92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
31s
max time network
156s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
11-12-2024 02:44

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4992

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
6b1209f1b9761f8621beeb1a882c91a4

SHA1
6c10558ca5c918d75b637e8b5aeb29e1326e59ed

SHA256
053447a87868f1cdf0e5aa556a2aa651c1fbc905b8e9dba7c416cb24e7031fa0

SHA512
c58880babc82bfa8fd3bbe7ad544f115fabb9342d6216c31ad75b063e541382f948c7e7c837195a85f89b3c53beffe543d88e2fe50d8fb17a358c107b430e466

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
9ed5bd0af621b680031b9bec172905a5

SHA1
023abb7fccb02053917cf125220ed14bb1554303

SHA256
f696654de00bec260c6ccbd9543be964a7d62cb5f51a4bdcd8567f5d86871dfa

SHA512
75000e7f14f54fa2c7f5f8c3f455441e602bbe50709a92c3daee48e01b8d4b89914fd81cbf9130c275377e6286f2198d9f66ecfaae22e559329e134a11a1c2a0

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
5e97e4aa98ebe6ea28a39e62986c160f

SHA1
7393a1b06295fb2ad51d34f09c79a23d67795269

SHA256
c397ad67cbe925f01efc2d754e79bb01cd123a39f561588d87f9df557d31b09f

SHA512
ba594497d62c5a1e6edc97acb9e1a3036e0458f6a63e48c8e0e2790a72ed59347836d9f14dc54d882271178b6b181db3f9185318cddcab4f93738557aa6a08d9

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
cd4687a83529e3f9167098422ecf18e4

SHA1
7eeffbff256fdc8d23c3bb1e94a64341ad8aef99

SHA256
25ab34ffbe6b451be51bf47a2666ec32531a8ede2b2bc6158e93e991e2b9591a

SHA512
0ea8844d57f2a1495198d4218f1981d357363568958b2c0747e3e953344bc242f244ab0a0e9055d897edf712aad5e8d3c3a73971c8afb841ec2d61070cea8000

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f572dab059e86347e34ca2b914f616d3

SHA1
e71c936113f8b4f983a71aa975168cf25f996939

SHA256
6382444b72feb841f5a81215e1fb047982bfa9d6f15781bade6c95242959e47c

SHA512
380b248555f3edf531cd03530a8e928e062ce343388aa11dbd82fae875fa2b58f147f0980b266da58f1f8bd4c8ce5f5482a0a903fd5a30da27d7ee4822449cf6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
fc2bfa3d91b98e0812bb79933bffc8fc

SHA1
8282fdb7e4f29caaa090eace156df03db8504888

SHA256
7bd6dc0672c04025cec3d623daaae8e36b6a5c19f0db023fd0a9322b85aad3d0

SHA512
e95dcab8f863262a7040c40d0054d317983c9891935023537c0ae7c956c2b4d91d2b629b33c0e44cce476017842219a2e48c95c18ddae04f2d8adac60c1df013

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
35b8ce0a290e0d70f9b852606d90e73d

SHA1
fbe7f10987ec74e6017483c24c1598c092a5d31d

SHA256
c6c357e8e053599d1c54603336308a36cb28dade2f8711794903c6f0d17699e7

SHA512
e8384f5c40238862290443e7676ea8942c2c4eb9b0f1ce1be5755d3395954471180195e928ed01af7975e822d91f90c93014cc2f2aa5c9a1cc92f37e44b62e03

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7c64ad8ff71cca59d43431775a9e45a6

SHA1
de7687b90624e555c2f650f2c116644efbf20f13

SHA256
c738c7fc92bdc7cc6147250336c5cc6b028de2cf8294c3ea041548d4191c181b

SHA512
24d3f0a77cbc7e6750dc3d3bca0e9b9921d2cfa21da6c3b2fe6cfa3d07ea06df78487355b7c25ab1ecd504493f771aac80c862788c376f33c1e560d701acced2

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
35137ade3bbf3030cdf748dd0bc6e89f

SHA1
fcc3d5608fc046684c5b5b08cf06684ae7406a87

SHA256
3bec58a1c0d2224724510a7ed2248100277a71890f336ae8d0ef76fbc7f16673

SHA512
0a948057337729643a3674eceed9434f260d79326b9f966fc29a7647647fd66ecefdabe40fd8d4a7d8b84dedf1eea2ab01078af4b68f90ee80cb19886158920d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
69d99315683d0a994da6f420c00706d8

SHA1
6105c2971f6183401ac79d537fb161593a615b12

SHA256
1cad75a43f7809d2df15a8c4971aa807c20a2fce768a0712903f7ede504e3bd9

SHA512
84c2b97c6bd4a420ef2fe4d174fb6a63a84a996acb31c25f6ad13a3a5cb2ae072b32fed6957fe5630f6f708166be740b001d60ab09276a393bf96e81ade50886

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
db3ad65816d0a31629cf60d2f2eedbdd

SHA1
697f6362a4e55da4ca6c1fe7dbbcd2e76b13f4fa

SHA256
4355b346ba2fd02dcf4d1b2b63f23500365c7664c155d23c893801babd666167

SHA512
5de98b391dec3a6f41d03d41629bc3be49c4da286b640432d7a3ede87fb1923bb3b2060e8f2e6d97a5ef353fa70aee25f95fd2fb67317e8576ddb92fa6ed8208

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
d85d4f09f02c2623510426491c30cee3

SHA1
4621932f6714dcf945a1da98f2ebf2347a6b36fc

SHA256
45fd8b46b183bb9e19b8c7c1fdaeb2cafa440d478203e0e98b69f923aa1ebec5

SHA512
3b9d57ded190a0e17ced1fcba138d12a4b82ac3ee60e8210494068dd9e9db73acccce420249000f0ea0b5197fcfbecb2dd16f61486e720c949a66d37cc05b4f4

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
edb6e1c67391dbfe4fe577564d08dccb

SHA1
ddf560e818335804549c6a2b9815a0ee6b302e3e

SHA256
3430a92938893f8ec296d683f16b46f51cf57ac50ca9b782d7dc26427f6633cb

SHA512
f8558df40f42087439606c404c65082a80cf9641894fc6c6a3cb59230d89223d2b6159d277fba46a0a4253c7e8fc4b8880877779cb04e7752ef6620fe656b30a

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
1cd579b942155efe655b670932ca26b5

SHA1
627f1ba45a38c311846a45e652ca15059e1fcd3b

SHA256
1d7cf96616ca3d3d6e15bb97062f1adbd430ba01da51cda21e50ebe92d14ecc2

SHA512
a4f2fe0ae3e8240c88146137df600dcf95dff0d316fda3672c0982debb89da2dc50ef198a5dcc6fe5177e9edce7325648915732d5d2f99ee7ae265d193abfa82

Download Submit
/data/data/com.systemservice/files/PersistedInstallation4704404740243930981tmp

Filesize
90B

MD5
bcd81e8b9def510f5b351103c255cbe6

SHA1
062ab79085c100d831947f10535ba40cf086cbb2

SHA256
e6da82d9e3d3e64491167d05e81e6e6a6cfd7175311664c63e6ecea5f6cdbfa9

SHA512
b4a64e96b8e08ceded87164aa453dd4b1ba0ba39995595bf52644f304b9bada0460c8682cbc9a53a9c2e1a59d91c0875ce9d0c17e787f5842f1b985aabb74455

Download Submit
/data/data/com.systemservice/files/PersistedInstallation8366612307607644745tmp

Filesize
554B

MD5
5d24012cfab93ea1e8901761a160811a

SHA1
9e5e66725f2f0366fd0874aafff7b95b6e6704e6

SHA256
241b8a4fd0a08acd00bfc4a97d616f915d5b241c5c18051d9a16b12bc3e1e69a

SHA512
516feee0bdcaf9ff8a92f90e6fcc1414aa0e583852106f47d8e5bb56f36c79cd6ca0d8de817b82364db9ec74aa7309295245fcf79a66dfab1184594cd3364d7f

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
8843933c013acd878df9d3b03cf03697

SHA1
eec3f88a12cfde963b024145dfa04a7c635d0c4c

SHA256
587f527cd5a11a17fb984afeb94944d8e3f57e2d272991bb71a7089cc5cdbb83

SHA512
c0d3aca16831653a6d04a64f5a994fc51e4cdea1032b63da63c106b7d79c606bf8ad45f0d9b184eede16f1da8b67d9664aba208e62e03f4f89f01581828e7e3a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads