c6d701287fa8b065989ef6f157b47249866d56ad857f296ccfa2c3745a3fe4a8

Analysis

max time kernel
73s
max time network
79s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
27/11/2024, 19:43

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c6d701287fa8b065989ef6f157b47249866d56ad857f296ccfa2c3745a3fe4a8.apk
Size

5.4MB
MD5

f9b7d4639b59abb30e0f3489e8d27906
SHA1

15851f7e107976e9ad16d310e19446579b902188
SHA256

c6d701287fa8b065989ef6f157b47249866d56ad857f296ccfa2c3745a3fe4a8
SHA512

ce8d453d0a7680bf287b338e22be6e4d7641838a914fba9dde1a08ff165d3a2722cda3eb24016fbfc206319f07f99f91878490e065ab2ec5e562c65e64e56d87
SSDEEP

98304:+/CdIM97uW4yje5CU6aim/q8HJSZywIcIu/uCcYZN9rBopDkg26i5EFlQMsPfr2r:u29qW4rN6aimywQywIjuoYZN9rBiDkgx

Score

7^/10

collection credential_access impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.example.shineinterview

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.example.shineinterview

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.example.shineinterview

com.example.shineinterview
1⤵
- Obtains sensitive information copied to the device clipboard
- Checks CPU information
- Checks memory information
PID:4484

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.example.shineinterview/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
d7d0d05cc06d9d95530198ac6c19ca99

SHA1
0886e106bed98aba0cbbf350fd2226af6d29630a

SHA256
f26808283e7561c8e5eea4d047da7c49fe56837300425ad99ce674d6660d0f1c

SHA512
6f0aad40c4edc6e1d1191a1f683c7fb92d8dddc0e6ef39df1f895e63751611699f41c66d993fe3deb7a67d90325714ab04bc0645d3baf7069ac12eb456a95e47

Download Submit
/data/misc/profiles/cur/0/com.example.shineinterview/primary.prof

Filesize
1KB

MD5
7c1eb4af3f79e9ffeb273fcb0ed8206f

SHA1
c7227d3c1602954cf9a0b322c67dae9e2c3d86bd

SHA256
37820ff872b0ac9a9a6d44cf6f8bb6ccef7345791ed5ad1e02ec45db1f8b4e9d

SHA512
943a5e08723e2c95723f4fde17c67cb1be21ea03e401cadb8576f451646071407e549b19ac607c8c809ab171db1c139a5f77f7c3494fb2917c26120eeb93543c

Download Submit
/data/misc/profiles/cur/0/com.example.shineinterview/primary.prof

Filesize
3KB

MD5
c70e98448713900bb76eced944bfe1f8

SHA1
64a2fe92e3a2cef8371f24a05cd2003706001849

SHA256
fa9d456ae8d13b7f43e55d3bf8977bc72b1883355981465b9adcdb02df3cdc1d

SHA512
41d731a997cd5939111e0719bdf8b51747c609fe804668f7d063ba5239132d7a3d6fcadff1ae9a9ea606a85af8ddd8d5536b6ab960865f3904c0f73909428689

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads