92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
155s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
12-11-2024 02:37

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4976

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
63af55345b8ad8cb2d38f0b850942faa

SHA1
0a234e089b6d241a88141b00c7cecfad354b1796

SHA256
2c3f72e59338d64b02af22ec361405f659872fe726913d222fa872bdff958601

SHA512
9f84acc5d133b7656c27492021747bb2469ad934dfe4abcbfba5962edc199f581bf3390f1e84f67ac59eb25388d9d98a536bf3b507e4580654eee67d77ae8ddf

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
1a03865110c2061806dc00c597ce68bd

SHA1
40f221f95109266f7a41780bf14ad93de92c2bed

SHA256
2041a0335e645868e1b80b7435c30cfbc9c496f2608a109b4d95be372b31f0b6

SHA512
6ae9ccae5c84bb98cf1ef62c3ee25ef0a6acf405af10b1be71cf028d98f9c34260d10958b5fff75fe8956994fa0a76ba6bf93420466878448f3eadc987eed42a

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
ba089176f12cd65f279d9684826b990f

SHA1
afcba46165f038eb31c8d92a210ce092b0b78436

SHA256
0d5b32378d96a464eb21f7fc6d9ef4391d65340499ae86c788a0eaf0b90d45b5

SHA512
69f0a792a0548a5caa3d4f761a43e92265dea2181aa428e37e513d6feca7eff5026253eb030ad0c9385f8746a27eb27099e8f2724fdfe9c96c70f5594c5e516b

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
d545149d0b118827ac7be156c1bcef25

SHA1
ed929c6eb05ff9e00f3bbf799daa7273d2737a13

SHA256
135601d3ed64ca2ad20a742ebdac9b81ab0316b0f80e904b5a07681f3ff79886

SHA512
8b50b5fd38a07600b79141f9b4f1a8f472b74424e5c70e5aff932feb28752e02dc58d1e21af01d8cdd047243d60a4f7a36328f73d1b8a15258b60dc9b5bbce85

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0218809a95e607c7a89f759664866a2a

SHA1
d3c7a20a78252b84855f7b5464128f702d458aa8

SHA256
ba890fb51995eb315b399f385556b4538a3c2263849b4a03a9d301ad98d80759

SHA512
aec7a9de94d90b4675d699b50fd11d69bdcc7027a4e4b9168e33c1dcacc5de78af1202cc085516996fb5e47325903f2107328e97b6664d0b662656202efdce5d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
407c4bd185e8c9b629b1a3465f0eba9e

SHA1
41e697618749de324e4a7aa69ce36f816f30eefe

SHA256
db75abc3d4bd85ebaac413f545e277399634100c75d12063ccdb5ae30e5f496c

SHA512
59fc0ad2e648a069ede2df1036be7f30c0ad8ddfefe1362add0236ae7734dfdaee7e3f0c51cfbddafa2eca9589cdc996d14031f4b88fffc1c41a592872a2183b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
09df05a5b98200eb92a679a2d39ba777

SHA1
5de81cd836d68c8765caa5415b259dbc34e25794

SHA256
1e8384648b0c39ebaf306bc7ce1c10c38e3147ca030ee3419bf3a93c998472cd

SHA512
eed0d9c37f45c6d3056616609724032c23c54bdff7a178055aaa81c79cc72c0013e0fb51bfb240737748635b0cb70dab67f372a2e35bdfff195755ca77d983d0

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0f4f38d9b4d97ef82d52be7c03cfdb99

SHA1
789ca44835de34afa2b2d9dcfdff2d20944107dd

SHA256
f80a2506ef1fb42007ab7e8a33c16708d02cf960a3789af4ba406f60e6ef601f

SHA512
d98aa433b7abd45771f94a2443fb1b0f5f3bc2d2be9156e6a4547978028df93fb51ad3cb72015288e88249417b5501b5989d964ddeee81c9e3f87ac4538a0ca2

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
5e3eaaeac3be5406c615364b4f64a25e

SHA1
ae2b40b1693266abcf6583dcd891334f266c0e4b

SHA256
8c5cbfa4dae119e95c1515a787070c241d2841ddf86e7b19a369d41cc13ae097

SHA512
1cd11e29e040120a90c8b46ce10f82e0bbcfd2ccea71c05eb15ea5d2624625d39693eba52707af68f72fb3e24a2fed7e946416ddddbef246cc18130d1aa16eb3

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
93207928d626e0a724dab24850366bb1

SHA1
099bdad10f33132a4f7cf1567bbefb16693a3986

SHA256
5afde3702cc599745ad5b139faf4051f45c37c4af4d0a94d3b56487dd4b0dafc

SHA512
9d6b9c36e7a40e5232142c4a3446fe78f75318bca916420b24115e457190ec1d5de074d517865dd738a2e1a612037fd7b1e4b28f5c565b4d8943de5960cfe3ad

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
5ad37afdd15ce28b0d503c82ad601667

SHA1
ce991d901c371029259361dd7e5ee4aa8c473114

SHA256
410b6699d9fe51c4a98b80ea5c2a78a2172230e4b330337fd74c55fc39de8034

SHA512
49a108b75a25e124d51ece0f45005ca505aad8033c4ed9800cfc81325263b978de2348c2d38e9f41e20af8a336a648be67189f0fd3879cbb55055ff09ffc9e12

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
d236eb1e36fe9aa007d7a6722b531b49

SHA1
3604fa7352d17ef93040a2d1e4a4addbaeddd17b

SHA256
2713b4f3aa691e246d4a742be5afccd26ad7c4c64eec29712ce9d3955035aa0c

SHA512
cf4923824635493d744676c455c5a995323724085e4d38640eccf5bc23a467fd070e3839bce83d7a742cab4115a74600a98c9192a25998a333bcb97e395f2b2e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
69283a3ef12bfc7e3647e463945d35f3

SHA1
d5384512f17918ba6ac468e3a0282fcb7245ba5e

SHA256
465fdac7e78e21b37734c20c92b9ce2934d7f6e54e620fec3914c984be6d3531

SHA512
b33fa9ef0e34381e12be3c78879114218bfef5795ebe515e7e82c7a039a9e60fedf364698c3b1967bac314b36aeb284728fc04295f123977e54f0c277fd99c69

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
742e97d6453f4cd345c25ba6d3ca8d81

SHA1
45764f85cd85f6b813945922ee72813f352b07a0

SHA256
664da5efaee6edb3a52c4114831f405dcdf9ba22737809248481bc9871698440

SHA512
87844d4489800d2a53695a41641a451a8b3dbce05ee1625d84d89872aa303450b7536e39b606f8fce114a9a8440c92b77078032837c09a7fd720ee096e949e93

Download Submit
/data/data/com.systemservice/files/PersistedInstallation1602718295025732403tmp

Filesize
90B

MD5
d8810b128d2ad92ea9d00cd1c01543f4

SHA1
bf0779e20fbd79bf91f23dbcbeba710b8214b2e6

SHA256
74a35826b50efe4cef5bb4b89d7c59ac555a379ea97f14f5674351b5e3f118e0

SHA512
ab950d0d5b263df63574e70fb926b6f442371457ea90d473aadc4018d172acb0e9d6fe281248f69611dc656b9cca10ed4497778e7ebf57f73185c5d4eca2136e

Download Submit
/data/data/com.systemservice/files/PersistedInstallation492877772216495208tmp

Filesize
556B

MD5
bb6f0eb22776692dadc57d3f1d53f649

SHA1
061d6247a757bfc2005aaa753424b294eb0ef441

SHA256
d77021f234a7346604a91af20e920b60ec02b1166550855691bcac668bbc0f29

SHA512
66256ad2ddef16091d61a87a421e522cc46ee0b66f193182ed61312f6b78e62894c41de6c4cfe577e13b1911ece93fce5e6bc9e844638093975c30a54a74658a

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
d4dd056fa2d737fcdeb7537fc42e7435

SHA1
1db5f2658c340d7a1d1d6fedb5f26b707bcb5803

SHA256
c6cd017bcc144290f35d0744c1ff238922285fef86b60c5e0adcecb91a899e44

SHA512
6ab64c25bce9c8768a26cfb6102f9c027ef221df63b546899f7f1bea9faaa7a04bfa785af5220abbdf392b59c7780f4cdd35414e0acd830c07f5ef03ee7f613f

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads