Analysis

  • max time kernel
    149s
  • max time network
    159s
  • platform
    android_x64
  • resource
    android-x64-20240624-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
  • submitted
    14/11/2024, 22:03

General

  • Target

    1323fabe06de5dcf3578aae286eab4adb04b827d9b7c6ec4923f69bc8f1f6cd3.apk

  • Size

    2.2MB

  • MD5

    ac96a6ef634d44d5adb587e392d0733f

  • SHA1

    3204687a659d490cfd91c267ad754d454536d874

  • SHA256

    1323fabe06de5dcf3578aae286eab4adb04b827d9b7c6ec4923f69bc8f1f6cd3

  • SHA512

    c206076d321baa4a734cb01fadf7b1319a2aca599a1fac6e612e155c9e1abb446216178ddf62da545a46178f708888cb7b74de5ae6cbc7ca9a944520da07e89f

  • SSDEEP

    24576:Gi6NWGo1ipUh0gz2rjPMrAv6HOuFsLNuPf+kOF4xWnMqcgU+UvExEKpgsfO3Msc7:5xK40U2rTMrLukOWOF415oEKpzfO3Mb

Malware Config

Signatures

  • Reads the content of SMS inbox messages. 1 TTPs 1 IoCs
  • Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

    Application may abuse the framework's foreground service to continue running in the foreground.

Processes

  • com.ssabbaiii.onr
    1⤵
    • Reads the content of SMS inbox messages.
    • Makes use of the framework's foreground persistence service
    PID:4962

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.ssabbaiii.onr/files/profileInstalled

    Filesize

    24B

    MD5

    f5712fb0d589107110025ccab87c801a

    SHA1

    00fbadda49041454833e4efbed4e617fadec1857

    SHA256

    bf88251b6605361c3b27a07d68fe35e6882c8f0d5b2b97efc3faf6b82e0ae251

    SHA512

    72e5d18174c68a816b7a55d8d77db9c60bdae7a7176e1ab2b8e773e22972be46221166f636ec461c84c9280132e30e5d546a29d88311c22c4ae1229f8cf76725