Analysis
-
max time kernel
105s -
max time network
128s -
platform
android-10_x64 -
resource
android-x64-20240910-en -
resource tags
arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system -
submitted
11-11-2024 15:34
Static task
static1
Behavioral task
behavioral1
Sample
4360463c4755e1643160eec793b92549.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
4360463c4755e1643160eec793b92549.apk
Resource
android-x64-20240910-en
Behavioral task
behavioral3
Sample
4360463c4755e1643160eec793b92549.apk
Resource
android-x64-arm64-20240910-en
General
-
Target
4360463c4755e1643160eec793b92549.apk
-
Size
4.6MB
-
MD5
4360463c4755e1643160eec793b92549
-
SHA1
1a59afc85bbf5afd079280a2b4a4ccd0b05459f8
-
SHA256
efe63db927b1ecfefb7314aad71b8d5207eca8b1d95cdc2a68bad064470e4b6a
-
SHA512
c11b349b99f6ceaa0ab132cb180e8261c8a939a5e06c6f6c6bec5f796a392a49bade88961c2745c869146c0c9ce5e989f8537a8fd61e44ad9c3777952b7d6bed
-
SSDEEP
98304:4WKoLmpuyKWuuMG6lGEW+GnFtNETvtBOxpPH8Io:ZKgP4p69GnDNeB5Io
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
Processes:
com.google.aplication.sdhsjdhjsd.grenahard.apqdescription ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.google.aplication.sdhsjdhjsd.grenahard.apq -
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
Processes:
com.google.aplication.sdhsjdhjsd.grenahard.apqdescription ioc Process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone com.google.aplication.sdhsjdhjsd.grenahard.apq -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
Processes:
com.google.aplication.sdhsjdhjsd.grenahard.apqdescription ioc Process Framework service call android.app.IActivityManager.registerReceiver com.google.aplication.sdhsjdhjsd.grenahard.apq -
Checks CPU information 2 TTPs 1 IoCs
Processes:
com.google.aplication.sdhsjdhjsd.grenahard.apqdescription ioc Process File opened for read /proc/cpuinfo com.google.aplication.sdhsjdhjsd.grenahard.apq -
Checks memory information 2 TTPs 1 IoCs
Processes:
com.google.aplication.sdhsjdhjsd.grenahard.apqdescription ioc Process File opened for read /proc/meminfo com.google.aplication.sdhsjdhjsd.grenahard.apq
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
16KB
MD58fc127fadacdede5aae6284240f27ec2
SHA180469d8f84fc6870e531baf5c00f03b793877f63
SHA256f8214eaea2f3135722b53c617bb6173a96ca3a03027d84a8847a1f5e337c733b
SHA512d85343a861f3179f6d8d61aa70bc2f3308e0edc253e656715aeacb9a920fb2d298ecc79125becbf5371815dc4ebb41d24dd5f440eb2638d208633fa6de640a08
-
Filesize
16KB
MD5d578193abb458e09f82c618bf85a5dca
SHA1f2699344bf573d4c42a88da5741616403f50f01d
SHA256fe3e657b860fcb19a4226bec24cbe54d269b7ed31ce8e8bda6887efb14307a01
SHA512c4ca900d9b218ff12b9c830abc9ebd84ea4d0ffae91406ef5ca0af7f62807b40cb7efeca27b7bb4131633f0498741a7ccb7032903358e87b3bc7b885f5cc4fa6
-
Filesize
16KB
MD5f8ec251f63398d0ed70105967a356ac2
SHA1f5efa6575ea89eb3a033eae2329c11cfcc48f9ab
SHA256fc021d44c9ece8eb67e184df5186e571c18c22067274030d81c9c9cc5037d4ce
SHA5127d11ff907072296ac3217c53d5f83880c8a6964eb74f7920f161537228c3da4d4233ef1c56adc9ea8252511eb292d8275ade4ea2825e2d132e1dd70d7f8a0549
-
Filesize
16KB
MD538e92f445388c2d9d53edf183ca07385
SHA12680d1ec3b63e24400681e232cda973fca6639c1
SHA256711ddff07b7f9403f4b68bca595a697542bed18e4d9d358ccedfa6df0ab603c5
SHA512aba35f73b4fcb327e8c4ad32c908745c8cdc061708cc8e6915df8460a9275692896ed494a4d4e5286f127b61712c019c2bf7136e8d061f0da4af0fb408961e9f
-
Filesize
16KB
MD55869935756f5d06ff967a9bf90cc54f0
SHA16d1df7bdd405813e6d621a26c13974cafbcb3840
SHA256934486fe3938a0aa70fc548b22d8f7b75f9c352bfb05a8cded09f64b999ea304
SHA51203bbbffb00b80bfc6d2a0d2f4544d03ceb8ed05ab636631d68d7638141fc257d5a7afddd434e625ab7d0c346826142f665041d8d10258925ccaea6937daf8814
-
Filesize
16KB
MD59deef1713dc08f1e47c4b6a8887a191c
SHA1f2ef9c23543613702d6fcd1ab619ebbd3f43a68b
SHA2563610d2a8ba74c50f26f02f506f9bf4a0eed4f2cd32340a727a412d20693bc1f0
SHA5125975a8c387f0034a90d027dd5ce211d416caf5ba03cfd4cab35d09e5fa0e2d44e34f393447f366efc05c223c1017506598a63560b8311b3ce07a8850e94d46c6
-
/data/data/com.google.aplication.sdhsjdhjsd.grenahard.apq/databases/google_app_measurement_local.db-journal
Filesize512B
MD56ae020a77a6921555265657033e701e9
SHA1b092dfe5f0a22a7adb456813671a4b5990af3b02
SHA256b532652ca551fedde881506736fd5907bd571301673f45439b522471674d0a1f
SHA5125651b2759687ed70638face27d6dbb7c3c45c0b108d1012452ce5ac702552a5ef640021adbe6859d6170c74ca8bc5eb506fc0ac2b43d0ad54a11d8e4df7dd928
-
/data/data/com.google.aplication.sdhsjdhjsd.grenahard.apq/databases/google_app_measurement_local.db-journal
Filesize8KB
MD550503ad90a37b2f7181152ca6ad1c24a
SHA158d87df6414db3c7344e61c098ed691e980253bc
SHA256cf2dc6edbef845de74d2b84f94e7370d679e7fab2f9284833767fe1290ac27fe
SHA5123f7f65b4054d2f513440f49e405d1666a0aa6f14409f49c164607ca4b2927fa4dff03e11fc7fbc31b9bd2f08c41d88e93ee2f04a90af99a65f90133b52d2c711
-
/data/data/com.google.aplication.sdhsjdhjsd.grenahard.apq/databases/google_app_measurement_local.db-journal
Filesize4KB
MD536769f26fd8e7fec408cadec4791f0af
SHA170bc6c43619b767d892955e670a1e8182f5dd450
SHA2563f1dcb9f1788fa788983115602b34dfac9d08d46cbbccb856f0f958e90b4aee9
SHA51265e1e87914fa4ce92f38e766c4a6d326945eb2257356baf6d181410bc4c3171e2f0e159958083f5a1ed6285abccec47316794e30c199dc150080abe5e61d2743
-
/data/data/com.google.aplication.sdhsjdhjsd.grenahard.apq/databases/google_app_measurement_local.db-journal
Filesize8KB
MD567ead580d92ca36c2e018ecfd3f0c301
SHA123987a01a3dad5df0b41c8051f4c7db1cc9d34af
SHA25624e1f92dc4923bd4058707e024d8f8a1aa3b2882fec0679c8df787c61ae070a2
SHA51297f872f9a8c108c153088284dfc9a1372edd3253a5ddbf1525cb72180bb8d5c2b17c9216ecea0d6d5820e2cf140735691217e673889197b447f274e3bc4cfb9c
-
/data/data/com.google.aplication.sdhsjdhjsd.grenahard.apq/databases/google_app_measurement_local.db-journal
Filesize8KB
MD5d4d3f132985e53055489a6a1f996bb23
SHA1616bf4b0f7ef788fca949eab4042798e2e04c99d
SHA2560fe88faa29cf4bb26c0ae98771f59261044647b4072a587fcea0f14656fefa8f
SHA512f6b56d0e4998a4a81a2edb61eb9f009588f10dfb8bd11327bfd01ead0604717c0df1857dd5cc8d302d77549203f5ebb82491a62615a4d5966a6ba7a0433601d7
-
/data/data/com.google.aplication.sdhsjdhjsd.grenahard.apq/databases/google_app_measurement_local.db-journal
Filesize8KB
MD560b84b914e050ccb826ecd080e9d158b
SHA11430221f4afe5a3d16cac1b831ba12749ae89129
SHA25636758ca76a91c9dac49228e4e6c342323e813b7c36adda5b579829965e0b3398
SHA5126b616cbf05d349dc6d6e578e34157c670fa11144bd3b85aa3cc6f10f254d83881dde4067e7433a687d2dc9c6e8cc3216ce410dedcc7a456ee544995c208e5c1c
-
/data/data/com.google.aplication.sdhsjdhjsd.grenahard.apq/files/PersistedInstallation2199311708875737226tmp
Filesize90B
MD5254c5c6665f72221f9281a6391397f33
SHA18393aee808113ba5912979b6bc5c3314155b5e24
SHA2569044557a9cbda40a0dc671229b39c1d53cf49a8465986dd8c046207453ec5cea
SHA512025353a8d18cc31a9b38b04f3b168b7b538b745d2798198dc8a11e3a18286a55855a5f4f66e704861dd3daa230a2742a1c88f54dbbc74d762c564060fdccb3b7
-
/data/data/com.google.aplication.sdhsjdhjsd.grenahard.apq/files/PersistedInstallation8241379386878684227tmp
Filesize114B
MD5599ad2cc80c44ffda74bd611dc012243
SHA1b5e826ff23afaa28d4adf6ac5448db32411be282
SHA2565f2243cac98945b1daa2ecd627ff8beed2f3eed9f803aa540949d96956028627
SHA512a28a3eef769955f7673e47e3fcbcf1a664eb0b1c05c4ff5fbcf160b89768b4a6ffb6b78436402464cbe849f3b228b8bafeb6c41d5f0be78b8664957662eab40b
-
Filesize
24B
MD57e93c954e1d260c44a101dd7fd376063
SHA1d073e844e06e0cb7b38775f43cf48595d5202655
SHA2565666a6f0acb0222608975914a501f159fb9bb7d9d6fadb76833552476eb9259e
SHA5121814caf7f8dca92f891f72ad0eba767c55636993aedeeb55e618b2fec38004b314dbb80089399892d60a916898b42a3035816e669e2e34e3d3333895c5ec4aaf
-
/data/data/com.google.aplication.sdhsjdhjsd.grenahard.apq/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat
Filesize8B
MD521183202db06b3edb110d5e62061880c
SHA1d136fc618c2fabcd0886ca1b3c65780fe8a7d1c4
SHA256790c333fbe58114e087cc9b7f5b0f6e5561d2b4ea7ecb8dfffa8bed209047321
SHA512199cd87597180a4a9124bea8aec04f294ab445c097f855bf65af744ebf2f422298e88ecae70136f90fc5a4ff22d36ad7ed3456df702faabde237bbf977d8c000
-
Filesize
3.5MB
MD55675592c58ac80870d80254beffa463a
SHA13c234576865faa731203d2ea9c62cfee86143237
SHA256f0f5219f2a1e0b6a21db4fad7d92f10e7f2ea53c60c3a19b91a87395295cce27
SHA5129d0c8e371e4e619e0f005b6943072f42e389119c30d6aaef113278b078988d1d07e7ee65267c4909dafdd5c1aa96e379864f15b1488752100216f0c9592ad5d7
-
Filesize
55.1MB
MD58ed55e785c7af43a42485f38c36b39a7
SHA1c8097836a7f9b869964f4aabb43738ecf4550ad8
SHA256e97201904b8a3f25ffd27e274355ff32c94d03b3f48f6182f1db7854cb43f0f9
SHA51297bbd0f197649342efd267262f8f98dcc2ec0b4f34b6d383a8598348f15bdcf8622cb87ea5ab037319ff97bd883c7dbcf126eea4ddcdaa6cd6f5ae98fead230e
-
Filesize
1.7MB
MD5ba718c77e23b2170363ad0dfffd64725
SHA153145b2c9e5d122353250928158c0ece605c5267
SHA256dae8c1e02c656255932f37d40ac54c5202cb8c9f23dca011970fdc6e58c7cb91
SHA5123677270e09ed1de98638ce2ea55996fc837af62a8b62cf72ac3e92364cc1a03e7e27d81cac3e4a21566532f4bd412cfdb080778017f729a3fafbb504a84b3415
-
Filesize
13.8MB
MD56d077daa1df9b8ffdd70f71110b4c4ab
SHA11d7e6377bc779436bc4b90bce7ecf46082eeca91
SHA25615b9652a7e7acdb80210f2970cb86755d16a820b71ac3707096005ad78ae8a37
SHA5125fe55191ad3c1700516687ec0840026b770a86148d83c49455419670a19b1d052b94828aa5a9beac0e9cd05da090f01c12ba43c10c2c8d6da353e5c483aaeb23
-
Filesize
27.5MB
MD59cbfbb40cd68755bdec5f988d90a17e3
SHA1c5b3c3bd3747b9bb65121f22d7d4bbcdae39f3e7
SHA2562b79b67381631e22fe1f8fb5fd4afc127d3aa21d0b61e8d900158125455332ff
SHA512501e9a394c1343faedf584fc07f4377ff8971110fbc58188c7596b03aa5e5161fb7a1e7f1d94a0c4a75e40e01235996cecff5e3a0edf3642b2fd0b7a9a62cc7c
-
Filesize
895KB
MD5c9f52fb1c6da066019e3d731a51e0424
SHA1b40b84359be4b3bfd7e3a4aee55aeeae71186c58
SHA256b59b9679af63ee29881c2d5cb19fc9737efacc13b24b0ea0500ef9a9a50b4cbf
SHA512493bd57d33099de2392689a0e9886b5e36937d63015d1e52791bd7b2f94867955da8b8d4a215d685d3424c01ead55768017d36c71d2193fc1bd0f4cfb279ea03
-
Filesize
6.9MB
MD5bd540b9929f168085fb8b33d0f6f01bb
SHA1a4db5ec79e02b0c281ae18762deee97ef0acebcd
SHA2566126b68164a89cd300ac399557256a436ee33959c31f0ba221b861cd8965ffeb
SHA512e52c63b0f943f492c70841a8b4c2b3e7ac7bba9930285307a193ef5f666ffef565b7ffda0d2f2aee72e560c630ba5c200047193853a96d6b345bf9e36aad16aa
-
Filesize
235KB
MD50138ec2c588199780a056aa7df87fcd6
SHA1d703cc8278ad3dafc50dc61e6bb49242c94d8e8b
SHA256bfab95a1907fa88a59f6168258bd8e6d5cefe84280e3bfb0e5ecd1357f15f00e
SHA512a1f67cc3dfd3d73c29324938c96164ee9aa3698d978fda9c41ca7ce5988bc57225171fbe40e4fca6d667d1af90896aaf4ca611ea293a8f378d55cda94f124ab1
-
Filesize
455KB
MD593095586ed79e6bb1d93305ace9fbccf
SHA18e3e88453d45c1b4df37ea102e25e8ece457585e
SHA2562a539084a13ab8b08c077dc83e21afcc56db1f79fd4207e75bcad8a7a4285de5
SHA512fb6290528237157de9bf7750b3f9a3352e618598b91fee09a3911ccc7b3a67d7859de67c22398685cf7480c34ccf586813e81fb945d4c249390fd589d2b0fe76
-
Filesize
1KB
MD59d1e7805405c66976149b326f94edf4d
SHA1b3b01ad224d6d41ae780d64c7afc4707d8123dff
SHA2565cc8d402ef76e8a8292d0f1935d1ad9c8f2e519f5c4dce64e580bc92fa8b1776
SHA51282ba678e77753d9c0275ad14817c468d83bb94575b33f03fde24ed1dce9b3ec361dc05136fa1fa282167494588a1d2110e3610d7ea451c8c6404225f74ff2dcb
-
Filesize
4KB
MD5c29ef7a6a0d889b71820f356f244fdc8
SHA1313e4456e5172d02630e86e3334e342cb99ccd9d
SHA256d05cce00c02f378cb47a83c57015c4a537c47f983809ea2dc3b0c31fa0c4ff5d
SHA5125f9e4562279fdc2ca50b004973c797485208f705dac25b4a45bc09c16aa957198146189119bfc43f4c020446f1b4792f69d702acf392be996040c727debbf7d6