92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
157s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
27/11/2024, 02:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5051

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
0a33b8af0d7e9d406b56f9e3cd4e495a

SHA1
3c72f1b3c066e455124d14d4f9f722fabe9df1a2

SHA256
8bb784108884de25eec01d99097067ef004a10d3e0f7e119b54c70e55926d1b3

SHA512
0087a23e5a70839fdd328cc498808268a32bd2c63b581a71b9b5ff93e47a84c41f30624d2814cf33fe242a41b32aefd4dc4768d02047800a515302571eafaf20

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
2cd331a8c630e07732bc7b779f0e635a

SHA1
ec79ecdbd9c05f9501fbde4e42413114307c49db

SHA256
5602b57614d344e1a173a334bf2597f8aaa0cded6d63424833315c3bf07d4ad1

SHA512
14a682be1de433fe89842b6826f9e31eaa6c1a9edfb1ced242a247f41626a9f5be5a910bb445a72a3b925c8b3d49904a6ab4a87e5380911e4a8617b466472534

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
31cb09983ead3e6c1499924f624c3938

SHA1
f7a2fbb90daf7c79298ef2f36d48404f55608946

SHA256
fb3ff06af15e6ba06a206f2eda6c29411ebc45a3d55c822c5e257b530286b506

SHA512
b879397504dcc890b1e107fa014720d3895861a07eb0a59bf9dcdd28b5f01c9586314a82b1f5290c1f4d9aad4b546daccd50baaa277baa7a3ba1efeeec4481b1

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
4d802eec422b3a12b93a1c16c0ab6b82

SHA1
e96f3539c8dc7c5f68d0a14369f8a6310f7597db

SHA256
0c7c26b150227f6117d82fba9eb765a31ee114d33591f723c060d60044971bb9

SHA512
2bb819a2f3d225bd7f2bec831468d876fa43bf6538fd83135cf83fcec1827665491c4cb9459710b7547773a066a7953a6ba67c7018c7e3460865c2a0d925ac8b

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ce60c281d8c587edfb2ad85224428659

SHA1
b0fdba99309b6f80818e95264223f62ba33fdcaf

SHA256
7034c7d4807e6e0e4a4ff024eded911ebbf92f8307823cd6e63efb67bda63859

SHA512
7dfd6118f2cb556526541350a71ab2cc38004698eeb7b06a7e61ae481e19cda549911345d5c44f088752d78c475e2b79cd85136f6cc68cc44c68f2d841de1024

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
33a2d8b0743726992ccb37270a9ab7bc

SHA1
b7c1df9a38764949e01201a70b6feebf041ed22b

SHA256
1cec9993f1d3e6eff58fb3360cc6e3c439a5f56fb10a9bb458951b02c4b4d2e4

SHA512
0ce25acce5c1034052c82f487e514a48cbe1e236e1243c144e0a5aabd31a5e3f5bd77d23c55e69d8aa72286047e4ebb97b9050f88134d5b417dc357bef8d1a1f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d4543f328eab6262c686fc90167917e1

SHA1
532c2bd92ac5bf6d015b7604a6e690db22e5393a

SHA256
4165958591607a349b4982f4c5c1f674e895dbb0122450af81d2d98e38a351c7

SHA512
bd72d9699f7ed34f781039d2bf6c28ab0e5614470a48016a7fc34966af9099e40766bbc428b206a1945062db782c05e7694c52743eb705e3028be4b74b8de10c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8777c13dbafe74332c9a3a9ec9ca12a0

SHA1
b11e0080469da735d9c57503308aca2176bad32b

SHA256
ce055c43cebb82d8c19c2fdb34e8f8c25fe3d1eeece12f8f4dad6d76a8c6c767

SHA512
b6d66942ecab26650809d71c7180e4dd40c27d432a85d29edb737819954395deb3e06293ef55ff879995828cc4ed2256147806ce48c2698ca0d97a70377e4ebf

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
9bedcf6996f96a5d88c922a461ef7302

SHA1
0a0c83a9ab962986fcf2d366f625378ebe1bb844

SHA256
92fe19097e178dd0696e0d84ef1026783ab23ff3009a699dd9b143c2fb1228c6

SHA512
53b14d94b04762965b5bd15c00fcc50f780b4d04b064df0b24c0472c13ee51cf08c16c57e6df81a746e7838721dbb3d022bba64196813ec63df46b3fc67b774d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ed40afee5501d89ca827e7b1fce56aab

SHA1
ea6d04aa67e7de28eecf351b2c6169c91324fd8e

SHA256
088c6f81b8c6186f16b4c393affd16dcd3222dd5954ed4dc7910130b9e644fb4

SHA512
515282de206b0f3ae0719de02334010d3b565f366e1755e1cefba825ef546a1d304c39bf025d921154cd36e4557786f2d19a83c7d3acedddf5c98e88e3d586bf

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
eddb8b90c5d825d7c1c82731a19e6096

SHA1
a5ed8c3864c3a893f8c8b82134fcf1bd41c74a01

SHA256
53c5749d1752c43d625369338a391a9b454cb7ec0c6169b7ab104478c9627384

SHA512
54f914cdf7c4a7cce4691149aaed0c151aad382c7581605d65df2ce9bb4399afe8265b3c8144ef967eb0988479f8161d97040a088775898b2d90592e1359cbc7

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
95b19ea672c0c1d28b2e673b337ecbbd

SHA1
1bd41ab1628fc0885215c56b90ba61cb5b0116ce

SHA256
1c151bf78b44501ba7cb17d6a0862f70d206ca481c94922b488f166909887c64

SHA512
7f77a3525f6ec0abf0eb11622e3c05fcbed24fa092354ad186db0c3cac0db54747ab0a7845e9a6ecf9d2e4dd42338bc131f452f88bfb4378ab839a6b189f4bef

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
abbf7e340ab4e24e2a9bd8898805ac6f

SHA1
8c0afa3f00f761016892ab3844fa71deb1a8536e

SHA256
ee03a31c92c1e30594e7e414c1fa170c873f29347f1a4292e9d02bc88b758334

SHA512
4bcd371216278aa3eabe0731883dc94d6c99e7c74e35115fdd2f634c68a1447576b8fa63c1162550e2d008d5e561c4b5a4ace208417a38b56ff43593f7afb737

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7540b86b4be6dae45cc253286c81e9dc

SHA1
fe666af14d107a119eb2363f83c9a6b2b7380943

SHA256
50dffff7c9d6b8649f4476b007b55b22836430b0ebe40a71ab609e1cf4b5e2c4

SHA512
25af9c766d1c9505d7425bedac5c99af4c1072c1da362a487d911894675f1445a3f0e8bc014eabe9a2b22d95faad2afbb02d6b6e883613173b63d6c597ca85b6

Download Submit
/data/data/com.systemservice/files/PersistedInstallation1986516958074822505tmp

Filesize
556B

MD5
b05b52006d12554ee9a223a2d1806724

SHA1
cb2c6a816d22c90d73a16c4546f2163338ceff30

SHA256
45b6cc612edf36458e2eb153cdf3e81b9e837fe3bbcbd4c83eb805ba0f2a443a

SHA512
5b59d1414dcf6f97ab0d13632304d980961e4b869f2a2e7a8d1bccb0e8b99ed68dd82e40ebc1e3c51f7e0557ae217c3cd3d0d953cfacd1ea8feaeaf88aab4574

Download Submit
/data/data/com.systemservice/files/PersistedInstallation5481327024473693868tmp

Filesize
90B

MD5
a13dd74adda92d359a03ee4fdb693d6f

SHA1
ade21c7ab1d48bc8f6944c99dedbb6ffdb63aea5

SHA256
f5624e2b12b5bfb569ff9c54f46795c9a4eb5545e701b194bf3514cb0f67fcb8

SHA512
467b412b0585dedab69f343a46e1f20d0b255cae50c5606379c3693770e7b16534ab574a85c82e79ce5913f8748da41b4cc97429d830d7219379b7e00caee784

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
255bc67579b850686b5e53df326f5631

SHA1
8a7ecf066178590e370098afe863699e3e346d77

SHA256
f33dff18bf111086c3686670c3812d492c599428d4fc05560fff45b5d2e4defe

SHA512
255ba641686c6dc6f2b14f62b9997cd3e2dc5e83bdcc38da26b208f67450900664b133f7eee1f28973cb91d59f454f499c5ccaa0414886f52460e3dbd63f0b84

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads