Analysis
-
max time kernel
6s -
max time network
132s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
17-11-2024 05:40
Behavioral task
behavioral1
Sample
app.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
app.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
app.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
app.apk
-
Size
3.1MB
-
MD5
7ebfbe0605c081f7dc96c4edec09cf05
-
SHA1
7e60dc7ba39f7fd0718a4cba8e3a6ebf27891c56
-
SHA256
fb8eac6f4a5eb59088898f27f19c35862eec0770e0eb7565b295fc8cfc4e7bb3
-
SHA512
3a899d1bcc69ada47414144f8338995f9688c6d92c41f2ef159ea1781d312fc908405c246782eeba5f1df2482935ce06acf741b6c05955f81b077bb0164867ae
-
SSDEEP
49152:4bmP98UKolddcjZrNEwglZpakG76aJBLgKt2IeHrm1tqs3QDOCd/Tv7CX:NP9DKoFqZrNEwQ1Guo8i4SDq/p1T6
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener abee.app -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock abee.app -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo abee.app -
Checks memory information 2 TTPs 1 IoCs
description ioc Process File opened for read /proc/meminfo abee.app
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4B
MD5098f6bcd4621d373cade4e832627b4f6
SHA1a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA2569f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff
-
Filesize
16KB
MD5dd9dd087e82215e5e5c84e9d3f46f83b
SHA1a4e994f942bbf336398e5e4877ac253766add462
SHA256865c6d0caafacdb6255f915e2db294160b33b60238a4c659597dae84d4cb6acb
SHA512a709d8e73665b180e484d7ecbbdab3a58953a48e9fa45afb16d5da27188ba5fef64cd7a8dfae2c18d855aa08bb628d5348efba71813138436834511d14238e25
-
Filesize
16KB
MD5d4a3446b25331a8f8b509adc681d54c8
SHA1aacf0d80dfaa1f9d22f426c8dd3bf99f1cd87a08
SHA25644432a7090c3c17dab7d091a50ad3c44dba4ffc4db20e3b53a78ea6c3df73f66
SHA51289f6f6bee21b1e6057d3046a423464eb238c17c4a641c3b50ff65070cfdea69cb58196cd40fd7a5c142be6521ed7dfab249dfe7e2771bc497dfc76e4eb25af2c
-
Filesize
16KB
MD585d822211cdad27eb48f705eaee0a0ac
SHA17c1e95a5491a940916f2a585f200bced575f93ad
SHA256777f161f9f5b7dccd2dd7c77f435b3321fe35986ee9a3101c2fdef89c79cd97c
SHA512c7501aca15ba001e70ecec9cc8c643d47c966ca733dc1673596a84cea946fa32b436bb586ee5613c30788385700c3e177f3bc8f9d6f07425fecfe6d8c0f4b22f
-
Filesize
16KB
MD5dfb1d727bbad14194e2c3f21c9571309
SHA1cc644b79e55bb7e55519932eea683041d620ee32
SHA2561f7e9902a290e97fb970145248bbadbabc8b0031ba3b37fb5a808f96d00de7a4
SHA5126a368f5425d9f582b126bf8f79b76b271ac707d8f6073c4919b08c3e0753fb0381e251e935348d640c928a7263c326145c0ff5e516979aaf739108985387a784
-
Filesize
16KB
MD5de82e2c94d2718988804b035a46d17b1
SHA1705f5ff19093ad209f2a666085d6ccaed3bf58a4
SHA25629110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39
SHA51268f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e
-
Filesize
16KB
MD5d9cf75fdd1c2292d986f6c3d5d60f2c8
SHA107ecb1d3a26d952ae5fecf54f36699ab498510b1
SHA2562d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a
SHA512442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb
-
Filesize
4KB
MD54a80c16132abded0043bdb0e5104702e
SHA1f0052ef72c588c2cc48680b4ba27eb5522069816
SHA2569b606e612d9c98cf51fefcb00679196c30713be200ecb17eed59e511e530931a
SHA5125ceb57a740f533f0619a8620aba313ca16631f7ad2cdac4ba45dfa70f54027c7dec89c9ceb94b94e1c919badb51af5c47032472a909aaf906c11c4e6e81ca5d1
-
Filesize
8KB
MD543fb5d3644c8629707d77c4a593ebb98
SHA181cf1f4f6d29e3b5db458c6755efe73ada3f43dc
SHA256dedcf7f296a1d0ed0a03d2df36efd717cd1417231adca5f4408448ecd1e6f677
SHA512c12b6b3d6938acc29aa814f671d41d66038561924a44375cb903e8698580b33ebf013b8cfc0c4a57f10dbde5930d1c8cf21f471989b139a85e22427560d9a4a4
-
Filesize
8KB
MD545fd4266cf4b78e9ffee257fde10bfa0
SHA19d19e0eee32576b3bf211a9664f2bfa4c2e1bce4
SHA25687ffdc369629e7ebc98b25abf4a3a2011b35ab941cdb2975a252a4d00d99f7e2
SHA512d1509054c86cb06e3a331f72e8d6dae4f6770a9f9b896d0e2838a85eb43cec737262cbf58537040215f72169a9a49b95a4f76eea2748513f219ac0f129540815
-
Filesize
8KB
MD5e58627fa25636f7c4e13e26e86bd5fbd
SHA117ec09960e55743f5d84601ef3b0f38b80b96b1d
SHA256ec4804f73ae2dae6ae6812ab659293006bea094ea1558690d431a29b22766d89
SHA512ecc687b0f51d011b64c41a51e10759e62df6e45103d388c5f3b2e623c620b650afd0e2a5c021e1724daa78c088d211952cf7bbecb8dcd72e5424e68a5229ac4c
-
Filesize
512B
MD537c1dc2de9b29f9fca9cc8bc33d8bbb0
SHA1339859c68e425c79d6499b2e263775fe26677096
SHA2563d53f7b6acf366375b0fea55c4671ab123b9524d08778897241f6529216c58ab
SHA512b738f216b4a1c73780b63ea68c752838f72ca954682df3e1726f1df31433660252ea011a3bf1bde156cc6b3e762677540c9385c37d7e3e014f1246619b9de840
-
Filesize
8KB
MD5e1a5c09654974c0a0bf0962eaf900b39
SHA16c15322c38858f842b45c1d9ac40876b55a203cb
SHA256e18d8b79bbc735a2a0f6b2fd2165ce953b9d5776bce8a9513e973621de125777
SHA5121b15d51c8e0ae83be6780b1d032f9f1212bd4fbe6abf156bb10cd2a7109ecfb3a102e45ed149a8bdf4f9c3f820a0df589af71713e20b202fae914b439344397c
-
Filesize
90B
MD5f072bb60c6f6223202d9540887852adf
SHA183142f1db5ff1679a7a484747c1d08df56d812f3
SHA2568940cd44a1d983d641972d962498de1c59d5ab845a79be867f8b0652a39f05b9
SHA5122a3f2b0f566536187d073673df5828240df326001497391609f7d0bf25b7905a9f5d1e76ea6bbbf3593b4d1c56dffadce5c61e4acc8b34ef576b9a250fea46dd
-
Filesize
569B
MD56b04d19953b6e2e612b276d6ce037b04
SHA10cf4d855316270aaf3bdb351714ed402289ccb09
SHA25650adcd2bc7874bfdd49e6f3bf4da6c9b78c8b980a0ef58436b428b6a0d1dca73
SHA512de8ee617fc2cfc6a829933baaa9c8f83d3b5fa3dcfbfae6ca85d411275455ab7e0b97e34ba69b3fc2d745fe1ab4ed99fee97edc21f9399f00b6cd35a38135728