92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
157s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
07/12/2024, 02:44

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4973

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
98094d8376473b2f1c825b9b7a6fb51a

SHA1
580c13220d5421e71568850f845a654a91033eac

SHA256
991259cddb2f7510fc1fa15d130c17fa8602351e6fa67eaf16ca82af1af80a7a

SHA512
c639349ecdbdd608e6ad9994d94c3a80a4ff1f4cfe81756ebcdc0118897cf8499225e028f92ae4d834e2b4a75a16b8d0abd61b4f3840257fa36ea2f1a2f1997a

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
b8047447c94b5979e62c647085ec0b64

SHA1
f8afdfd52ae8701b3a4e5691a99b00cd6eac7e59

SHA256
1037e9d3bc1bfb405c10713e4bc893ab15cb55c46d00bd05efa6efb164dcc2aa

SHA512
8981294f9aa5b788fe2888b3608375de48527eeb3d006666fbe65fb5d143110a86bdcd776832bbda9eb6b31c3c2ccceebbad7e807b52ac025e2420d19c21b52f

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
b60bcb2a7ce040dbe27bb0dfe8f3af0a

SHA1
97cd9f9a5169929b477d2a3a2a7999caea31aebf

SHA256
14dd0c25dde381eb1118439bd83717edf986a25969810a648f9292df124c0694

SHA512
5e9d1fe2bd319b0173be2c8e90a0db2bd3b1504468773c5c1d723880479178502dd1fc4ab1d22b8ac586dc9ba8ead09d7e7ba0eb7ba03335dec9e4e497614efd

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
8d1362f2078ca64871483dabaa4575d3

SHA1
b5038fb3c60138dd49d92cda02b902a0ea918cc1

SHA256
914181182f65903f0079c7a5b3f60682c38328d4c5c2b0a022640dd9240736ba

SHA512
edf377feb8dae72587af732c98e31ab7217e3d35426ab20aca89966c8bdd9be71ce76ca512a77354596f886e1793c79092a671ed5d9b964cc2c03598d63c7392

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a0d1446a4d6a63c3219dafdacc5a2343

SHA1
1125b9b11be869c435e38958a58ec4151ce3f119

SHA256
b939144430fde8c9c122651416aaf18372e06235df7f9de1c9e68798edefdf55

SHA512
2289cbcb0461bb00d8e747b08aae89337b015c14c2c3064e992c7c8b476d79d7fe1e1eb006fdfcc3b675cc6d28ece08384f874ee1d271d2069d9b5499ca4a2ec

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
52953f68d35556cc39b73e1e15f2a5fb

SHA1
81b19a6cd8aaafcd0f0ee81cb1feb26de2aa301f

SHA256
edcd4651a4873d6e27ef9243818cf433c23a260d82054466d626c3331775f012

SHA512
44c7fcdbd1ecaf00b8235646651dea2bc8cf4917f405d972856c819c80bd45d2e60fbe3684b7debf2147f713351d1ed301d43b269fff80afe79ec1eea6166745

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
34140012c4a918915b7d5010da1bfd37

SHA1
dba8ae5e87220a4e3f7ad6e55c2fe2834de148ad

SHA256
f1717a010d0b946a6c3219b363d630d567929d8c72c353fbc17f00c30a3f0ca1

SHA512
d058bcb38d9e309bf8402ec62e8a798a38e8aae059fa72a0fd86ff54c8edca960fcc428e6b16f260048b3d1b16e5f4d124618a89458aaf187eccf3ae6e7bd693

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
43d8ec7446e71c883b209af70c8aae62

SHA1
96ba5204b618a54f2fee35672398790cb584c63e

SHA256
1e84dfde63be2a332fed4120d79c5679353d9a0b3c4df570b9cfc8e8155cecdd

SHA512
b0af4cc92d8a6770c5aba51cae070d8082c5c5b79401dc81713fdd03db69c01882f8699249894f8ad0091d3a993dd8fab7419fc156c4252b52a771b14addb2a3

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
dab8a001b8c8d186878a5127358b249e

SHA1
5ea6f74bfd0ab3a5ef1ec70afc0743a234173df4

SHA256
38cd3824fb4bada0561a2395caef55c650b9189b761e1538837b292d01df7f40

SHA512
32bb011f32ba4f0e60938573e4ccc208ac2425f2623e76256b9ef5d52c5c2de9cd7be659b58fc0aa7fc25d01bea98c081971fbf539200fb981da1155dfb3ea98

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ae5ff61f5f4019de2a75d29168de88c3

SHA1
e22cb84cb1b4159abc3d3c48fd840c675f2d767f

SHA256
26435153e314776860d5f97390395a77f3d2d8a06f571c13c5796ef1375b688e

SHA512
ad9526755c84c96b913a28a7c8b098aea539d8a03aa21d587affb1a6b6581e33b9e5d467f149b97fe9c81ff56d6a78b17054ed259dc8cea273407ba91d850210

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
2fc4ed2405bfd92f191ff23dd0aa555e

SHA1
0fe30a50edec1bb42f88064bcc5cb0a1fa26f553

SHA256
5840b0076206a2ce69410e74d6cca930b155f2ea1b445ba6ecbb700afbec8b36

SHA512
376015097288f33648c7f088e96ae0bc5129b81310646b34b0c44d3331585a09ad36533b7f44751c03b721a718afecdd17e280c76f214d5e6bff579023148b2b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
71c0033afe0d415c312227dcc2ac51a7

SHA1
ac3f309c3325125cc8985db7b10fd852cf247fbe

SHA256
5b31e8d7f7661b929913cc7bd41ec031bc897c3698588d1e374de7c37e68b836

SHA512
7f939db0e2843fd84df61d869bf80c88a2ebce60d0ce73c274b4ec479c432f633e594823b57a6dfba0efd466956fe5a5facd7aa9445576ce6fd834da05d61a20

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0bfbe98479901037bcf116807dedce55

SHA1
58072d5a6b3253093e5e95a6fed10e9bbabe3ba6

SHA256
99b568a3f4ecae27d33ccd398c29f716e7140f6e32270808207b6baf429c12e7

SHA512
123d70098b12f548bcd52aedaa5c23fbf64b9f5532f8f6c2aa7a29dc4036d465b1ef2c185aa099172afee982cbc4bc3a483ae2a96e671b89bf5decd3194dce01

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e73862beeab44c9dec58753f57363c52

SHA1
3652798362367791f09558f52b8dbae42681503c

SHA256
93f918cb3386aa43c11f11f1366a963d6e025e552d21c7d3b6f88d3dd48c4559

SHA512
33d4a00970492a76de62552aa2149aead76c714b2f326a4e2a45ee2d8fcb1e4329015a2f1c1b99b6f1ac39f601c0715113d2473caca731baba14121588f5c839

Download Submit
/data/data/com.systemservice/files/PersistedInstallation5508626478415870739tmp

Filesize
90B

MD5
bb4b1e426c7c55e1fa63f7b2bdfb5d17

SHA1
5bc84f1ce99d8118fd7d14efd42610705e9c1995

SHA256
a3f6879cb16102c147829820c361327d507119a9cc408b40e66ae70ca9da1f02

SHA512
01705abe1e3d59ce446b8ec90df0b8e4416d83cc8538507c633898f49e27e1ff828d81a28ef0b02be5220b012f508b0189f6a9282c5a74a50b4939f33d57bd54

Download Submit
/data/data/com.systemservice/files/PersistedInstallation5919303447465964925tmp

Filesize
556B

MD5
eb64763a3ed375f6ca0f3ce2af4d7f45

SHA1
a78f776cfd5bc4153a48320bc6654f786bcec72c

SHA256
a02d9db52042d42a28152f7ac823452d41fb9dd38d771aa309302aecd8966765

SHA512
85409331a10569e1c3afea3d8a32093fef606e1bb336bb381c4b1a08df5c67eb9d049665bfd0676ba9d43969fa6884e803cc85f339f87fa0f4af726ccfc0c328

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
29108c61394ef89a368206ba79f896d4

SHA1
f3c34689c22cf3b783fc428ff969352998166ccb

SHA256
60b61132cd9a7827614b4582fed8e7036bad8c300dd9775dfdd06321adab910e

SHA512
eaa989679d44fd9a0168828747f0f4634b251b74a940d572e4a292a78a8cfa12f8bd4d285f3e9f86487ab6673ae4b75d61b58403c09d19c2525fe6156e1b4cb5

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads