dda5cd8d5c1cf43f0197552c140d7bc396a0be913a3556590d2fe45ffdd3c096

Analysis

max time kernel
6s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
09-12-2024 01:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

origin.apk
Size

3.5MB
MD5

60a50546ee79e6756c8571dbce141010
SHA1

59ae8063374f16100e93b49dbb3e29187d0703ab
SHA256

6a34ecd487969eb57e9558916da2af5761d6e010ef9c941aed22e4b4679e0b2c
SHA512

2de954c16d2d57aea1cbfdba73ff1d68414a3b03423d657abe8da42a52069d6acd09cb2bf2681394aa1fd8b0f0fe5b9bf015e06671bf49eff82322d820255f06
SSDEEP

49152:f7vrJFUtDJDTYxkXGGF8pfbkTQuLD3SEg7Eu78y/5dwzmsk9mt8f1lMpCP6H63A:71yt9DEOdCfbk1baR8A5C6s1t4fWRCA

Score

7^/10

collection credential_access discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	matinlurd.com

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	matinlurd.com

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	matinlurd.com

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	matinlurd.com

matinlurd.com
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Checks memory information
PID:4458

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/matinlurd.com/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
99d47e5ae9e1aa27360b9cdc0579bad6

SHA1
38d9d37e31dee211b9ffd080977cad9596290842

SHA256
b9c1ccb224c367dd5b3bd180170c4610208de81e6d97adfc56493fdf707fd3d3

SHA512
47e16e7148120be7fd589e367d4a81252937e851b36b177ef8d0d0e6952079006c5e671f5b24561543251c6bd89a3ba9264504f22d80f201129be7f596d2047b

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
5cc5965e63712af4302c3e2677a03d3d

SHA1
5662878050088912fd2eec1846ca5201868e1afa

SHA256
9c749e01004be4072c060ca868201d435a05d7a1dbd5b39194eb31ddaa2748f5

SHA512
eb5e3bcb07451d270ee6e3467a7ee76b547494c4a445ee82be75e6da378abf8844ac3929524b39549f3e5ad7068a2b62c429779a647b36f9201efb48ac860cf6

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7c14639c191b59f89b39fb5613bb777c

SHA1
18d08c605ea72e234a66c7056ac15b5331b0f94f

SHA256
80d4d2173744a0cf9d9d10ffc523202894b60afe54702f81475f9ef385011f36

SHA512
5b62e00de7eb20c167a5ea253b8adafc66f7d8c2254b04593dfd74104c6d394d63c8aa289003293f115857fbcf8c41b1de7b3ee1703bfafe00e07116351e472c

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
207a8462f191551242ff77e9aeadce1d

SHA1
fd5282903e76312489b0bb56e43f3045779bd988

SHA256
0366be57f57fe799c6aea3f955a2e8926177b7b928e8e28ca1dc90572febec10

SHA512
7f5b046118aabff340f91adc744ed7864f3777ff82a6a246553281336af7ad98b64659488adc612bf44a576dc2fb8692c8ff353a56471f192500267a7cbbffec

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
5c48d1cbc94461f0651e59bfda28a3a5

SHA1
dd2f3fdeffc718635f6dce1ae5f6ca4d85880ea9

SHA256
5c462522344027373add712740cf7837a96edd34c94a1fb54457e8d256db6e00

SHA512
288f264ae3f87579e85d1e94ac226829247c870a4deaccd774e741d5f313ed7fc1d46211f28d0f13463cf71c24c932fc3c86d98bdf3a4025b610bad2e80df981

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
85c0471e84fe07f1fefde65497393eaf

SHA1
ff56e268ba11749d5d2f95e82250420fb9c70a83

SHA256
0c12654c00bc2650bbfb50f0ab994a615fd338501529a368844bb97f675ca860

SHA512
c6708a7e26ede8652fc20cd04a3b63162638b5cf9eb75be69e46a3346b65f233f27007e677f522b01b55fe426befedd51707d769617e034e824b6d980fe98420

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0ebb0357b7da316800d4dfe12a7c2499

SHA1
54c7d8591c60d5f998ee95a59521e2d91783f77e

SHA256
b88d9e9ccd2eda37ccddcf51bd06069bc48c8bfa086d4336d3511540831dd260

SHA512
9aefd7ab683d6a6ff0c87a3a702a427db74455b15ba73b02444386ef4c1de79f7c2aeb610a0a6f417c90998471ac0317c865447e742b6f45d8def8d4bf8f2967

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
aea7819ce513fd7de9b2311e6a7b4eaf

SHA1
b4c2479bea5f7512d8226a7157bdb3f28eae8962

SHA256
951ba7378abbb3b3a66e34f6adf3c3cce08f8d637bb9b04a5925d7712cd22204

SHA512
8cef1346781d603ce56db992aaee24b3c090d6ae71cdd5be34e6d829e07166811e7302eb0fa1b3eb7b0acda95e5c4ecff9476802f3b5a1d15894909b3545b737

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
eadbea34ee4a6369fd5775fd43a0e45d

SHA1
f0ffb9d4a96946e1858a51fd6c22b83dfe9b7a7b

SHA256
d652189366d0c03bd4c54926e49c00f186a3ed43da7b082202ba136f04a0f063

SHA512
7b97946ca60a8c30128ea1d778102531831dab971bbe20d5c40ce8d0e4c63c871c28c933a9ce96dcf991c708c0ef5c6ae72ae70245e267b9a11fbff8c3f84feb

Download Submit
/data/data/matinlurd.com/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
81a4d51678af8d73bdbacd7f9c3eeff6

SHA1
739d46789050671ef520e133c6c410737e75db3f

SHA256
9d3b38eacf29f286c97fe4c402b2732cef85026622d76810125eb50dc26fcb51

SHA512
d87b247d3216bbc3ebab3212dc50264457d6e78dbdaeba2b517316565f93f253f23be9b130cfd06591b0013b08249e8d57456bb7aa590a1ce9e3c8d4e5fe12a8

Download Submit
/data/data/matinlurd.com/files/PersistedInstallation2763664922239758762tmp

Filesize
569B

MD5
293cd4b696a9d59a22a5f740b687153f

SHA1
a83b3f1df28c8d62b483af6f589e07d9b8678ce9

SHA256
cf561b65fc760eb318ebc713b098b0883ff0f6408f4754fe2eb41061024cb8e9

SHA512
cd397ffa29ba2ea43350de6e20ae3588230c34794d91a71af4ab3fc78f0590a27907d1cd4a5977136c13f85ccb21412814dbe1e0b2263332df1512abd8459920

Download Submit
/data/data/matinlurd.com/files/PersistedInstallation7919212355921440504tmp

Filesize
90B

MD5
52d49fe7803f634113670865de52190d

SHA1
a1b8801098bc1c119e769009bdeb1ab45e613dd4

SHA256
7de95c84b6686a5179fb98080effad827d18e6998e3ebe646ce58b68b6f50e04

SHA512
3822d6b37541f684aefcb6ad7eca0e2573ec321ce49386ce1ee0fa82007d57fff79c3162cb56122ff833ccf4d7664d5323dba4dcc5b43cf470cb71a604e77a01

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads