f62f6bdb92438cc3d72d3c07c32f7747c2a50d8589624f04e05c0b1284863261

Analysis

max time kernel
144s
max time network
156s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
23-11-2024 03:14

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f62f6bdb92438cc3d72d3c07c32f7747c2a50d8589624f04e05c0b1284863261.apk
Size

530KB
MD5

f72da20bfba2cf9c70ff21d5ddeee860
SHA1

c097195ba75b9810170cf8f34bc76c43f4024303
SHA256

f62f6bdb92438cc3d72d3c07c32f7747c2a50d8589624f04e05c0b1284863261
SHA512

d55679864a09849ca7c4a139f0c6e1636be9666eb76503ab063eb826102808a8516ee62343e5f6c474e446edc1f378d34d2790e88de80084de919129a38ad66a
SSDEEP

12288:+r2a88Y6FtW9OW50VqwjY0HCOEGVlxtRtTl1iZyVsM/iqf:o2GJtWJ0VJjxDE4iy

Score

6^/10

discovery persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.intense.sun

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.intense.sun
Queries information about active data network 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.intense.sun

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.intense.sun
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

Broadcast Receivers
T1624.001

Processes:

com.intense.sun

description ioc process

Framework service call android.app.IActivityManager.registerReceiver com.intense.sun

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.intense.sun

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.intense.sun

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.intense.sun

com.intense.sun
1⤵
- Acquires the wake lock
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4924

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.intense.sun/databases/com.google.android.datatransport.events

Filesize
32KB

MD5
ad7bbdcce258ba21d0a07659a3849e3f

SHA1
887e17f38cf736cc82125092f6cadd5753184286

SHA256
a6417906596802ee2a80cd22ef848d832848a6f36f4e45d320e9b98633a5c456

SHA512
4519d5aec86a163c9c2c97d1cf9862cc9b421749c0d78c0f4ceee31c9fe07ac557e736d5b3f72942e2d5d44b578fc8a6789f2e7a3ec98ec2199fdc50dd3ac45d

Download Submit
/data/data/com.intense.sun/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
8b7206355c35dce423cfe106cde913c2

SHA1
571ac5601fc10418ab783a0e18b17a73df680727

SHA256
e546b9b6bb8170cf5366834f7b8855222b45414b681cefc52ba51829beb12969

SHA512
90fb7d88a1de1d304b920de5fe606158855f31cfb5ced0d68491d97a81058cbf90e040b3ae0663e244abefd6554c45d77db277d3a77c1f601e47d61f6919ebbd

Download Submit
/data/data/com.intense.sun/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
359ebeb1223f69d0702a4e073fc2649f

SHA1
ab036a84103c578f1b888b9700d96ed6330e8aa3

SHA256
a73ae1c45048fa7795ce1060fffbc83bb1c588e6cf88221720fa0b1fce0a19f2

SHA512
e77327c4b319220f7bb89637b39f770694f266f0f069c4fc5cf527edeceabe2c0a7445b88a809caa5ed5e070f1465e39daef90a2bd2e325ae95de4367f5afd48

Download Submit
/data/data/com.intense.sun/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
da11ed498983d61aab92f43548fb3165

SHA1
09e684104a10ae768e839e92f70608dd1554f32c

SHA256
dd0341d279e84022594e23996f26f3cb2ce9b264ddbd7a165e59dcebc9dbeb9b

SHA512
91c02c1c9915061e22c9ee1b04b8a0d6fe1ded94355439d29e1657609f9561bcd7965bb48f2bd73f1ace0f9fa8530fa8ba9deeeece0d92d81dc561e67663e69f

Download Submit
/data/data/com.intense.sun/files/9068eaac-076c-4c81-a42c-5a80f165da4f.dat

Filesize
520B

MD5
3d92e1aeb92e0f0a6e003daf2b447880

SHA1
396c78489fe76c0b841bd69a7a71303b60a7e7d3

SHA256
c62ca84c3a19d636c8d2b61d8667ce4cda01865ee240e9237aba5c91dcd72eb1

SHA512
9fbc91dea04ac7148b50388d6424a3c08e9c57083fe690b7030f3e1de5ce5a39d0a7f179fe4c9fdec068bb553d8855d9426f0b84e301890462dc771f1e3e7c6b

Download Submit
/data/data/com.intense.sun/files/PersistedInstallation6059770173784692312tmp

Filesize
566B

MD5
727c10e4465bd6d893cefb290b15d4a9

SHA1
01a19d51478479f10d098664378da2ff19a2d61f

SHA256
74b8e604950b9fedaba4983ec5d057745d08a283b22d0addd4b96daa3f4db86b

SHA512
41687d6568eaef527d5962c297fce7b79b7bc6982ccc5a9e5ce66cd1492c2b3c51cef0586ac4880c6c55f0f307635288c79ea09a88306339f109400399322059

Download Submit
/data/data/com.intense.sun/files/PersistedInstallation7717484289005083693tmp

Filesize
90B

MD5
0949570e4d4e17129e2b7972ad5c08b5

SHA1
95d460ee35b9e231f06a9d04be76341e18a3ef5a

SHA256
1cf5e8bc341aa13c0de7c928a1aac29bdac69bce4d1e9d5ba61b61f1faa75048

SHA512
038e71f24500db72c19bc2ee9ec2b2076d89a881984a76e0f3a559e1fbca7f19d78ec2a0bc03370176721c11e7a58a97fb23e66f610ccd5f6dd614e4e9edb2a3

Download Submit