Analysis
-
max time kernel
149s -
max time network
134s -
platform
android_x64 -
resource
android-33-x64-arm64-20240624-en -
resource tags
androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system -
submitted
10-11-2024 11:22
Static task
static1
Behavioral task
behavioral1
Sample
netvgoldv9.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
netvgoldv9.apk
Resource
android-33-x64-arm64-20240624-en
General
-
Target
netvgoldv9.apk
-
Size
19.4MB
-
MD5
9dbb805b9caf41885ee13b49910aa45d
-
SHA1
282a2f29583fc219bf929f1911998f5053edf882
-
SHA256
f96366e120c5e6a1f3748dbee74e81c4afd83f4bc40c3bb60f9fd86ea6890ac2
-
SHA512
6bdc5228c099258ae531ead2786d44a8e6bd15877d07b2c54bbd3a510fb04d35f372252e7d0313bcfbaa90bb1ce7c4e643efb1e35c8c30642af21de3397601fa
-
SSDEEP
393216:4a0r2Pb3so06z3PFXCkR+lNTNKhxhYEHeMmKISKP32N7hp:UT6z3tXCH7NcIE+MH/KPM1p
Malware Config
Signatures
-
Loads dropped Dex/Jar 1 TTPs 1 IoCs
Runs executable file dropped to the device during analysis.
Processes:
com.netvgoldv09ioc pid process /data/user/0/com.netvgoldv09/[email protected] 4328 com.netvgoldv09 -
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
Processes:
com.netvgoldv09description ioc process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.netvgoldv09 -
Acquires the wake lock 1 IoCs
Processes:
com.netvgoldv09description ioc process Framework service call android.os.IPowerManager.acquireWakeLock com.netvgoldv09 -
Queries information about active data network 1 TTPs 1 IoCs
Processes:
com.netvgoldv09description ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.netvgoldv09 -
Checks memory information 2 TTPs 1 IoCs
Processes:
com.netvgoldv09description ioc process File opened for read /proc/meminfo com.netvgoldv09
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
16KB
MD562ad4a05cbdca7f47b3206b7dbda487f
SHA14f4044cef7b7b1e5c6184ed9025267fc92bf0cd3
SHA25618b909096c7c61d51ab076ae8e562effb0d4ada28e2a4ecd0e6b88ef58f6b2a6
SHA5120936531ed1b2b356a247123200739a43cfc765469ab47a424dcd6e3d1176092a212b0a28591d07f8c2d0cc9d2e0eeddfcea8dde314c2f9343783c61075b071a6
-
Filesize
16KB
MD5788a7aa320f198b9a7edc1d6d0aa625a
SHA1c4508a41ff6db28ed1ed547328853da218ae8c7f
SHA256dbfd830a0d4616157ec5818d5383baaa6edd5997b663c376b3118eee3ba6fe2f
SHA512e5ceecf672aeff234a248e460926b9e779f20e9826de832fb8357dfe00eb8fe74036fdea502cabb5707a252e273648f4a13a356690ec5ab7143066e26ea18ace
-
Filesize
16KB
MD55685d246253c76396b1ae3c0f2d1d066
SHA1f29dda828bcd99f3ea7642873ecdc34d4a578f79
SHA256cd8186ffd4de6b7f7c06270bc29df1a041201b5e70a60e64da862531ddb9fa3b
SHA512cca48fedeb85aa8a00576543565eb92b82ce4b823a0cb6be5de3a3f76486b12a4bf955cf365242ac58fda52ed9f2de216a1ce90d45078a629f9d5091c3468d0e
-
Filesize
16KB
MD5cd03007c20b4a8ee465c27b2afc7209a
SHA10912ab63a3c6b210de9a245c9120f1575d45855b
SHA2563c1fd626831e465fcb20b5a36713fdd1f6601cb8fa44e97dc173490fbd17ce03
SHA5123492b228b323436137d457e8be30087cc3b7660dfca3e19abfeefe44f0147679ffa6724e962edff9c46e423c17b6b91beb953cf21db287c1bdfbb0efbb957c6b
-
Filesize
512B
MD58021931a40bc21f9d68b67a2357c1b43
SHA18b356debeff12e1435d3cbc4858371f4c1ca53ef
SHA256691435bc5cf1be0f8739c7b91a3ee54ef02154c0591132db50b0bcf40cba3796
SHA51270c5ea43a41131d6993ded62e16fcfcc3fff9b4f82c503d1134b31a19b2bd6019ee5833f3ecf0c276b2bde5e5bffd28896cd9ec77fb0046e8a9712df06449dd2
-
Filesize
8KB
MD5dd2c87c859834ad8e4e7632e893cdecf
SHA188eec4d5e826c1fe81894e9c45633c5d0db7b43e
SHA25673be9e72dd012a33ec9dea14711839c30541f6b10be0a369ad6564c016c54d2c
SHA51248604bb4abbd925bde93b7f9ab175204bc50ded7f54059057486583762edd0d6348a3064ecec9a659f8c183ec11fd727c66e39f2e788b6a5eaf1662f812fda03
-
Filesize
4KB
MD51b226f1b6cfb1bc8d8e15cba4a5b5928
SHA1742793c82711a6b2b8d10a6f4ac36d187ba61215
SHA256b33cec23b1db1831b9b03e5050f3caec7262e9b9dac4d088d54349806150321f
SHA512869d0c7535d56709fe9565e12662e6265de37f68ac488762399282cdb32d33930e0ea92b392270c281ba82f5f13b3917c031ee96cd84468f7ea7826abb93f5a7
-
Filesize
8KB
MD563b27030675ee9fe02ab0762f2547a1f
SHA192b8950d71280208e076aeebf1a8d1c92283d682
SHA2567ed4b87732645465192621ad648b9cee2b8d8fa1b370711585017734b93d44f0
SHA51255c8bae0488c7d967833e4b332fbcbc0732e49c6ddcdf0b165f12c272e1b1eb0dc0020616a37037ecedef1e6f57d84191e3278ddccce2bd4be205b98d038be26
-
Filesize
8KB
MD5f27ece849bd02a77f4e8d8e2cbb15545
SHA108b6b75cb814101ae46b15ef02305dfc25dc2825
SHA256ab133f1196372eb37a91370cf465bcfa1f0c0ba08b13560631fa0e4f5a5a3aa5
SHA512134c844bd0ea7baa3d1756814fa70c3889a914c9c1a151d57cd34a377f2506a137776c95c18a467be6b2ce2fb587a7160aeaca1090eadca00555837b30f2d017
-
Filesize
8KB
MD551780a5330a31b27a0f3b3a95ba3ecc6
SHA1f16abcaf9d17829360af8c4c83f82ca145b122d4
SHA25698763d4baa1a26fb1281c802a35b5c22376cfcb623a7f49049b56399871be17e
SHA51219bfe0db5401c6bdc9a5b530d693bb1c0b7b18f95634de884ed24c8ad85345857949587784bb572bd53ca24104d76aeeedf51014f5eaaf58ab83a488f0e49b58
-
Filesize
79B
MD5535f82233feeadda379ea83938c12b71
SHA167d2be4546a5dc4bc949b20288d2c12b1d46b9b6
SHA256b4433b621c914889480a81e220a841a4cc9e1c2cf3e33f533e891ae31552b41d
SHA5120c90839b726a14bd01d6d37db57f9c4bbfe837b632f661da5a5e363e7aa242e13479d55f8630f17ebaccda6831a51f7f53f8435ca4b81ccd3e0dcbf12d061475
-
Filesize
560B
MD5ef2faff1326c27f41ed4ad977a7be0ed
SHA1d0a7248a53ca3daa7197f4603d2758a6144721ec
SHA25663345a680aae7bd02e2ff299f949161dff1dd10fe5a4fefc6333213933431ff6
SHA512b80588e42f8966e96c6198189a0c9a4fe3682906f3de0e279823aa583f6c49e4f273ca5a64ef1d7adaf092441878a7e81cada9ecef691df7c683adf54f7b3fc6
-
Filesize
19B
MD5d1cfbac09383f064f16309a559b2799c
SHA14ca0db2d10287004bc7d4e6f027c139810dcc286
SHA256ae768529330e9883652828c1e82aca46db6204e3f09ecb0bf59f34c1cd568b38
SHA512cedc4f321845d03b67fb930260e6d8e0f1d37c73fe7d4f501e92feb2a0a3716c1d1882993ea6aa94da88c2f3ef8778085a5534d75261098bc50e68afbfa8f5c9
-
Filesize
4KB
MD50eb157e1a86d4d00aa601dd2f6ff3ee3
SHA1fee434f784e73cc7916322e949f727caf8363102
SHA256b9a8194b71a046e8c0eb30995827b582b4bea834f630a5df2483b778a7d7d8a4
SHA512b9b79b8c3af8a3f140df230fd89e95206358ba50ff214e7323a2dbbe2937b795f970e588302ffd5d721318bd597ce0a27af26d6cdb07f45569c30209845082a8
-
Filesize
512B
MD56a403c3f37dadd4dd1e7b6cdd4b0b87f
SHA17af82df89ba04cd858c775187ebab4f3e726bb5d
SHA2567355f9e9ffb2c34ac4c41d2dbbdafa77a1cba2471a775698d5cbaa695638b569
SHA512ee3d180b46768334f3f6f47d4981b7a30de1d446e2b2f92ca0346b067857b78023eb4c719620003775f4fc54269cac33001aa8d7142f0d47b3e945e352b7db53
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
16KB
MD59e4dc2d0bc7b4738ad47ce2eea2756d6
SHA1c051daea891a6bd144ba205a98c83cf416721f24
SHA256d3178d14064a1ffa41ec80e25c7a210f3a5488d388a308296f1bc18fed70e7a5
SHA512d4415b9c2e565d60dfb2fe8b3022beb1c21c6c898c2fae86909c2aea3e09916d3e664b0ff0702a03def9468f662f8c6b180e582feef82bf32a3d75288e531125
-
Filesize
108KB
MD5db9936104d4464f957fcab10f53f8abe
SHA1c614062227af197a173641a1b4334c41102da448
SHA25699b5441197705895cf3fb89bbd39d6c9ec13fce88ca474346012a785c2fb2765
SHA5126dbe786e7f488a0aa4df708cc04beb60feea267d5d0ce41ee751d6419a08970c110f2a8ebf04f982fd2fb2d497e4308b2dd52dd0c721813bf1a3c0f9f82805df
-
Filesize
2KB
MD5930cce404fa2dfb6abd7e7c5f52388c2
SHA154429ac900ab3a87a9dc06e2c6359d00bf833457
SHA2564a24fa5d1e485e728886eb35e6dc22ec530955f7d7160bcf9208f6baca217794
SHA512892100fbee0b7967f96fe14f482b4bccdf72c9f3cbabcbe82b87c327d8b4d472ebad4b29de11c6a1b8174bd86952b7db8e6b184219779e109a59cf908d79e9b1
-
/data/data/com.netvgoldv09/oat/x86_64/[email protected]
Filesize56KB
MD55d9563fe4ebe8c14fdfdf4b1541282a8
SHA114b29d9899b727e7126f05b8aaeb959bcd724e5e
SHA256f6f52938815836089974e67007e7f2c93f49448a6e326dca8785c4bcd274f37d
SHA512846d8d2a4789933bea848a03691319d7263a61f1062de0d2e326dfbb9928b10a8e544a36a1b04ad0af95076764eaeaeda073b1ae09a51fe77a31de18a552f8a4
-
/data/user/0/com.netvgoldv09/[email protected]
Filesize3.0MB
MD5b18ab03453d5d70113873d8c45c10d2f
SHA1ad3c48b1ca11b9c84f380b9ae7a025f957f3d02b
SHA256bee390afa2267bc48829ee7a0f4286895bf32ba2443ff447451f515818f7203b
SHA51263e75b38dd472b2de19f6e513026e732ca040699437be4a1684827ab2ba4baf2077b053c0ccc4a702b72bfbc2ed7e343296b9a9f85ba906be37bdd6f905694c8