Analysis
-
max time kernel
132s -
max time network
150s -
platform
android-11_x64 -
resource
android-x64-arm64-20240910-en -
resource tags
arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system -
submitted
09-11-2024 14:14
Static task
static1
Behavioral task
behavioral1
Sample
H570.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
H570.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
H570.apk
Resource
android-x64-arm64-20240910-en
General
-
Target
H570.apk
-
Size
36KB
-
MD5
93a3a74fb6f523fd2c418dd6529ad6f1
-
SHA1
92eceb78ce954a739793b4ad92d85b0d096419f6
-
SHA256
c99b92ce6e51f5f235884aeb979d36cace131641469f2c12b27d90fd30f7eefd
-
SHA512
b0eeb93082889fc8fcaf41078eb78e13baeaea717c37e878ca51cac4253624a2a329525180ef7a2478c7bb09148ab4123f6b27712500d6d5c21b45bd84304f48
-
SSDEEP
768:7FopZbapoLs4LCOs76NFS7ukyiissHGs+b4rP:7CPb+2xs2NFSHyY5srP
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
Processes:
org.noear.h5description ioc process Framework service call android.content.IClipboard.addPrimaryClipChangedListener org.noear.h5 -
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
Processes:
org.noear.h5description ioc process Framework service call android.app.IActivityManager.getRunningAppProcesses org.noear.h5 -
Queries information about active data network 1 TTPs 1 IoCs
Processes:
org.noear.h5description ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo org.noear.h5 -
Checks CPU information 2 TTPs 1 IoCs
Processes:
org.noear.h5description ioc process File opened for read /proc/cpuinfo org.noear.h5 -
Checks memory information 2 TTPs 1 IoCs
Processes:
org.noear.h5description ioc process File opened for read /proc/meminfo org.noear.h5
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
40KB
MD5de509cc22b63bb9758eb605d7c98445d
SHA100b86b3286b7ddde992ad4a0a280fcf3328929b3
SHA2567a45236f5c9ed2fc0252e21e484beccd235dccc8f2572aa97a42f0f8b975aa70
SHA51206f5d7ae892be98160d10fdcc1f7fc5ad25ca1a99c2d65406454c545ff91de507d8e1159d6273e1187d2ac79c24965b54634b958a786a563e5c06e8799d6d940
-
Filesize
512B
MD5188261c91a39485e5c44d0843af6933a
SHA1d8251fdf848e293aba66d9499056678f2bbf9010
SHA256be7dce962fe96112c26edc9747f322761e02c061e781e8db466ef71548fa4314
SHA512f73465b6fc95f1e71f5ef4d7ca6db1ec2a74bbf08c21e9ded78a7eb3fe3822cbc32b5323997f993dd732dd998ebaceb0f8e57c97a35fedc92a081be34601d7d8
-
Filesize
8KB
MD5f793634ff654026bde0bacf85b8b1f38
SHA1c7bee78c81a0420c18e4a453e0bb386564531f22
SHA25612d821f5226a1fa0efe617ad62bc3a1ca266faaee5710caf47049b639cc7b242
SHA5120f540b45a03cede007537e7ea8cd69fcb9eb78c8222257d761e54da31ffcc75c85d58877db4b0702b77d20081efe0f313bd4cd2a2632100b4d6105ff3fdcac2b
-
Filesize
8KB
MD551aa7813a56d5b8e53c8393322eafe55
SHA1df5fb4e54fc0cca514a89bd3ee229feef0451fdf
SHA256b2a359bfdd3da85401873673d9c77c87acefcb1fef4bb4c8cd7b30d9f5dd2091
SHA51249197125a92f1634ee87008dbb7588b8c709b1f30a9ac2813acd723675856c2abb68b9ec02e9426b44a85f818b845c64df2887fd8bb66e94c5f76733b0700279