7f15de43d3d5f54c59efde740fe02b72bc7e9cb720010520cbac9b5e99484f46

Analysis

max time kernel
4s
max time network
130s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
28-11-2024 22:33

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

9a18e212ffdd94dd262de2eeab7758657dee156ee2ddebeec6b97df7227ab8be.apk
Size

3.9MB
MD5

527ed1fd528f1fc0411ded6a0fe7aae7
SHA1

1ba7df77264a60ce99c4bff19f87f0d3836e8331
SHA256

9a18e212ffdd94dd262de2eeab7758657dee156ee2ddebeec6b97df7227ab8be
SHA512

e401279acbfadfeffb72bad1b7fd794f765c4f19d30bc581a1da74bcdb74274ddb5ff48c74d3c49486e7562da67614d188e10cf2209472f025242ebe5a3b0f18
SSDEEP

98304:zGZTSHh5MkkmXanyXzECw9F+TINptfDx9DhlTUG:zGZTSHMaKnyQCwWMX1Dx9VX

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

org.bax.project

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	org.bax.project

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

Processes:

org.bax.project

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	org.bax.project

org.bax.project
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4640

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/org.bax.project/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/org.bax.project/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
b11cd46be1ebedbb29de61cfaf28bf6d

SHA1
a631afafa0c8e623d8edfcb45e4a67a101b5d3dc

SHA256
8d7039a6792da99a5dcc7c90070fce7c11a7d4e246aa40c0ab7aa57673204b5d

SHA512
d901de3a0bdf18d2e699add779b72404c9cea319ae6b84b9c7243981c8497c5e762c7b068e5f9d333b2de8c805b5c2241929a847aad326ac6b2c47e3f70c04bf

Download Submit
/data/data/org.bax.project/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
8fa7f7e9d9f377b38605cb76b735ad3b

SHA1
4d06481ad771d44c89910bb8043de64bd0ec80e7

SHA256
788c0275e8b45c9d82937971c207ac60fc2f641d4e281827a01dcd6d5a34ed33

SHA512
fceb0590e9ae588b9fe33dc0ff6fa6a4c549107f81b02e80fc9d6c5129c7275f3863090c01cd85b0355199eb56e0ef215f5af50a1d1340c29530401e15bb4cec

Download Submit
/data/data/org.bax.project/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
451ccab404e1b161cc012b38af39fc77

SHA1
c3b221cf2d32350f8f765b83400df4d6bf5601a6

SHA256
275997456c4b08af52558222fa89167bef3b9d6a2cc57aefcb783fba0c4a233a

SHA512
b7b7901a9cdcb51915b292ec3fa3f356bea959ad0d6dd861bc0d065f626e29c2c768ef34deb9ad0e4faf69697e2ff1dd6e91f20016a4ff0d26bf0cdf642b756e

Download Submit
/data/data/org.bax.project/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
27204072aa5cd92e91e8346c30dc1499

SHA1
8916558b308af98c9c4b8d686051e534c80e6970

SHA256
35347b5e4031f59d4feefdade98f4cc7e89efb641ef53d6236f97e7083876881

SHA512
444a3ae7f74318322529b3e93fb730ced6707444e8c1367cc0cbcaf580cdbda39984efcad23fc9d1e7eae21d09faf53764ca0750755e1e15082f132ade7e9c0b

Download Submit
/data/data/org.bax.project/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
10076f0f39e0c92d42c015d48221c2df

SHA1
145f66349969525533d0e278c4b13f5f45262b1a

SHA256
9d5f70e38e4d296927e8c0353388dad1649a31cccdd91ee4db88cdd0376282fe

SHA512
d0cb4949f9176a3e9f1973c1fa37999a0f1b8483fc8d28893a4066d0cd0dafc6d8869635da38b48f6f0ad23d26056f5a021084a3e8d793046c115266f67c9d93

Download Submit
/data/data/org.bax.project/files/PersistedInstallation6300079160059136671tmp

Filesize
90B

MD5
03cc8a67b8d66e0e59dfe554caa9a90b

SHA1
843adb73042a498e6f3f18cf716be3aa68f6ec22

SHA256
f1e582fc5a896452c4787e534c74ad8879cb06bc9fc92d7b0deb70bf79605299

SHA512
1370925b30462bddb4cb75f9d9a47f92f5eb4677e9b35e5d8bb5d3df0fd1bb16eb8ddd656e301178b7121b5115a0a895270134d4b29b83fd2d112028a0b61a41

Download Submit
/data/data/org.bax.project/files/PersistedInstallation642277013425151583tmp

Filesize
566B

MD5
a29f54ab9630a6209061f0a8d554295a

SHA1
acb83970453688c4a725f9e34d55c5ab37a0cdfe

SHA256
aacd3e5b047f0057a909e72cb304ba1bef5263b3709caaa10f267d6576386f81

SHA512
c5cddf1856fea190c3979f4329038bffa05ef967d6d5f269e4c3b44dcb09e5fffe406d2fff833c079625b5f2cb8b7e39450a9f9da5ee6edfbc591498d411f812

Download Submit