Overview

overview

8

Static

static

6

Union_Cred...1].apk

android-10-x64

8

Union_Cred...1].apk

android-11-x64

8

Analysis

  • max time kernel
    7s
  • max time network
    145s
  • platform
    android_x64
  • resource
    android-x64-20240624-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
  • submitted
    20/11/2024, 05:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Union_Credit_Card[1].apk

  • Size

    4.5MB

  • MD5

    ad109964f6d68bfecce5db1c6c6a21fc

  • SHA1

    87f39addd11c6f8f3b934bcedcf325081f7dfb95

  • SHA256

    ff0312c258ad74316d1811703cdfded4ae4dfbf841aacf1150558c71e5b0613b

  • SHA512

    9999db0e1810ffa2af27e7018401ba3ceb8c669e86d443c579f2be30905594f0e9f55a7c83d4c3e243cf381811c3b41b7b10d60831ab11fd8235ce725f5fae7d

  • SSDEEP

    98304:BzDgDFqdaWlMUxz8fwuGJLjdIwLetTd8h0qbXREjjqfWmGZTWqmPNfre9v:tXaQMS8fwXJjdxe3wfm/qfWmGpWlC

Score
8/10
discoveryevasionpersistence

Malware Config

Signatures

  • Checks if the Android device is rooted. 1 TTPs 2 IoCs
    evasion
  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery
  • Acquires the wake lock 1 IoCs
  • Queries information about active data network 1 TTPs 1 IoCs
    discovery
  • Checks the presence of a debugger
    evasion
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Checks memory information 2 TTPs 1 IoCs

Processes

  • com.isg.mobile.creditcard.andhra
    1⤵
    • Checks if the Android device is rooted.
    • Queries information about running processes on the device
    • Acquires the wake lock
    • Queries information about active data network
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks memory information
    PID:5053

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.isg.mobile.creditcard.andhra/databases/com.google.android.datatransport.events
    Filesize

    40KB

    MD5

    15d5b92dcbda7ef7f9ca327a903e46e4

    SHA1

    ca153b66028a58d90346ff8abadbdf01b95c37b1

    SHA256

    e802fdc1ccd833b91d80bb1d8f54cab2b585393e6a07622c4d9feaab07633370

    SHA512

    2352f167ee5aa37cb3438a0a7df8f632771a1d019c5cd120fe62313fb73aed6d0e09186a9bf306a564371b846a8da020f6acd7aede0cc47ca50701611fa84aca

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/com.google.android.datatransport.events-journal
    Filesize

    512B

    MD5

    b77678f13784cfbae8e4768624e384db

    SHA1

    44695d705bd5c8364617f693f6788823258cc937

    SHA256

    3e4473cd3994908ae358be83fd18a5e8286fff73e792b39b50547161c9201c0c

    SHA512

    e830e9f71b9d45cf18aa8276b92a9c060ba94edb2032f0d16cb034fe5d922862d5e79500af7c933751be015acc709eb4b8aa4b6c43a0e145e5b3ec199772836f

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/com.google.android.datatransport.events-journal
    Filesize

    8KB

    MD5

    8ec86eae899692326655366b70c58ef8

    SHA1

    b1e7a2e127a159f91c0a38d2b6d9dd2755e5f101

    SHA256

    24e964e709a52cd2d9a49d38528657a80c2038c18b898145d96f5a5bcb8dbb0f

    SHA512

    1210028480670437c69248c12da333bc83bc06c908d512734d0b5598a8d4ba27095a9ffa53bce72745a5e36332002153dfd5a626e20564cc53eb306fab8bc628

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/com.google.android.datatransport.events-journal
    Filesize

    8KB

    MD5

    18d4b72098a274e7c56458da859cb5ee

    SHA1

    e79ba4163e0f4edfc028d12d7e8c451e4a68ee06

    SHA256

    1ba77ef795fdde6d2b60eae1924557e2b6cb168a0efcb775af6aeafad1365e90

    SHA512

    f28fd19b1e308ed87b7761f81e1c38e5dc8737f2aa91062cbcbd421115aa3e05487a391a6f5ab53c8209461f5ab4a514038e0d944850bc448dea4d6cc2cb84a9

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/db_default_job_manager
    Filesize

    28KB

    MD5

    eda4e5f53129dca7344c7e3f3e6d9513

    SHA1

    ed01e856ac998b6c3de46ac8a2a155f09d6db185

    SHA256

    7c4bbb192102dd3dfc3d30cd5542d9a115cbc6c52369f1630eeb9e5ea81c8e5b

    SHA512

    cf733d69c95b4db67de951dbd2b4f3c9b31008dd0b7f8a1d42bb14820def6b34a5bfa178d1e8cee0dafdf64531751674e7f6398743e915ef469bb97662c063a1

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/db_default_job_manager-journal
    Filesize

    512B

    MD5

    c04e6baefd4b28ac4ea07c4683ea79e6

    SHA1

    06105d766c1b762d904bf131f891574b1b2188a5

    SHA256

    4052251eeed7404187eb503293a34d28056bb9ff787cdc1ec2f51c50c80b1a9c

    SHA512

    cb75461da6fb84305d055671f215150e8807f6d88fb1df0c5dc0447a61a374b50c378c694d275bb7d2ae9c59b07c78792d99533d70e4b26009bf93f8ca76811d

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/db_default_job_manager-journal
    Filesize

    8KB

    MD5

    517fb5570b6b60faf26a558a83302ab3

    SHA1

    34707d2a70bef3d8acdab142ca21669432f1a413

    SHA256

    312508c361cb27029b9b0244e68e3458a645ebeccf8951e96e1ec702f9c145c8

    SHA512

    4ddb85d974552743664c50f46f696802f7300433dcafc001bcf9173ebab96b7ea27469f26034280137940083d47ea7dae8ae9b1cae9457659b79c5e66a86f22a

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/db_default_job_manager-journal
    Filesize

    8KB

    MD5

    98ca477075896ffd42bda32215760510

    SHA1

    3f9148da302e7dbbf8d1e9f433de7bed7c8aa6ff

    SHA256

    77d85e774132ff5a0d5ffb919f15deab233ddeed710122b2b47ee4da7ea6c382

    SHA512

    e84243297ebdb9cf3275c3e2b87409d92a84ecb92dfef04be6aea92d3bdc68a9906c9c13ecb2ff119249f50fa42ee93d0c8e07c2b3679493b1fdee2790a3b7f5

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    eb52a90bb70b76e946b62f50b6f7fb85

    SHA1

    42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

    SHA256

    48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

    SHA512

    b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    97024f403dcaee0709d623cdec24e8d0

    SHA1

    e139a8926600208ba2ed167f8e67cda9c825e437

    SHA256

    fe189db856d8eee8264051f6baa757ffc0c599479471ce7685fa6ed0d1ab6ccb

    SHA512

    75e7e97719f74feba977951fc18a9e6c7f8266fa1e2b09d119422b15e5ce225f8b8df3079c6cdc0ceff13a1140c3b8d185ae5262f45841ae9ad9a84cfcc1527b

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/google_app_measurement_local.db
    Filesize

    16KB

    MD5

    041abb54739877d3f8730e9b7e4d82c2

    SHA1

    53f4076dbde92105197f261d4da161982ecb149e

    SHA256

    b652c77d301385c74b84ee516f7b8068cfb6803779ad2ac754fab336f112ce0f

    SHA512

    f894dd71701ce14201654ae622415cc5e6a464bbea710608d29fdbb88542e244ea37a151936476bb491efb1f8416169fb347004c4af3f88081f57dddb911a141

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/google_app_measurement_local.db-journal
    Filesize

    512B

    MD5

    5c5fced7406f886b5272c982837e4364

    SHA1

    4813dc32e203c4de6b58c368301dd75115148510

    SHA256

    4187a4d86790bfd6b539ab625fa64396c1aa1bdde0305268488e801b50faeff9

    SHA512

    268778f7c4e54529242f12378d277c55f228568b94bf21692ff3f5fe9ef8034f41496fd347d4a047285c1ea213a2f8ca2dbcf2664f41ae1026db774b47cb00da

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    a41a706de4be67f82d5b940550c35568

    SHA1

    94c9c0375f87e780177ac4fd4e9ba9d5fae3d0ed

    SHA256

    0a14b4ca07e52f20e237b735d28ce8b37f6897c81331dcf4a12fe45d3e1c2edb

    SHA512

    e181d48721c46c34192af78c707c78c1434c923c6bd98871f1b50ceab834b0b8415ae41fc8eb7d2ff9197c25009bd5593c2bc3fb7e5aab8b1f7445abf9738c8f

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/google_app_measurement_local.db-journal
    Filesize

    4KB

    MD5

    c6a076ff4fdc6b7123ca753242608410

    SHA1

    8053d2fbe0ca28ef8ae4d6625a9751f92854d7ce

    SHA256

    b944b8d248c9eb4497f98b0a5d9692d98586e3b1e671950b300a0aec95f0bcea

    SHA512

    891f98d8e926f6d4ad5d9310770ef1d0ee8ea47e3dc9a913b3ebca5b68afd770a7a9c72ad60281053b4a567a9a604dc7dc739bedea4c912a3dac92c06134b0a3

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    fc6f50643be7ccc354ceb07c7198a380

    SHA1

    feef58904a730619f7c00ca2468d3a00b62321e4

    SHA256

    dfd93c8bd68bc64d76d091d46b6f6ab00ed694f2b56c2e0a7cc32bcbceb7d3b4

    SHA512

    b6f5df5bd0752fd0976a366852047ed14d0f6d252adffa99a91fe771262e4d0d282ac59efb92e1f9242fcea767f9ec2ae935b9420f29136d470ec0dce02106d3

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    618303abd062c626acd038166ad2d027

    SHA1

    2dfd99e8d9910e1cd551fbf5ece39704e8eb5bc6

    SHA256

    d11ba7d3d9236c0774bdc7248ed51ca2cb2359ab27a189af9bb7843304ed1c4f

    SHA512

    62a75d25197481ec6c6c7ac60f6ce2aa9fc637c4dca3011d8a0fe7e7014d3f4b042e2d529650c1b7bad4ea917d49189d070535fae97f68a6e941653947306a9f

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/databases/google_app_measurement_local.db-journal
    Filesize

    8KB

    MD5

    c717e40107765bf892cd1817d7d3b7e8

    SHA1

    d58d9ea2f5a7b7d0f58dfc96c18f6218e8d41ff8

    SHA256

    4ab2cdfb0eb274d5a891dbbcd27a0afd7a6912d498a2eb826dbc5a3488d5e829

    SHA512

    67fdeb6be100983a879f0ccf593b239d1a864e04c3493c5656a64ee07ace61906d6039a5e61951ded96e9fb541845330c5cfbc9d7b36fec5a03ddcecbdb9905f

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/files/.com.google.firebase.crashlytics/report-persistence/priority-reports/673D774A017F000113BD7EE4DA839099
    Filesize

    35KB

    MD5

    ebff9b0656cf9a790105d66a53748c78

    SHA1

    e687d6cbee4ea085a3275ff3a1ee1c5425da953f

    SHA256

    d1ec14205377f62bceadb48abf805fde28678a4b592558ed6644534ad99c0276

    SHA512

    4fe19437ba5b922d20ed0ef876d4f2166511561f790cebd09a44aa243ec9ca51eeb41cfb65736acfee395d8c15050b7671ec25c2dcfc343406bb827df728cf02

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/files/.com.google.firebase.crashlytics/report-persistence/sessions/673D774A017F000113BD7EE4DA839099/event0000000000_
    Filesize

    34KB

    MD5

    eaee736b4a89f3418820304553750413

    SHA1

    712f025689f861e6884c95fbd412b88ef8252152

    SHA256

    a34ac920cdba2acc07b3c2253b5423663187b703dc9bc750420ebaf233965d50

    SHA512

    23b75b0a58c3c65bb3114165454ced8a99cd822cb8cdb115b5cc54e01420837cfc9a5903fb33be11f898dcdd9e8cbd6a29806ed80a3e409d674f3f2b27ad4220

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/files/.com.google.firebase.crashlytics/report-persistence/sessions/673D774A017F000113BD7EE4DA839099/report
    Filesize

    750B

    MD5

    b8a827c3b5038e4fd8f02b305f7273e3

    SHA1

    f009479857a33834896c8aa2fe203eb0b74064f8

    SHA256

    23ff86d65aab8a2b6df766f765ce383af402e8b8a6b39d1bccc86af18514a775

    SHA512

    c853d71b21e3d45c456c351009cbd7498cf1a9e3dc98d9389b72fc7a90051cd320029fe084dc31789eb4dd618a1f002243e7d343145d424a3f70f5f7e9617480

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/files/.com.google.firebase.crashlytics/report-persistence/sessions/673D774B036B000213BD7EE4DA839099/report
    Filesize

    750B

    MD5

    112761b3e4e6ecbc9f876242ecbe6f1b

    SHA1

    eff4b5feca76ebbe47f5b1d440a1fa8dfa264292

    SHA256

    2d691a52c79e9dcbe068a51b64c227cf319106e5b1381847a33c7f777ec9296f

    SHA512

    f5452c998d67dedaa7b01f977d0e7420ee43f10816285ebf27b5d97a93d00b1db51d363c2cbef203ee973748b20533f1c61fc517147e50ca9d0d88bd5c05e551

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/files/PersistedInstallation130028470171638113tmp
    Filesize

    90B

    MD5

    5c47ba65e11755a893de14c67f4be484

    SHA1

    218292ef55bca0fe6fd91f6ae78d86a88b0a3ec4

    SHA256

    71ff94ee68c7aadcdc618bd2ed62ccc151cd3ad66abfa1abcf478d73ee28dddc

    SHA512

    3ccb453664d28d45221e8f472f1d6371b891e9100a69c309ee775583a1f8b293dbb0129f1dd0827e47af1305c5ac479b1c42f60861f1687a5132721ab69f9272

    Download Submit

  • /data/data/com.isg.mobile.creditcard.andhra/files/PersistedInstallation2836691480054179550tmp
    Filesize

    561B

    MD5

    2927aa60ea15acdee80b0a4acddde683

    SHA1

    001667e1eea3d3aa46009ec92e70027b368ec45d

    SHA256

    17b93b2ca402cffa85ef03dfa5d8f6e1fff4210917533d9625439dfbab16c645

    SHA512

    d1056c195ec75384fc430fb206a2b0413be29fe730fb080f198f547269f84f2151212526172307858fbdbf03213f4cd04b1b3c2be22391ab7302c6264aa36425

    Download Submit