Analysis

  • max time kernel
    132s
  • max time network
    150s
  • platform
    android-11_x64
  • resource
    android-x64-arm64-20240910-en
  • resource tags

    arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
  • submitted
    09-11-2024 14:14

General

  • Target

    H570.apk

  • Size

    36KB

  • MD5

    93a3a74fb6f523fd2c418dd6529ad6f1

  • SHA1

    92eceb78ce954a739793b4ad92d85b0d096419f6

  • SHA256

    c99b92ce6e51f5f235884aeb979d36cace131641469f2c12b27d90fd30f7eefd

  • SHA512

    b0eeb93082889fc8fcaf41078eb78e13baeaea717c37e878ca51cac4253624a2a329525180ef7a2478c7bb09148ab4123f6b27712500d6d5c21b45bd84304f48

  • SSDEEP

    768:7FopZbapoLs4LCOs76NFS7ukyiissHGs+b4rP:7CPb+2xs2NFSHyY5srP

Malware Config

Signatures

Processes

  • org.noear.h5
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Queries information about running processes on the device
    • Queries information about active data network
    • Checks CPU information
    • Checks memory information
    PID:4783

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/org.noear.h5/databases/h5db.db

    Filesize

    40KB

    MD5

    de509cc22b63bb9758eb605d7c98445d

    SHA1

    00b86b3286b7ddde992ad4a0a280fcf3328929b3

    SHA256

    7a45236f5c9ed2fc0252e21e484beccd235dccc8f2572aa97a42f0f8b975aa70

    SHA512

    06f5d7ae892be98160d10fdcc1f7fc5ad25ca1a99c2d65406454c545ff91de507d8e1159d6273e1187d2ac79c24965b54634b958a786a563e5c06e8799d6d940

  • /data/user/0/org.noear.h5/databases/h5db.db-journal

    Filesize

    512B

    MD5

    188261c91a39485e5c44d0843af6933a

    SHA1

    d8251fdf848e293aba66d9499056678f2bbf9010

    SHA256

    be7dce962fe96112c26edc9747f322761e02c061e781e8db466ef71548fa4314

    SHA512

    f73465b6fc95f1e71f5ef4d7ca6db1ec2a74bbf08c21e9ded78a7eb3fe3822cbc32b5323997f993dd732dd998ebaceb0f8e57c97a35fedc92a081be34601d7d8

  • /data/user/0/org.noear.h5/databases/h5db.db-journal

    Filesize

    8KB

    MD5

    f793634ff654026bde0bacf85b8b1f38

    SHA1

    c7bee78c81a0420c18e4a453e0bb386564531f22

    SHA256

    12d821f5226a1fa0efe617ad62bc3a1ca266faaee5710caf47049b639cc7b242

    SHA512

    0f540b45a03cede007537e7ea8cd69fcb9eb78c8222257d761e54da31ffcc75c85d58877db4b0702b77d20081efe0f313bd4cd2a2632100b4d6105ff3fdcac2b

  • /data/user/0/org.noear.h5/databases/h5db.db-journal

    Filesize

    8KB

    MD5

    51aa7813a56d5b8e53c8393322eafe55

    SHA1

    df5fb4e54fc0cca514a89bd3ee229feef0451fdf

    SHA256

    b2a359bfdd3da85401873673d9c77c87acefcb1fef4bb4c8cd7b30d9f5dd2091

    SHA512

    49197125a92f1634ee87008dbb7588b8c709b1f30a9ac2813acd723675856c2abb68b9ec02e9426b44a85f818b845c64df2887fd8bb66e94c5f76733b0700279