Analysis
-
max time kernel
148s -
max time network
145s -
platform
android_x64 -
resource
android-33-x64-arm64-20240624-en -
resource tags
androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system -
submitted
14-11-2024 15:03
Static task
static1
Behavioral task
behavioral1
Sample
2187d1e8f9c7cf03e3ba88e3a7072b0f.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral2
Sample
2187d1e8f9c7cf03e3ba88e3a7072b0f.apk
Resource
android-x64-arm64-20240624-en
Behavioral task
behavioral3
Sample
2187d1e8f9c7cf03e3ba88e3a7072b0f.apk
Resource
android-33-x64-arm64-20240624-en
Behavioral task
behavioral4
Sample
2187d1e8f9c7cf03e3ba88e3a7072b0f.apk
Resource
android-x86-arm-20240910-en
General
-
Target
2187d1e8f9c7cf03e3ba88e3a7072b0f.apk
-
Size
1.6MB
-
MD5
2187d1e8f9c7cf03e3ba88e3a7072b0f
-
SHA1
14f6ee87e4b319fc18933dddf5b5f204a82df7e1
-
SHA256
1d72edee696560cb93aeadf9a2df56ca2b1e2da1e30c0daf86ffab273b6f0907
-
SHA512
f14f7939886fffcc75464f8fdf2271fad8a58122f9c4f5b6b14d6eb4a7e1c915afda9a567689ca11364cab47a92466b076d26b34409c41f9c37632227084aa6f
-
SSDEEP
49152:4tjzAhMv8Z4t5mJNV4KY42XqrfzQHGpAalgjknRFY5RL:mj8CG4twNV4gDfzQHGpAalgjksRL
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
Processes:
com.example.ahjm.ahjmdescription ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.example.ahjm.ahjm -
Checks CPU information 2 TTPs 1 IoCs
Processes:
com.example.ahjm.ahjmdescription ioc Process File opened for read /proc/cpuinfo com.example.ahjm.ahjm -
Checks memory information 2 TTPs 1 IoCs
Processes:
com.example.ahjm.ahjmdescription ioc Process File opened for read /proc/meminfo com.example.ahjm.ahjm