Analysis
-
max time kernel
23s -
max time network
160s -
platform
android-10_x64 -
resource
android-x64-20240910-en -
resource tags
arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system -
submitted
09-11-2024 23:09
Static task
static1
Behavioral task
behavioral1
Sample
8502286b51db5ff919fc3f8189abfb3d0f998a35aa267387aad27aef3d5ecef4.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
8502286b51db5ff919fc3f8189abfb3d0f998a35aa267387aad27aef3d5ecef4.apk
Resource
android-x64-20240910-en
Behavioral task
behavioral3
Sample
8502286b51db5ff919fc3f8189abfb3d0f998a35aa267387aad27aef3d5ecef4.apk
Resource
android-x64-arm64-20240910-en
General
-
Target
8502286b51db5ff919fc3f8189abfb3d0f998a35aa267387aad27aef3d5ecef4.apk
-
Size
2.2MB
-
MD5
fd5c4db66ad2c5c3435cbc6005defc59
-
SHA1
d94636b2d9e31bd05549363de6be4857e7eefc8e
-
SHA256
8502286b51db5ff919fc3f8189abfb3d0f998a35aa267387aad27aef3d5ecef4
-
SHA512
9bc5b1a1832762272de1320daf744dc78dc5246cbb08e9d4b6a628a5b795612f06a2db14eddd7b0af124a78b0f92abfbe62c638fff2c25fe3cc81f8172aa8303
-
SSDEEP
49152:5Xhgg3Zou4A5XU5CXnVdgbv1DeiIIbSb5qdxIa99nSgSPRcOn5:57Z1jZN3VcDpub5kIaARcC5
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
Processes:
com.frsihsupport.androiddescription ioc process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.frsihsupport.android -
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
Processes:
com.frsihsupport.androiddescription ioc process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone com.frsihsupport.android -
Checks the presence of a debugger
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
Processes:
com.frsihsupport.androiddescription ioc process Framework service call android.app.IActivityManager.registerReceiver com.frsihsupport.android -
Checks CPU information 2 TTPs 1 IoCs
Processes:
com.frsihsupport.androiddescription ioc process File opened for read /proc/cpuinfo com.frsihsupport.android -
Checks memory information 2 TTPs 1 IoCs
Processes:
com.frsihsupport.androiddescription ioc process File opened for read /proc/meminfo com.frsihsupport.android
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
24B
MD53df33b8390bb509807225a70dc62e834
SHA19d9dc19ea2476f628c2beb154000c3f9d4ac7f50
SHA2563b76840f2cc0bf6ec8d6292e9f68c8cfafce4ed03097f37be4b71ca300f9719c
SHA5124bf70df9964c4aac720d14a2654a84ae64e57618e5070c5dca5aca5141f457e80057724178aae316777db4b0a6ecc393a5318bcc150350f29a037871ff5ea847
-
Filesize
8B
MD5c9cf04f10e0c77c1517e57ab9e79b58b
SHA1665f3219192b1b872540bb04ab659c812b44d74f
SHA25651cebecab1a87aa0a3bb2bee3cfd6fd1644e3163b00b5f2052ad2266e0383fde
SHA5125990dcc211e477cd46664af15e621a0f1a3794f6c04b02c92c1ca79b2cad54d6801df369ecc2f42e26c43a53823cd517ab4ea4642ca491d810f8dd57c4dd02bf
-
Filesize
1KB
MD5403c4d600b299d733fc2f97348f83e6a
SHA16d7f0c585b864f02777d06bd52fe6ba74294e39a
SHA2569c67e25c5c391fb947b3bcbc9118111669724bbb35d24f8a6fd73bf411f237a6
SHA512488f2fe37985bcf69a9d98b6a5525136f1a4f477beb6e2011721a25835ad61a4d9d3d017d024a4c45f0684ace27d05b0086f1f91aa7bc6c25788e600684d3f86