Analysis
-
max time kernel
71s -
max time network
131s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system -
submitted
10-11-2024 12:20
Static task
static1
Behavioral task
behavioral1
Sample
ing.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
ing.apk
Resource
android-x64-20240624-en
General
-
Target
ing.apk
-
Size
15.8MB
-
MD5
02f6b98935cd81a72ef703bbaefe5c24
-
SHA1
c4bcdbf7264a1c66699129a2957728f20e0032ad
-
SHA256
e6f49c577a130e98ec146a493b11b6706816dd05742dd10af300ade7e4340de3
-
SHA512
7b3e7cc7e8a60382d1995ee84b7d7712a55bfcab31203b424dc1f89ac8b3e52055ca83ebcb4015d96af9f5a2668a8a5c1486b816a53cc3dc5fdf850742497d51
-
SSDEEP
393216:xkYkO4hsKi+HVT/2CAHobrok1k52BSKP32Qhn:Kuui+HECAINTEKPphn
Malware Config
Signatures
-
Loads dropped Dex/Jar 1 TTPs 2 IoCs
Runs executable file dropped to the device during analysis.
Processes:
ingsportwebtv.appamyioc pid process /data/user/0/ingsportwebtv.appamy/files/audience_network.dex 4314 ingsportwebtv.appamy /data/user/0/ingsportwebtv.appamy/files/audience_network.dex 4314 ingsportwebtv.appamy -
Acquires the wake lock 1 IoCs
Processes:
ingsportwebtv.appamydescription ioc process Framework service call android.os.IPowerManager.acquireWakeLock ingsportwebtv.appamy -
Queries information about active data network 1 TTPs 1 IoCs
Processes:
ingsportwebtv.appamydescription ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo ingsportwebtv.appamy -
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
Processes:
ingsportwebtv.appamydescription ioc process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone ingsportwebtv.appamy -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
Processes:
ingsportwebtv.appamydescription ioc process Framework service call android.app.IActivityManager.registerReceiver ingsportwebtv.appamy -
Checks memory information 2 TTPs 1 IoCs
Processes:
ingsportwebtv.appamydescription ioc process File opened for read /proc/meminfo ingsportwebtv.appamy
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
16KB
MD57237409e0640cfab7bdbd429bf821a3b
SHA14c3da934842f8d4835dfe2a9c275a300e5123309
SHA2565c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f
-
Filesize
16KB
MD5c0639c34c56be4cdb6297836658a0adf
SHA17142a3ab55608475f5d9d13ec62c3fcdaaea8b54
SHA2569cea3df16253e980f7a2f87ac055b4c6fb6dbe765b7f81490ec28a9a58326d9c
SHA5129f36a7cb09da1d1a09676d8ff9359e668dba3060acd97a4055b8f094229e01040a71e045d4454f59b06d7c7d2dd4c17dc3676c727acb635fa97b587146ff7d28
-
Filesize
16KB
MD55cdac9e599a5aa2f1c3f76067e8c5f9e
SHA12271187cc231526c4b535b9f8e4f7a84996dd2d0
SHA2569a3ca7cc54475568463c805985fd608156bf10731b9ee070c9338b0ce8a3b192
SHA5129f24f39f5d09a8924bee521f5d478ebaedfb5154ea901499482e82eb59b482a8063ee00484f4aa8271766aca4a554b614e97fc52f1a9acc638d77e344cdc80b3
-
Filesize
16KB
MD552b96cffcc2267dd1e9393d09ca682fa
SHA19896bb5e1faefec7f3883ebcab5dbdc1c5211e5c
SHA256fd3b8dfb4aa3824c34230aed25d04c3cf16dac30b8e93cedc88882755abc1b0a
SHA5127f6d9beb8aa0fc084b799e8419772d02d5e2b8ba5269f10af7ccce14383bd8a8a984e0c325d441dbcd98ffa6a3deca191436d7e693169fdfe6d959ead2d49f8b
-
Filesize
512B
MD5ff44e67f1902617d368335dd4e4137be
SHA14fbff0859d2630077be7c53dea9a9bf6dd016a89
SHA256d1d991f4589ba7bd63eae8b839f90a98d0002b75c9d926c8b71770e59ff8c29d
SHA512f12268d7938c725631ab0c2b2ea83de31ba1403de12d16697a8f6781eec8f251cc064ee91ad040549d0bf05ebb7ff60675ade1defa3d743b515b08a7a348fc70
-
Filesize
36KB
MD5f994ee6897728436a57d95578652738c
SHA1b422a9add6e8ead6ad2c8d024541d1a57535bfbe
SHA256945952669289f8030666b9250d9fefcb81c1f1ecc35a6b4ac32bc0761755bc70
SHA5123da8923ac3cb4775f56095c96e58020cfef2e4fb31960fb4367c09aeecccd32ead9914eb76b78ea17ead394e2528aaae678f0c861787a84684b4b71b94b53595
-
Filesize
4KB
MD53c49942552d264964cb9277d055cafb5
SHA12d71ca7f6f1acca786907017a90e9f3fdc30c23c
SHA2565d1fc527156db4986be15c399901372ae0b022ee73e44f42cc23ba6f2bf27ba8
SHA512d95125b29750744aa1d135b67587a00710cf35253414c6b7c2216a33ebdb8bbd5d0ad218d4c6d9daee975d9777ef06fb10335648540888f97a498bd7d8f895dd
-
Filesize
4KB
MD5fb6446ee678d8cf8fd3b8e26d47dafa7
SHA1e08bd5cc49357ba1fcc94d6176d3056f5de3b41e
SHA256e6b978030659d57ce1d9ef27d11640dc10edd4bec056131b39b628508be9eeb2
SHA5120960dd548325307d48f03cbd2d122f383f583abbf43cfafc27bd777dc9bc1bb9a7543763c14394bc53a0c5c2f9d96a5e24fffdec9b031cefdc65ea372885d052
-
Filesize
4KB
MD5e667ab796da2c90fd4085e2b60bd031b
SHA1cde9bfd58b42037965b84a08bedd1aaa768d4208
SHA256ffd0a9191b5518479efa3292a78afaf0b6a0bf3c5ce5d4d296b9b2a807b26fc4
SHA5126de1673129c72e18503e962ce9296b715026ae89a4c871e0dfab7d49fd7d5144dff47a00439acfad420287bd14338b9657b0f49142ad044a34e0895aafcad2e4
-
Filesize
562B
MD5ae1a6189eddb9267595c2ed23a83cb6a
SHA1c097211048bbf8f91bde28598a7c2fcc95714d5f
SHA256492705526d94b4ef8406b9b844d22899ceb9a68fae5e45b81ff3324bc9848a29
SHA512247ab46166ec2221c3cc790b862e73c2083e0016e4cdcac4eb766f7c116bae9b972104545b13f93cc6eab2f62ebfe505412be1e29d2b04b804f533d0c432d861
-
Filesize
79B
MD535bc1e3d5150f6a1e352723f111eec7e
SHA11345819f1497ce1f5f0b3d8603b18b79622d6587
SHA256a3d43fc8681183a48307750e1241676317c20934da3ef0e7d407d5d9d423d865
SHA51280214657a9a60f63208af40069a6cf06a206b5d95719f73dbb12126e4631ba7075cb1811afb72872abede6c1323a046a2625f8b90095d85ea2f02e1f43bb0030
-
Filesize
3.0MB
MD5b18ab03453d5d70113873d8c45c10d2f
SHA1ad3c48b1ca11b9c84f380b9ae7a025f957f3d02b
SHA256bee390afa2267bc48829ee7a0f4286895bf32ba2443ff447451f515818f7203b
SHA51263e75b38dd472b2de19f6e513026e732ca040699437be4a1684827ab2ba4baf2077b053c0ccc4a702b72bfbc2ed7e343296b9a9f85ba906be37bdd6f905694c8
-
Filesize
355B
MD5a6cebb758cb721255560baaabed55b44
SHA1bc67ba8231d9463ca707545cb03a921b73d12159
SHA25657092227703e41673eabe64d1b01f51c0c78410c85bf685da34e488f9cb125b2
SHA512673b204b56784256779f8d3815e9c759d7feda6dd5c7ce0fc80d61ae370b75fca74779b59a7e43a754000d1fe32c54cc5da6499ec886887b774af7011f145f41
-
Filesize
19B
MD53df83abf987537ee102eb3fb63d3309f
SHA19a9879f799daacd71c03c10352439fdee145193b
SHA256a93c5e1b44abc0d70c1700bfc89c35908e1f141e37a7635e56ee6eba2df38f0e
SHA5127a272d2650d27ca00be08d57a29b4a0a851d262afa3fd5b0aee15cd494271555c521dba8ad527cf46d38e8e67eadac45036b4f13a8a77aff0489e9dcad92544e
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
512B
MD5b9c4358c9d6c9d727ad1a45e59ad11cd
SHA137d3e669b3c2adf1a7462ae980286dd0a44afac2
SHA256ee0c9da5bdfe5a25e54e602159357415f16dcc38dc20a27b1268aa82e6678750
SHA512854f0d1906f599dca25f3b04504f35b6c2368f83e50b8db02dbe5f06fb389a03e091b1f50b25e032445bd6224b543b6a14eb80a0fe1835c0688ee5a7f1cda911
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
16KB
MD5f09baff9197331b4a6245b2e9b767543
SHA119f197aa009ff489a744fdc3ef085ba988596ea3
SHA256bf73b813da8f4381c15032ea9aac8f0ac95553303c482f6d047098d87519e4f5
SHA512b4e89acfc8c33dbc494af4811f8b61090b5e29f25d09e153411c49f674607202a631247747b88e78f1a13a68b9e5b510d5dcbfa04db2ce2a9d1808dea3cda8a4
-
Filesize
108KB
MD50d7f4436b6b6d4dd70fc613e8a86f782
SHA15af1e9ec27a28d900596e9ea63d4ae671e3e37fc
SHA256bfa157562da7925fea2f6a4e741af2ab8249af5d4149ed4a7dded85f3edeead2
SHA5129554bb8aedc0603c37620ab407e82bf7be96f460d84140c943a4c3da65ef132cde5c0443176c77f90a0bf3b99cbd90187f4232ad6fe90f87d714795813dd73f1
-
Filesize
2KB
MD523b24ef7bf18c53d8447e8d9064c2ecf
SHA1290e312ffc5099cd35733e991df73bdf061245ef
SHA256fc143df2467b97235524ae1b6bb9237320a7342cfe0b97f12350293f159ec383
SHA5121eaf501f18d927464828052b9947fdbaa48611855ec9d32458f05a98ebfea6a3f86d3e37f7a6077d6d529f32f21ff1f108279b3e4d82c0e54a081f7240daf297