d0b493c7dc8060b9cb42dffbdcf07d5d56c422670f07b440c13a6d4f5525dca8

Analysis

max time kernel
123s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
17-11-2024 05:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

app.apk
Size

2.8MB
MD5

b5b268849ce14d6e2d5da4239baa0730
SHA1

12e431546e9c0cf8c97816cece092c1ea2b1784e
SHA256

d0b493c7dc8060b9cb42dffbdcf07d5d56c422670f07b440c13a6d4f5525dca8
SHA512

aa35c3eb5d019ffa73cbc78bfe3e717e44d5b4048f765ce0e6527839e03e45e7ea955743680e0e3e9291a6eff765980b375b58f0ced786977bb010b7e3aa50c1
SSDEEP

49152:xiQOfK6yHrJPzD5fjToKfYD2E+8YbKvn8E2MtiML8qUojC3exHunNReYQrH:xxLJLJbD57ToKAD3Ae/12xMTUojCnNR8

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

Com.ukjent.app

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	Com.ukjent.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

Processes:

Com.ukjent.app

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	Com.ukjent.app

Com.ukjent.app
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4615

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a31650ab307bebcab3f24a13775e74e1

SHA1
c9ee7321d95afc75d22a74e66a7cd06a4a368bf9

SHA256
a43b6e4517a1ad90afcf3f4b918884d1e153a42c5623c7d1b17a9f42b3b660f9

SHA512
2310123634023bdc19e19a2253d7016ff8a4e52513b364408ca6ef9c124e3485600eab25d702d46caed3c79fd9248ca91b15d9174e9f3dc21b36beba1f7741b0

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
92cb2bcb75b38d6fb738ab829076bb5d

SHA1
476966091fa8f94c0f1cca23f8c8054aebbf47db

SHA256
6c02d96db4ac33879727f018ac702c9a277722f5298b433c56e74ab1838541df

SHA512
5da7b7362126aa5a6cc016e75a4b32cf6359ab826b349e170b8bcadb538898b4f0c52e509ef80a75a48c96706b1f89fd4e2ae26bb52760506711d48f42595dcd

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a867805cb2fb21e2c7a3d78913e86ab5

SHA1
051ed0928dd81c5bf860b71768bdc8ebe5a26307

SHA256
1cd3eceb856ec8ba4b5c97725aa4b2bd4e8ad09ae16271ab5c4250f47867ca31

SHA512
ac88dab60f6531a6dc9c14a39b1dbeb1a2775ece77f83537760c5dfbac5cc810fb13eec47d9953db4b76b54c3c52adfa8f05b9e874585c333d45ad64dcfa3ea9

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e80859be56fbfedc9b35ea19a126abe4

SHA1
8b482af404e7e820a64a3e3a7b9089d486a5c09e

SHA256
331e57b7edcaf39c858d7a100b18e22fee526c7fdda65b91e5251ca91d669b99

SHA512
4dd95203ba3724c8a92e864cdc7efc6bea2f1cf7819f58c4baed497b70aa13dd105e8b3dabe0feebfa780c15e3afc54ab574210b52efed097e2ca11f3a549c0b

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
3c56dc6c1b95446b27e038092a13e876

SHA1
624b3d5d1e1ee80d0c6abe64977dd6694fe97861

SHA256
c256fcaba66e73135e1d187ae2118dc9fac3055f24aa27d96f3aa2d1a7da0935

SHA512
92b64fd1ea1af088184f65a964b50006a4a4c5a39ba2a42fb73e5f3b8ea1477c4b145f2fd144265c2257b3af701a6b2dcf605a757a536fac8e981db3ef932b6c

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
78aa53a117aeff3a902697f9234bba35

SHA1
7cee9f2a50620184e912f38ec7be56b7712e4bd2

SHA256
a7682136290c25332ec57c0fb446ce7f3cf33423858c0e00b3db1ad9fbd96c4a

SHA512
90cb94fd161abaa2ba737c8e8671a5afffdda40e706fbfdac27d677b9fc7dbf862cc2cbc0e385b1540b409c4ebd95fff112bb95e3bde0e77dd761b7bf3b337ab

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
4518745dfd409ff780a05ba8a29f75c5

SHA1
bb3ef79adc00154f7ed8e793e83d3e58fe62b02f

SHA256
08f78cb278aacdb99ab517112d0d956814e9971068545ec07d2968bff6ef4c45

SHA512
ca65e59d2c8ef2d7fa670c8238499ec54d21ea415057ac2359198d88fd570a9510c929335eb7d0006a46c11c8b1ba50578347cbdfe2110b5f2584639d9c2a723

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
ae14d03b8ac8104c2545f228a3b52199

SHA1
7fe8952949fcea51adca86cf9a6dc92c24ed3245

SHA256
a9f7e2b2776d74aef1ebe5ce7ae45c981d083a60ff7695de4868d4b162c7952c

SHA512
7bf6a0609f28aa68368dff7c6f62c2d0827e9fd75bddf0606b1249aa6212047ad99b23baab5929464cb16bb44bc2b0cadc16fddb4f3df94639d35e3f0940a3c4

Download Submit
/data/data/Com.ukjent.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
81206a4ba02db5a4d7f9e44987c11aa3

SHA1
804f3f3199ca82bdf6e60eb305647ce5229d43ae

SHA256
811c22ade608536e0e7a8894bb83324a43b67d7b1e9afcc68fdcf928fff146c0

SHA512
025a8adeb2d6f0cb09de087f6f7b217ef0820fa13cc72f3e24358fe6c5718aed65352f7492aa42b302e4baa2d2cb31850e570b33e15905211b3499ed91bdb2c4

Download Submit
/data/data/Com.ukjent.app/files/PersistedInstallation1446248072844245836tmp

Filesize
90B

MD5
f07cdc3199a34f2671cee015a9536de9

SHA1
d81bc92b5ec5a4359ed7902b66e304feecb189fb

SHA256
badca6c2cfa6534cd0c0b5f31b9b422bd51c686b67e51f24047ef451f5cb670e

SHA512
e4049f9494b348cd633750438b0be2792de261e8b8d3316898ff81d2e3bd1a4e3640ec5947a0da1c8cfca3da0545ade25d0dbd91003bcdc01e84d9dda2e5d5a9

Download Submit
/data/data/Com.ukjent.app/files/PersistedInstallation4387274095951179146tmp

Filesize
571B

MD5
6875206f5ef3dc648d115995df829720

SHA1
5a22bf1d2869ce04ce5840dc10a5e28a45416914

SHA256
71dca1059c665e6a6d3b72cc815f6b4f1488ed7fe7b521be5338e32ba3b3ebe8

SHA512
e1c8eebb36cba6e0c947ef51027e78ea34cc0efb688c1f2b491795a63398486b5b7f4d6ebf7fad7f525755decc58d5a754d8b86c48ce051152619105a77cf069

Download Submit