5d600acccdcada3cbdac0943e5e8c2b04b9b73d62397c835c19938449c42cbff

Analysis

max time kernel
123s
max time network
134s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
11-12-2024 15:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

app.apk
Size

3.9MB
MD5

92fffe03c97a2492ae8f022eb6e91b36
SHA1

ff638b0c705d4fb5215b9f675475754e9bdc6e98
SHA256

5d600acccdcada3cbdac0943e5e8c2b04b9b73d62397c835c19938449c42cbff
SHA512

ac5eb6cc590a993243a3249704a5671eaddbbdb167e25a76b6998622ae95f6ceaf14f47602f58f79be00a257525100e1b0b0eae49571adaacd51e30cec0e818a
SSDEEP

98304:DcLH4eIOCNY6A2IzrOvm+AREDWQuV5T2cYc8:AjvI1NYZ2GOv+QuUc8

Score

7^/10

collection credential_access discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.googleFe.app

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.googleFe.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.googleFe.app

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.googleFe.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.googleFe.app

com.googleFe.app
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Checks CPU information
- Checks memory information
PID:4479

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.googleFe.app/cache/1

Filesize
35B

MD5
b1934f4a849dfd4f6decaa58cdc0cb97

SHA1
c983e0b04390beb0b676ce905fba102bb7a7fc7f

SHA256
09b0d89d82845e668862cb06e0b2d54f96b9dfdeed27ef17b15ef3b03f128972

SHA512
ae38d9ec4a5371c705e09a803d780c47503f5d897e62ecaff3d4ccc50e6b873b5303623043255a39a9f380e50d2808cd9145ba383811185b1c8568365c184ce9

Download Submit
/data/data/com.googleFe.app/cache/2

Filesize
34B

MD5
c76013d165ef454e96824b1f62118c7f

SHA1
f9e0cf89bcf722d7204165ae26c131cf01cbff28

SHA256
9890e8131aca75cf93d9b0d92da3c653ca25768f93c29dcf486793de952fa142

SHA512
9b5d264af7541b623e5ab1f1fc96d572d5cd91df876351b5941646045bc3c268c10a822c6134aa8d25d81daf59e957a6c54d66757f3c7d2bdf60755d28d78b47

Download Submit
/data/data/com.googleFe.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
fc81e683a13a8ddf276e383cfd5bf27f

SHA1
71140b616822d6f67521c322fb6097d19cbcfa63

SHA256
67816f1084073fc2b2ab4c5dce83a189bac41792f5a368ad54c3d2b790da45e8

SHA512
61cd1e8bfef5f13ce0be206ae88643e9d005f9dc8326444f9c7d992bdaf6b3a2d51336e2c91c05e0bef8d0459a9c7dcd1c6eadac11473e720a1d7fbec7fd4343

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e725d5c79eed5c570768b4dad6766895

SHA1
e02669d6348fa35c8c45d2d9b505edbf1ff8e203

SHA256
71948f6e36ada0a7daea180298f97513d177cc8ca7882e3de4e204fe0a362b6b

SHA512
0e441877720e8698602d640a58ffa61dc40ea1cdbdabb423ab23fe3f4b227dd4ec3ed38a1f386aec931c8a95ad8e278339ae851c8ddd3144a25f09aad44d135a

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
316129e1b2ec7d335fe99f447f5af840

SHA1
ca5b1e70c5e200b8437d98b220f200babd896c57

SHA256
6042e48abc9c5c3a505e458a7390de5d1dbf53a40f01a0d58b98e41aeffe91b2

SHA512
019dadd472513f931223f423341d6001667eaccda2b5ae9226a6cdc885db5478e8e5ce62f06fcf92090fd5854d9fd31a3f49a9cea804f3442c27b7a895337b56

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
353b64d093b7b8828f335bcfe981e68f

SHA1
4089883b91ef2c66a748a403918b069c294579cb

SHA256
33c2e7156b50a44f5ac167f71a65c303896513cd9f53cd664364ba62834102f4

SHA512
b48e09955f490d586d745554da60eb569bf3e40867dcf734c640767b59f3c861b09af2967920c2446b0f504d43313fd984b73a48203d43838c3256c15bd63446

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
5025eb28739ed9e4ff4fc9cf372930c6

SHA1
ad464548f294db1113e5b16cdf6cca5b2ae46e8e

SHA256
a4dbe651d0fdefc31ed5fb31ed9238872da59e36530c1b9c3c341d1646e77c22

SHA512
5f5e4cece9c4e0ba69285854343d5927b9a9a4d4a821f3874bbf543552f6f34a4d731a1161c41a5bb57dc392df9009df4ac84c501188a92fe0ab330b6f4ec6ae

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7b00647c5b5762e67a27a719c40e742c

SHA1
f73674095986fb4b1aab37f664a2694d316face5

SHA256
e093c7a7eff0d0c97d83afb3940e6625007a881cc0100b4eac9b0a75fd32e0fd

SHA512
a411ef762b2fca18ea96f7d754a0cd1e611a1bcbfc2e8a5c80b893b19d888c8797b7218b596b5e0879fc963c36490821eb480b8cb2308ab446bf95a07fa19047

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
cde2aae99262f31d48e87d1d1e50d074

SHA1
096983f0664096e11e69b05ac2767d7bd2cc224b

SHA256
a478fef6b616a92118349ce7aef445094dc1e480961e47b8d5b852b02b8ca07c

SHA512
686a47b77eb5ff77430018035604b08a994b6f101908de19afc2c571106c967f35dd40bb817e3bb7a62af77073db9243ec7e191d0d558700da1daadaa4326def

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7605676aa67e394cdc62c3b3c2c4cb79

SHA1
341dc840199663bf274d759e8501057b7f055a7a

SHA256
133575258c03823e9ebd631632851e45301b73f52eba0cb1b144b36456cf6b1d

SHA512
0054c67d4a6986e18b2e3cef0740188b51823eedf1ad8e927ff06aab5751e1f8b5d990f09922b651091baf8e5a3dc8cfd7f5c1120f6873af9a1aa19027478625

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
f6f79cabc313a5670b72d84d91c1d698

SHA1
18ee59599590c04c87e681af4edabee23ef5cd1b

SHA256
8356b9cf52342794a110a4825eef7cc3b9be0b1a834693b964bbb61e828c9a2e

SHA512
3942492d4a83659870d17bed685cd5c05f0c2a037e05b55135531e8ca9ff52e56196afbe4d1bdfcfb923b558eaff81312d15162504ef9397d9bfa6628e050638

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
a9255518a4f36983e4ead62062a8aae1

SHA1
9177967bba0623fc508df5fd29f61827c4bad7a8

SHA256
c052407ec575b50d5f32cd51ce42fd41045e1c7407403483b62bd49d3f3fd6d9

SHA512
45ad6ecb116192309845401676cd49de45514f1c6fe3e61fc3d66c7eb5464b0ad2ef12c5e4cd5a2520021cc1df15132886369aec0c18b61afb9ec192b709c65b

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation3720743468547756711tmp

Filesize
567B

MD5
b617c8ff34dcec8cc62544dc983829ae

SHA1
967b4981de9a5612f66c69b7577ac8964319b1d8

SHA256
5107edc1d231fc1e36a103e9ae64416c61dcd18a991cdfcb5c0b6f487501f397

SHA512
4701333b0c333f08630c830d4c0a61b4515c2040bdeac0a22b894835e612b390b8c32fcdfcf2663ee7ab88ca277d87db630b7adffb028ee18d1ca9609fc20c52

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation4100686963550872241tmp

Filesize
90B

MD5
0aab55817271a873f0c2270959dd743a

SHA1
c94e23c15a8f8a8d02d901343aaff6f8bdec54a0

SHA256
c9455ba697a49c2acdc60ef31ce75fb485e402f76e2ff4c00698ca786369fa8f

SHA512
1089aad6ab25124c4bc70b5082aaf4772e762fae389b2c0b098ec31a5179532368579707ec6bb3d1517673273e776b7f4ddcd6d69e3bd55d68515bf9dc3e778b

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads