5d600acccdcada3cbdac0943e5e8c2b04b9b73d62397c835c19938449c42cbff

Analysis

max time kernel
123s
max time network
138s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
11-12-2024 15:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

app.apk
Size

3.9MB
MD5

92fffe03c97a2492ae8f022eb6e91b36
SHA1

ff638b0c705d4fb5215b9f675475754e9bdc6e98
SHA256

5d600acccdcada3cbdac0943e5e8c2b04b9b73d62397c835c19938449c42cbff
SHA512

ac5eb6cc590a993243a3249704a5671eaddbbdb167e25a76b6998622ae95f6ceaf14f47602f58f79be00a257525100e1b0b0eae49571adaacd51e30cec0e818a
SSDEEP

98304:DcLH4eIOCNY6A2IzrOvm+AREDWQuV5T2cYc8:AjvI1NYZ2GOv+QuUc8

Score

6^/10

discovery persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.googleFe.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.googleFe.app

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.googleFe.app

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.googleFe.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.googleFe.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.googleFe.app

com.googleFe.app
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4264

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.googleFe.app/cache/1

Filesize
35B

MD5
b1934f4a849dfd4f6decaa58cdc0cb97

SHA1
c983e0b04390beb0b676ce905fba102bb7a7fc7f

SHA256
09b0d89d82845e668862cb06e0b2d54f96b9dfdeed27ef17b15ef3b03f128972

SHA512
ae38d9ec4a5371c705e09a803d780c47503f5d897e62ecaff3d4ccc50e6b873b5303623043255a39a9f380e50d2808cd9145ba383811185b1c8568365c184ce9

Download Submit
/data/data/com.googleFe.app/cache/2

Filesize
34B

MD5
c76013d165ef454e96824b1f62118c7f

SHA1
f9e0cf89bcf722d7204165ae26c131cf01cbff28

SHA256
9890e8131aca75cf93d9b0d92da3c653ca25768f93c29dcf486793de952fa142

SHA512
9b5d264af7541b623e5ab1f1fc96d572d5cd91df876351b5941646045bc3c268c10a822c6134aa8d25d81daf59e957a6c54d66757f3c7d2bdf60755d28d78b47

Download Submit
/data/data/com.googleFe.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
6e669e8588f901650283e42c45148ee6

SHA1
0b40700d73d278173c1a94c6a9bb0aeedf2b7be7

SHA256
c350890a38bba9d179862d75282e86788d4107b019ef6dc84b9d6f6c456e1502

SHA512
2fdfc9a6e02e3e8087c452906a2177f44a24dbbc9e1ab4f9ae09346a06c2e8769be0e8132b5203b25a46924e8df0d938bb403ae16d37b6b23f898f1b5662d86d

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f04e08b61ccdca786a62aa57eeeee5bc

SHA1
28e4d2a61c6d353337c15dea41048acc77884a79

SHA256
f86be3d305d29b642b6fb7ce676eb220fd02bf7015dfa59d38edf4f90a32b934

SHA512
9ec60b2c8055de057fa8a8d76d5cc31a91c2975e22ffe8cf070e7107e8d8e7dea3fe3961a755684b909c3296f211b0e61927b45357523d1550aebb9b4511d626

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d3707b6152555b32fdca94875021b2d4

SHA1
618a5dd4dc750f90a82badbf5ae1286fdc3ab148

SHA256
b4b3caf3996bc077e5c82fa037e2cc0b3234fd8698dd715d27cb51038be2c073

SHA512
8e97e3dd6b4dc04fa460e7f3e3eadc0d79885295c1fe570448df927cd9e0fd59db99e6c627a254bac7e0a0cd58dcf7db27c38bebf637c263ab47584639db8dd1

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b8096b67fa30cf13681c4b1dc833dec2

SHA1
b994c437f5a27e700e551f07c4c607fdcd2a576c

SHA256
632330c29fda1f90d2cbfe499f0dbc464ce321d7e51deb9bbb8a460842216bde

SHA512
5e1adab7e418ca9387a5e45de50f10a1174e7b09b810c229a6f93632acb27e949f5986d94bdc7e2bd0301e62babe6e4419975eced155030d483d52cb7f5c55aa

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3e881d9a01ca707bed38018ac69f4518

SHA1
5820f9351d7cc8082de6e5686eb9f8fedf6fb830

SHA256
4a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c

SHA512
8f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
d5d5fca0c9ae8b5aa8605909a9ebffd4

SHA1
90eca521ec2f0aaa4179f5be68eae13824cdb938

SHA256
4f73d9512263ea652a68c253410fbc55289c5d4df17087fb283e42541b806425

SHA512
9f7db5dd188bd34fdc04b5733c561c3dc8a11a76f9c198b4f7e5cebe2217b89a3cc7ce160dd8af1a95bd63b1b25c9b4211459148facb98059d10038b0c448891

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
abb47ffbf0ae4890c01a99ac2b67d3fa

SHA1
16b524e7c6d108267f486ed60bf52db04ecc9146

SHA256
14793b4df26a73397a141c4794b7158d24392b9d545ffd8df85ef0bd31497845

SHA512
c77d2c2aa4c00624a980acfd8d15e8279fb9b633526bd5f32b220c83f948e61b7a2451641c5e16a9a7db151aea3b4b017534299e444c9c5ef4cec37d16fc10b6

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
8d977a4e364d52da3414050758c5bfd1

SHA1
f9acc1ecce1682327f813c8f628655c2eb20c671

SHA256
1cf5e116efe4dafd4814e88be5d3090446d87a0cf50f63f480bac2ccb429634f

SHA512
0c360f5e773b3c85af8178cef2b4b6be9ab898ded546f3f5e81f9ded1597d9b607f67bb9e3e03f8b23fc22d481615b3bf7f21dac33b86f71f04926e83a2960dc

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
fe5b9467e5e686d4f586654b8cf1e21d

SHA1
48fdf19fb18a1912f58a90f857623bf22a46589e

SHA256
f412431d211f1fa3ba911e488cd3d85003301f8a5998a5ec23e4be9d2c3cd222

SHA512
1fd86bbf7dadc4b53dd73e40d80367891d8355446d57a47bcd311c4476bad02fbbb5fa1234a8a5ecc9477fd914c7dcde22543ed994988d075cd1baaacb3a70ec

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
d39975b44831479bd9a519236a261e57

SHA1
955b8c341c8ca082546d73d020f0fd38adaded78

SHA256
85846702fa72f63c402725996eeafd3a06e036ec3775f15ef2bf6080f24122ca

SHA512
fca0c54459708ddc58f3b4fc88330dad9ddcf8ba599bf96c980a5ef0189215f1aea33e8144b96fee00c029445a293c5e4bdafa28a8b152f97eed764facc9ad59

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
4bbff8ad07c1d0fb839fcad7d3a45088

SHA1
e9c9508e27f387289c169413df30d2a293a019a7

SHA256
8d1cdfc4e324b2a114153c0a6f0e306181fe31fa1d1914e40c364ed8b8d364df

SHA512
d27b3cf63e885248abf09f1871ef1c47f1f359d41f794c65cbe7273ba00cfd777c94b10b82b6cd338c7dd05a80a112e8c1661967677dc139662fb00a10a0c4fd

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
096821f668190e011ceb8f42a0a862a8

SHA1
b25f127da6185e39d69aa25f7ad46ea9fb146c3a

SHA256
32e29e039623dd106a434034b7ad1642e1215668c82309aeb12d15e60d63c62e

SHA512
75634af200cd638b1f08d1eb0b1d532d043207ca6ebc930b998b2b0f6ee3214c9fb50284167916a13ff6458b96ed1b4e801a66c9d449c1e38ef3eae3bfa66116

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation2127525020320741192tmp

Filesize
90B

MD5
d8a41cb0d51efd59b9a21b9572989d47

SHA1
87ce744d2e7a40d9dc5d1e602433cd3fba86a9b4

SHA256
a3430ce36094c4dc74d8cfb4d1f79cc606580e21d552d2a3d0612fefd8d1a942

SHA512
e240689848c723976abd9acc049b189e75456395176018bfd2b29398625a1ffb774b8e25884f9553d183a34d9d3ecc02e036bfce920c3b79bb17c162528a3a05

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation3484079683829653226tmp

Filesize
570B

MD5
6f225ad8e0febd2175e158e7637241ce

SHA1
724bca45ae808e2e8978c29175484755f4df9356

SHA256
c06cbad52c57169074b16865756dbc37d44474115a46fc5b7d7689eab30cc8c6

SHA512
cbe9099b1576620fcb021afe55a96cf3226f2f0d44b79b73b16260c8e10438541cb8ee2e5b4bdae978fe59c18747a79b1d4383433a8d23fd0f000e336356daf1

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads