7f15de43d3d5f54c59efde740fe02b72bc7e9cb720010520cbac9b5e99484f46

Analysis

max time kernel
2s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
28-11-2024 22:27

Target

9a18e212ffdd94dd262de2eeab7758657dee156ee2ddebeec6b97df7227ab8be.apk
Size

3.9MB
MD5

527ed1fd528f1fc0411ded6a0fe7aae7
SHA1

1ba7df77264a60ce99c4bff19f87f0d3836e8331
SHA256

9a18e212ffdd94dd262de2eeab7758657dee156ee2ddebeec6b97df7227ab8be
SHA512

e401279acbfadfeffb72bad1b7fd794f765c4f19d30bc581a1da74bcdb74274ddb5ff48c74d3c49486e7562da67614d188e10cf2209472f025242ebe5a3b0f18
SSDEEP

98304:zGZTSHh5MkkmXanyXzECw9F+TINptfDx9DhlTUG:zGZTSHMaKnyQCwWMX1Dx9VX

Score

6^/10

discovery

Acquires the wake lock 1 IoCs

Processes:

org.bax.project

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	org.bax.project

Queries information about active data network 1 TTPs 1 IoCs

System Network Connections Discovery

Processes:

org.bax.project

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	org.bax.project

org.bax.project
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4256

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

/data/data/org.bax.project/files/PersistedInstallation1541473130147573880tmp

Filesize
90B

MD5
301ca51bf99edca9b96c3c738f4390ef

SHA1
7931b154082266dcb0485ef2364e26a9a71af936

SHA256
0105ad0288213a3ca2816b0276b71dca4858c6e1bd50ec9b3984fa658e8e32df

SHA512
73b34b4743dfd11303b4df8d3c4ee0fb068eaccebc99d15d46011f78a71b134e04456b48ff5f9fe729eb0e10e55de65372081b9e3dbcb9aca62489ab9b155596

Download Submit