d19cd3f04b7ee4cc4b9b65405ae26fefbd358c455dadfcbaee1b88211290a987 | Triage

Analysis

max time kernel
2s
max time network
128s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
10-11-2024 22:44

Sharing

Report Analysis Logs

General

Target

saham.apk
Size

3.6MB
MD5

b9d49aa924fa320c21c5baac8c593aac
SHA1

ca946005834dbbd969d6785e0860c942719971ec
SHA256

d19cd3f04b7ee4cc4b9b65405ae26fefbd358c455dadfcbaee1b88211290a987
SHA512

f3b94a90e7b413ed1c340cab0e7b0484e17467b6b9b49924b1d5e9142d38ef8ab8096abfef235b5904fcef30517a0ef6d51c9625a49d27418748a830fee7eda6
SSDEEP

98304:hwRUIRniReEarm3ZvAfDrFRBO+ruhXZv7zIT9Cwd:hELRnicE+uZK/FO7XxITHd

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.zoku.app

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.zoku.app
Queries information about active data network 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.zoku.app

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.zoku.app

com.zoku.app
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4258

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.zoku.app/files/PersistedInstallation5172385146069070516tmp

Filesize
90B

MD5
adf2b858657556ba3d936f7dfefe9eed

SHA1
c7f2dc2c2d3061ad817e5a3e129bde31ab8a0128

SHA256
29dde60f79833af656d825f91c378c5776a65b40df729666b6c0864932f6ef95

SHA512
fd2b11a9bfe913d541eb60a4f75892ede3d1034efca13d9505ff926253b3b41070418ba14de2abdab5c8083e55e92f80d84780589f08d4fac584a7fcc18b25c8

Download Submit