dabdc7ce32c14a1

SHA1
edb799da490abca15690adb032a05e3cca840117

SHA256
e3a38bd74af395f4f47af168d734df336857625529d9db490439364cb0a5c3a9

SHA512
5e43f5c652c8ea74cd0cd5caba581316f1dc2e16e147be177e3ea121f1fba72ac3a92812722586ab8103eaafadf3f8d111f02edaf08a798247896fe182087416

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
a69e7bdd9a516ec298a9e8e547a267ec

SHA1
3ab7eb45ed7529a116fa95cf5920df195f5d27db

SHA256
f238a7d6acbb0dc36280aca8125018360ab103308d8a3e31d782f537b530c4e5

SHA512
f55bed0df610b20f95a1cde189c992ae3df755905add6367e972844e34c7c04c6dd4304fd17ba705f8e4e69d6ac8843dcca9e0932e302f433260079e4807cd5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7acc9bb45166c4fc561ce88de2661078

SHA1
bbf7223b6cd7288888145ed63e3aa54c5da524d1

SHA256
466c7fc1d401c487ae48b8c25367f4093d9d29fcd2b60a4081ca9d853ac6f7ed

SHA512
dd2e5316512700c0fb173fa23673e30317bce2322f7c7a2643adaf327906ad9127b091d60c11c7882044e3598fb6cba845ea0b8a35c2698475091693e84f1c3d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
149784205a94fa3f59ea51cfe164ad8a

SHA1
b56464f22e6ec4ebf42638f595769536a37cdd74

SHA256
2405b8f4cd16302401ac009c0c3f446ea3903d5b4237f79cacb0b777afb9a826

SHA512
e0d17d59baa7e5b33491376aaa305bc97ea5457e64eadea134e0a1608998faa59d9053fe1cb09038b019678a57667508e6ff7b04ef54309acb8ed84624e7141c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
d79965500411edad8153cb8d83f524d2

SHA1
abb15ddda4994a48dac7b7782b5974570c4576b7

SHA256
efd6786b73c3c101fde5ff98b79463f6fe13c3577215af395f86775989451728

SHA512
63d2bf636aa5fc09779fb0a351e590f82e0163ab1cb520cf5bc52a53e0964948c18aac6d7b9035a420a4e639bf953ab22bfc5dfc75af639771a7d8bda249a20b

Download Submit
/data/data/com.systemservice/files/PersistedInstallation3153062135548374646tmp

Filesize
90B

MD5
238b269c1907bedd8028414d3597d4d4

SHA1
6d8fa0ceca3c45be87f85e782bcd65587936807d

SHA256
a2f691c3c54859a1096e916cd045d212abdee52b3fed6c0e9aca7038708efbf0

SHA512
2dde467164e3711d8e41c2d9d492058f7f33122de487c9c27cb53f8270c7e1c9adc4b6dfd420fbfc2b24b1a641c1e9422358955bff796bf72fb400310c91ef5f

Download Submit
/data/data/com.systemservice/files/PersistedInstallation8589987860080135699tmp

Filesize
555B

MD5
17790fa7f97dcab1f0edeacc212d5d65

SHA1
12d13e5b4e2e5216d926d0f7598ff9addacc6657

SHA256
d1041e61b8fa8bc8c71df556c140892bf305b99f8178dea324673d04013a2faf

SHA512
8bb91b2b072baf7a06ea6f55cbb542413d10664a039a49076ffa27430893be9f83de1f9ce24a12c48dd8b87160d78d37784ceb4c71d97e06ce28f578829ffeab

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
b7123af067eb988fa7d9dc76539aa1e7

SHA1
ca5542003ed932e6848f871be766ef0f9801abb1

SHA256
3f2dac7d057c30ea2fe7a7b693769a6fdb69fb5485f6085e7c64fa56bd12e49b

SHA512
5587d9ac80daa846d587b26de902f5bc64b20f881ad8e92a44e1da73e0e514d8954b0b7a565fee499d918673c761d36590fd4d35368a231f712ba60127027b8c

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads