f81b1cbac0fc3981660cf69031b4020a67ffaf0874391385c67e439c89b23a6d

Analysis

max time kernel
121s
max time network
150s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
09-12-2024 03:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

app.apk
Size

3.9MB
MD5

37847a27b715877659f6157063a1f079
SHA1

657bbcac517147fe166139aa803578baa49b92f3
SHA256

f81b1cbac0fc3981660cf69031b4020a67ffaf0874391385c67e439c89b23a6d
SHA512

83f450794aa437dd61e3f92f9f0236f773b110cb8e99650f2aeb5f86ccf2b7496ee5f035c3c93d758b1f55b1e224a077e7e816147ebbb38a11051cbfe80f3ef6
SSDEEP

98304:7m9niXwVISnclTNS4zD1I4IQ8genjhaAMVf3LWO/:7Oni8ISn0TNv1I7ZapaO/

Score

7^/10

collection credential_access discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.googleFe.app

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.googleFe.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.googleFe.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.googleFe.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.googleFe.app

com.googleFe.app
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Checks CPU information
- Checks memory information
PID:4778

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.googleFe.app/cache/1

Filesize
49B

MD5
bb506a04d2ac06f4be8d76fba38ebbd5

SHA1
31b3ac8bc9c5a70d9ad5fc6a8bd5c656fcea741c

SHA256
b709c0ef2d4fd3e826070b3635bde681c8b8a7f2e15009443b91281c5f6e3118

SHA512
e9f41cb5bf535e277307ab6eb0227fcf44b391f67f748a6b0f5ef2a12f68c4f95fe0915b166fe8f78a7f858f04f5704701872970d8c7cb9cd21c9befac11dce7

Download Submit
/data/data/com.googleFe.app/cache/2

Filesize
34B

MD5
c76013d165ef454e96824b1f62118c7f

SHA1
f9e0cf89bcf722d7204165ae26c131cf01cbff28

SHA256
9890e8131aca75cf93d9b0d92da3c653ca25768f93c29dcf486793de952fa142

SHA512
9b5d264af7541b623e5ab1f1fc96d572d5cd91df876351b5941646045bc3c268c10a822c6134aa8d25d81daf59e957a6c54d66757f3c7d2bdf60755d28d78b47

Download Submit
/data/data/com.googleFe.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e483de4a70f51fcfd184c4debae84f2c

SHA1
7919754091ce8f1ff62f578fee81cb0648a00153

SHA256
1cac97ac74f32f5a72c917bfc1319b928b75aeed81a9d30bdfab9b29de6ec8e9

SHA512
de206112447c8995f599374bf2b1fc9627ad956fca33188b5bb47450ae36bdf5441a3439ca905e040a06e59966f586731291202a60a1986ee943ec334a3e076b

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c9a5a7dba785dc94dc5d2cd4d2e89302

SHA1
b97cc51c7aeb289a1e06ffedccf9b118f214a829

SHA256
6b17e83bec6319ed6f23f707c33be6cf4cc213630b3cd00f3df23f370e2cddb6

SHA512
f26586e6a8fef6e9579307ec199b9f7e28fef8655b30daf21a225e8099c6ffd0da1bf7009b45776b4f87e229e10107be024a1c35ed4d5aba3d0b64754dadc3d4

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c6df94e529dd66a7eb5fd7d53fef9e2f

SHA1
82243bf6f61204fe0d4378b32f5e223c64e932bc

SHA256
8810ae318f930f42bc6138c7967d7c84be1a750fcad2628a52ee13cd96c19309

SHA512
594960ecdd328a150397af7676575b05061e326738cc43ab0a3f15bfe5bf9574444b83d23137e3c1deb541cbdd7eef951d5520b6f950b0ee7efb7cdaf0a8b361

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4e997a0f88f02ab27ac3e942e02177ab

SHA1
813d1b5296abcdc44668fe3034ca11554a5a2509

SHA256
e9d741bc148aadfd24e6df285e679fd18d893da6359993ebbb9b17995ee2510c

SHA512
c020cf104215a56f6abbf5780282e3ed9c6df9ab42207d2f0356353fe07fc4b96f346eedd0dd47354af3b01112c7f93930a0e0a0d584583cf81ce2412e695ab7

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
8e89f93191e84033d9b672707058bffc

SHA1
af13b5b2057e812a70d7e040a90c161fc9bc42df

SHA256
f312c48d951578ca9ba9162ce18899d6fcaa7a8c44832d13df485a488dfd9420

SHA512
6dd763dc0372e88456810b56e1e3ab5b414179ce980f9857b0d400fc79fed26608a2fa844dfec7330a6b050ceb0ec6b0e9db276e617e41a76e17efc93e38d038

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
eda1d9fc56d54504b73e13278e9c9356

SHA1
692bb9a35e17b20f50cc59346eb4a9c722b0ad01

SHA256
1f68dc40f873d056c92853785d8ecdfdcc6b57c914fb9f53aace7e123aabd185

SHA512
a3dffaab592c125c82c25cb7976dbd938f277a766fb39ddda51ec7c733bcf83346ef1e915cce93a16404b2801ae43612d92815f2f2368f7337abfc3dee1cdf00

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
14b5e5f0ea0e24a7978e947a44fa41a9

SHA1
5a5fea1e395e79102cd6b1cb9d20aa847933e49a

SHA256
27a32dee6701c869e55737fcdc69065f5bf92fcccbda62b259af879732f4d296

SHA512
2e3e32024141d850fdf9478c53324100eac23d871410da2f8ef615e8d2cf49b757b571b19fb6676e83d1c5d8ea8d64f0da14b9a08c4f1a1ff18f5f7fea78e4ce

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
fe0452e4e935bb00f15223651dfc17e6

SHA1
5db7b535e1f1159dea2fff73e151b3ec83cd9289

SHA256
8e0f8cedb1c2fd2532e23feb6faa442b0052b736576a231488792ce931f8b92a

SHA512
c48ed08bda9865844675ca439a6788db7cfe052de66c36d7026bcbf44e5949371923fab1bfa0736c4620f54164644f68e9347677917858fe8a9bbe186fa47596

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
4e7341ea19206a42a779adf64dc929e5

SHA1
c86b8699f7e41a5cb61386b55acd9e95ed25b640

SHA256
198813dbb962c143113758876e096c8d5e8c9432b0940c73888a56855af25e21

SHA512
36916f8416b55732d4b794f0fb65a8f5f3bbf90b00070d73dc6140f1298c2f6f78a11d15519cd8dc9cba7ee4440b3b6b8d35e79fd4c3e70422c287a2b1d9f2b5

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
9d045bfe2a8633d8c5b22fdd0cdc140f

SHA1
169fcd6326844652bd202bdbaa8dde91c28ec427

SHA256
0e0f88562c6baa5615d3365075d785d80c2a07ea1e8c94afe7d9809e6231bda8

SHA512
ab25ae0fe73e64d97dd65af858e29d54256b74c0a1e43dbe9196126b96327cd4f415f56b66674ac029de57a594cdfc4ccfe103f1f0b9e15a753e36ae28b35d89

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation1553729263172601826tmp

Filesize
90B

MD5
6a3424e93253f7795f3a391018174e26

SHA1
f21bca4c8f7d3786bf1fa7dd63223f23d7e57f28

SHA256
27da6f633121476d731cdbcca695e67c61e3bea11f35f23120969e453fb0f759

SHA512
d4635750eaf84a52a43677adf2df378391f35ebf5c21f22515a3fbc7be0e6dd23b9f87e72773c6c206f49a0294ecb1538d6544db51b212a85bdfdb4e707bedc7

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation8710468561362907992tmp

Filesize
568B

MD5
4c91aaf1f4ffe475c26476f4d73b2b8b

SHA1
36543b7b51509267d27a7978a3bd17199ed493df

SHA256
13b5b3a8f0191af0afdf6c2556ee975bfba6cf6204d16193df7f0d088a669534

SHA512
c8f00469c33827f9f9e2db86fb86197bd041da1792e629e8bc97d9826274cc9e2496e427a00b4109ec632d1bb4cb35c7234d52277b4df4356fb22e99bda7023b

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads