92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
16s
max time network
156s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
19/11/2024, 02:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5056

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
e0ac6aa9c3d485ef4dbdce88187af5f3

SHA1
21051dd7e90f49f1ea41127299a096a5cb20173c

SHA256
145d769d4b0286cf7b0ac963b0cbff605618afb84d06fbcb0e48a5bf620b3d39

SHA512
d2411c5ef2f82bb0319677ac0c58739822145874aacdeb350e411c34755938ef5214888ede58b36874134c21c99094f2e11a85afa3bf4af5c5fb42812f8366f2

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
95b1f225faac2e7a85990011bfd052e1

SHA1
ce6b172ba6bac243a3c880a7c987192a85665695

SHA256
a48751e02a909d5002b10fae3399793d16c7fbe095feac64aadcb6df4059d116

SHA512
3f6d03c43accc1e5aef13113b0beb1e8be477ef0b3d68e57d8d01883b53b0a425947a25a2876effa5f81eecaf1e238be8cb248d67d515cce46a0e148b3f1a4e7

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
36925affda04589bf75f60dfb3b8d227

SHA1
c8f9c2c6962add4a8bdfd600a028ce3c2c9a2d50

SHA256
545cc5b7eb5fe8ed43a60cb99a808c5a2dbbffdf21eefd25288743a036f5f6fa

SHA512
5bcc9d6bfdcf2adb27fb0676531a28d962e81f10502df0eaa88a8c456fc655079a7f174d2ba51d78c81f5b4d3b0cc971b0d17c753d5d3c851413773a3130c572

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
079d23591c3d99d72adb95bf30b22cc1

SHA1
3bbd33ba8cb0ca691307cd1a8a7c9a29cdd32648

SHA256
297daf2e71f4a14733643f62cf02374cba664dd1f4b4317d684c99af86d2d8d5

SHA512
c2142cc52d672c2627e0de466d0b9c5a9b7f4a66cc8c56ff3d7f518941b7fef5e1f8dbc9a8e50b5217b829d31d3b7220759dc1f1ca29afa860dcacbce6e31b6f

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
15f57a53abb91462038dc3787aa9bdc6

SHA1
f1d2e062aff0cf162126f8a59f0a0c2891a83747

SHA256
5b8a023648996c6bbc5823b7d605fad57b66f1408c9fca2039a62b437f26d002

SHA512
b78e7aca623ab7ec423592eece21bd2f9d38bd9abfe2288f62913d9eba4722e2965fb5c8f9c47cae980e3db22edbef7333236d74d4ac7ae592a04ac48965db32

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
cc21afdc78543d100708cd5214e636ef

SHA1
53ff0cfa97f4441e6ba50a69ef45804e7f0da2b4

SHA256
8fb0858ff503c6d4f9158fc64b1d583d610924e2a787132923fbd6d1b6e7d727

SHA512
b49f9be3de2920e55f2375da09a99c8fb80a6ac26857fa0d8aa724471512dbd6a41edcebf3de1948223c578b497fef7b02bf4f225c1dc0bbc37caf6fab07f48d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0740ebe8a0ad7f0c39ac7522aa14d783

SHA1
6b789dfa25f365face52df16b23c07d9c6c83482

SHA256
6d8e8a4433e7c2a5898f4ee1b2059bf7a8e7405b08e62c566c2edc2a619af8e0

SHA512
d650073a7aed98067efb206194e07d06d4515f7a6119ffece4e20811a17d5364b1f22486be6d362bd8179b5a381cc34b41e1e66465290fcb3f9ff2f5bdd9468f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d935d83688d0646a8b30c6c98a2925ad

SHA1
71fd9f21fea99d627b24b0cfecae742a487c64c9

SHA256
487e26189e0ca7ebfbd6dce7920ced9f31b4d2631c2d04d07780e002538a9f71

SHA512
5d9f73f1c2287e821169c8a4f29ff7de27c2da21453d41957b55b9357bbab5153511ff0d5b2df683fc90f64f6331433845938929c3abefd6f8301e781afb3c9d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
44e06c7f620a7ed84cbb9d364367b64d

SHA1
2eeab4cc692006af526294a37523527f5a99ba21

SHA256
5cbff8aefe449089dc05bf56e213f7360e36e93136f469925065af46fa791fd7

SHA512
90a058a22262448706b093826456fe22ad88cb212c6e5f46b32c824e9ee5301278860c49a24c7e8f974ffedea753a6f41eb59bf2fe20f8976ac91775dcd79bea

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
33d1210205aaa136ed76df27fc48495a

SHA1
63411deab66a885c40180e2f8b7e7098850dd9ba

SHA256
9234c05cf03cf99a0c38ebfd20c88c345f0a0b3df266cc4bafb428da12c780c8

SHA512
85f561c8105338304f4d008ca858ef8020238b5e5d288d199c3118c2a61f1e0eb33ae85a13625c7ad82afef776565c41c5fd9f3c17211b99446c6eff62b08389

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
3c2a95dcb78034faec52d9559bc712aa

SHA1
c9db2d2ee5d4101a328770cb7e4149e0a2207a42

SHA256
94e0862449791726ab8cd225fcf4e78b8bd45eded45fcb3a8d643b21a908e39f

SHA512
9bc17fee81bd470fcffbb1d8b1993e493c22c1578b207563f5181fb1bb4ad96c4f9fc4d531b7246d484bb90fb139d847f41a1af70df5439e0c7b2e9573aa06f3

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
74d9142bbc323089f8869b7cf6b1a3a2

SHA1
c92c9ccf5db940b719b6a28b92c274c83cce7470

SHA256
3ad24f2ddfeb27ae7b46e48087ff7a73fc438453e154ac46516f64b0139aabbb

SHA512
ff0ffe0a84ff1369b5086d5531cc70ead92a1d84d8a48c7b4c80367722e9fcc62eefbf00460886c0ea3a60c922b13838ad3daca39b668307ac01bdaf87b838da

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
a93ca30ca5ac89470f91f035382e2301

SHA1
5fdc6fcf94855790f06179fae4d7057f39560014

SHA256
e6adbed6814b13eac3c505c0ec6aca21bc51a3a517f5e39436dab2bd42ede3c7

SHA512
c37fced0e086d5267e7375fa0596f485b682ca4aad40870419102aba64c1b82920aa8569255c19b7fbcf3877433dfe4b3d8734bb3135a2021b6241bbb28514be

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ea2bb37759eaa6475ce6cf9c0e1a04ef

SHA1
d30324e04c892b5347e4930226f2a3b0d49aabd4

SHA256
0d15fa0a20226885abcb7d5a469253deb2069d380a6a4ea351c529ce276d7b3a

SHA512
3ab61dbed4d9d04fd24dc26622a1e2ddf7a33e524008879a060e58163effc09f5d8727dd9cd7a2b81b808a91a59578db3ccbd451c093bb69fbe5e94ea45e1eec

Download Submit
/data/data/com.systemservice/files/PersistedInstallation3977242151885702493tmp

Filesize
553B

MD5
a60f770c3c3dd810b934a48e13ec7c7d

SHA1
2ee44df49ca53e5adfda9f04e158b28e03562e69

SHA256
a4db098f2e401fd073a752f519b5252160566a88cdc97692d94e8a5d03d0471d

SHA512
64db607e56a26476e6ec0dc97f0ccdb036a1c6063f407932d43b942ffae65d8fa0b490f926387bd02e7053b084a0f2a6345be6c36bd7309c34bf6d6d98c51dde

Download Submit
/data/data/com.systemservice/files/PersistedInstallation4271050224791165562tmp

Filesize
90B

MD5
0db92caab2e081b23477ff27808b2c9d

SHA1
878b64cd8b5bfb3b11dbe71b5e4a2d38819a9dd1

SHA256
8b8c3000c082b62cad8784b4a37cbd377f0c22e31eb3afc60104d779d991f1b7

SHA512
dc685ffdf4352efc59262291a8997fbae57a117d2e49ba8999444549dcbc1a5e428c271f4ca762717583305186f408fe35d50b596d009c6e271295217c2d0968

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
60971d47cd13cdafee3dbe2b806d2655

SHA1
2859caa7b4fd26b01734e7caa1a7d29ada636df7

SHA256
821cec9a00865e9dc75b6bef9231b6cc34c734ef52b08dd362a3ea8d3cef3fbe

SHA512
81f9fe3f4bc4c1002b3ace45b5e2c5574886f0f9e085bab03da8797ac414bf33f60708b2fd20ddeb27240e32f7f99649bdb9d4d1d3e9365da6bd822e18eb7530

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads