7f15de43d3d5f54c59efde740fe02b72bc7e9cb720010520cbac9b5e99484f46

Analysis

max time kernel
1s
max time network
150s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
28-11-2024 22:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

9a18e212ffdd94dd262de2eeab7758657dee156ee2ddebeec6b97df7227ab8be.apk
Size

3.9MB
MD5

527ed1fd528f1fc0411ded6a0fe7aae7
SHA1

1ba7df77264a60ce99c4bff19f87f0d3836e8331
SHA256

9a18e212ffdd94dd262de2eeab7758657dee156ee2ddebeec6b97df7227ab8be
SHA512

e401279acbfadfeffb72bad1b7fd794f765c4f19d30bc581a1da74bcdb74274ddb5ff48c74d3c49486e7562da67614d188e10cf2209472f025242ebe5a3b0f18
SSDEEP

98304:zGZTSHh5MkkmXanyXzECw9F+TINptfDx9DhlTUG:zGZTSHMaKnyQCwWMX1Dx9VX

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

org.bax.project

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	org.bax.project

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

Processes:

org.bax.project

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	org.bax.project

org.bax.project
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4774

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/org.bax.project/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/org.bax.project/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
226cc5a8f086dcda7243caa8fbdb356e

SHA1
f12730850ae1e71cffb16c646e16913ce137acd1

SHA256
0e6fae933047f060b510df23c423c74f8ce7d0ee9defe24c6a95b859b5f06bd7

SHA512
c1883c6664688ea1fc83086103afd32905edfede270f63f2a5abc9f3e6f3c567587b58d429d581d319851df1677eacf358ef4d5ebf551972ef68d7cc7fd6eaaf

Download Submit
/data/data/org.bax.project/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
39dd57cef460270153eb5d27851656d5

SHA1
8b7e5f84ae2dcb770ed07ef1fd00c56b10ea674a

SHA256
727cdc8ba0ba3f0d114325e7b4a6bc7b1b9e2c6da623bd9c731013c8d03431d0

SHA512
3640559975d497098f6e671aab1f12449b62d500b853d0b4b553b7c7e4e11edb2a862af56a8481987d5881a92501c78ea2be25bd83de36eab6dae653c0376410

Download Submit
/data/data/org.bax.project/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
c86f6f882d7e526575a4b27f3341b56b

SHA1
a21ba9bf8de0acd8f9d1a2d5f15a90c66eb7b82f

SHA256
59621bd8d8341d4b5e5397337156b42ff362b5be3c1518006142c501c691be9e

SHA512
e85d4c7c6b5d6248f2221f9388cd53a32fcb8ebef7c0d0a6383f8cdc056f8f2e79c3bd22c46162d541516f399bfc574000060308ef63dca79e581b3f7ecde9fb

Download Submit
/data/data/org.bax.project/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
5a3d142cd762be4e4e7a22c66909b54c

SHA1
990bd09b5ba200aadd76032272c95e4209d10564

SHA256
f9d9f7f789164a61dfed325b147193fd5b09ac06ec3f5b968262928a3ec2e511

SHA512
b76b4d4354267cedff1d4c126ade96a8514631ba35e2e853c91a990635b9fbe7c43de2c3c35ea56e118b9e7c52eec1aed588711ff4f7215b05932d8a9241498b

Download Submit
/data/data/org.bax.project/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
fa5aea8f291e7eaba6097a9e1e96d6c9

SHA1
b983123f47095caa3e49a709538504534bdf0790

SHA256
da0f2187661bd3ca4fcc22c20fc3e3489ea82c36bdf83f376db782f74a95abc7

SHA512
5894380de08ac50ee5e1af68cc17b394907a552e6ca70731142fca41be5259068596381d0db8108ae5083dc435d24341f1964e6d612785af2a76fdabea70a018

Download Submit
/data/data/org.bax.project/files/PersistedInstallation4965354041389265330tmp

Filesize
90B

MD5
a4a40d7038506e97ed0545bb7ee38b9d

SHA1
1aff756fc3f5906ecf18f64fbb9ab84cdee768a4

SHA256
ceb96b32d9c15570798ec4e97d1b37103eac97ebc71dfd11d9b542d78671dbb7

SHA512
a609857b19789887994ccb395fe378bc770071fa866395b996e5a78bade833f3eb9b3cfe8b063ebaa7df9e07a1c9c3c7328daca57cb5e5c24181066a05bc80fb

Download Submit