d672cabf04369c152207eb3a2a588b28ed7a72b4634cc3807d689f1a6ef4a0a5

Analysis

max time kernel
7s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
07/12/2024, 03:28

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

d672cabf04369c152207eb3a2a588b28ed7a72b4634cc3807d689f1a6ef4a0a5.apk
Size

77.4MB
MD5

67c28f3bd058a6d4b88c67a208e640a2
SHA1

dcc92a97f8c9a75af3ce30b55c6867ec7bb38d3a
SHA256

d672cabf04369c152207eb3a2a588b28ed7a72b4634cc3807d689f1a6ef4a0a5
SHA512

0231513ae4638fcbbb3b04dfb8a5c48eb4bbf653d263aef1426b7979b509789164a7e50e3139e80f16e5dd85c4e6ea530babb36e45e545ef38a78333c42d25f1
SSDEEP

1572864:RcTBBvhwzy6ZadFvANbpt3qc6tjD12JIEMh2/gdJLTppsFCGObZLBvSeFRtJ:R6kzDG6NbpdT6tjcTMhaYYYHvSez

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.olserapratama.pos.staging

com.olserapratama.pos.staging
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4330
- which su
  2⤵
  PID:4360

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.olserapratama.pos.staging/cache/last-run-info

Filesize
67B

MD5
94e10e850bf39b9d0a6fef9969739ad4

SHA1
5a9424345b6455d1b84ed73ecdde7eeab7f83ac9

SHA256
da731d687400934bea5e647ed90766710215d2e224d53fd2912f6acbea356d5d

SHA512
8cb6f99259a95a259d7b3d15cd39f8973de6da14ef8691d77e320c71519921da6d8708f7d278b974e2bf5ea5e0854fbd16c31f44462cc36d4b93f9930a4768f0

Download Submit
/data/data/com.olserapratama.pos.staging/files/device-id

Filesize
45B

MD5
38f81e2310cbea94de5a95ad022697cc

SHA1
7f60e4b4695c486bf1852e1bd548332362a80f7a

SHA256
102a87f893297ab300385cc63decb2f49e35df17824d9b46ac7b49d770c89220

SHA512
0e3d9373bb04e7d025e417ebbef80d7ce882b5f4b97cd734bcf43c3907079797825314a22b7664ce24479698325612d4ef4bcd5b4b993e0eae6ec59c955313d6

Download Submit
/data/data/com.olserapratama.pos.staging/files/internal-device-id

Filesize
45B

MD5
fe4fc73fdcbcf783a43821b60cff2f5e

SHA1
7f754c5dd2c444a0e064e9f1f4b574f178f13837

SHA256
baa70ce2ef927b1042f81f50a28e2af899828ba615dcdc95cd723232a7a2e578

SHA512
226cdf6ec0eda906042b9b6a6640132acac5dd34e0d0381fe0491f33a1750b2afcb3c3d668f23ff0cf256f3df0e5846bd2b70127b7ddaeef8bf1e662313689b8

Download Submit