Resubmissions

13-12-2024 08:39

241213-kkgr8asrg1 10

11-12-2024 15:26

241211-st87tsspgr 10

Analysis

  • max time kernel
    123s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    11-12-2024 15:26

General

  • Target

    version3.2.apk

  • Size

    3.6MB

  • MD5

    86b9be3dfc022d5b4725756c0cc5a02b

  • SHA1

    e899c25a2674f317b8327682553ecf6a9f436f94

  • SHA256

    4e609c2edadf166dbcb5c492e48d8169d5a36b09a3698a1ef27cd681e9f36f1b

  • SHA512

    ae5798ec1e65fa91adcd73d6f6dde480e1180725e1b6c60aa4c4d1e10e2aefd890988d5f93ea3fb49c689d67d024dbf95df0ca20f8547b70662b7a063b96aab1

  • SSDEEP

    98304:oK4MrIdrbxVoPs14H9xx6eDo6ddgwLOKTQdGd:oK4MrIdrbPoEwv0I7IGd

Malware Config

Signatures

Processes

  • com.googleFe.app
    1⤵
    • Acquires the wake lock
    • Queries information about active data network
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks CPU information
    • Checks memory information
    PID:4312

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.googleFe.app/cache/1

    Filesize

    35B

    MD5

    b1934f4a849dfd4f6decaa58cdc0cb97

    SHA1

    c983e0b04390beb0b676ce905fba102bb7a7fc7f

    SHA256

    09b0d89d82845e668862cb06e0b2d54f96b9dfdeed27ef17b15ef3b03f128972

    SHA512

    ae38d9ec4a5371c705e09a803d780c47503f5d897e62ecaff3d4ccc50e6b873b5303623043255a39a9f380e50d2808cd9145ba383811185b1c8568365c184ce9

  • /data/data/com.googleFe.app/cache/2

    Filesize

    34B

    MD5

    c76013d165ef454e96824b1f62118c7f

    SHA1

    f9e0cf89bcf722d7204165ae26c131cf01cbff28

    SHA256

    9890e8131aca75cf93d9b0d92da3c653ca25768f93c29dcf486793de952fa142

    SHA512

    9b5d264af7541b623e5ab1f1fc96d572d5cd91df876351b5941646045bc3c268c10a822c6134aa8d25d81daf59e957a6c54d66757f3c7d2bdf60755d28d78b47

  • /data/data/com.googleFe.app/cache/~test.test

    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    29d4a3ff400b992f82ade65d39f85862

    SHA1

    4e82b35242fe5f83f55b578e23db628a1350fddc

    SHA256

    660d713fa31cddc3e0ca98cd910ae83c9348a5ab29ac69015e07b527feb6e3e2

    SHA512

    fae6457802ba5f5bc18bdcb35c4ab5c34c0dd9797ebf6760af46e49dab8aa0950884d9c2aae4ff7747014a8d030b0ed5690a07029f8511607227aef004b475d4

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    39abea1105a72cfc05f012a5ebace243

    SHA1

    dea1d090d8221a0c2aa035df776ef1dfcc47f67a

    SHA256

    e30d142bb1d2e1cd80d8b0ed2ee3e5cdba2e9607642115adf5b8e11d9793aa43

    SHA512

    f1f1e06e7fe7a36fd3c0190ed769b65aaba18d2b06744a4369f50bc17f31561fd22ed2339097003fdddf0e6b0f1c11a174165e58720cfd8a163149eace9d1150

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    2ce74e6d4332bee16efc13be567ca3df

    SHA1

    8d08a3572d378fcc8da38d6c5bfeb3a5f8737267

    SHA256

    a478518cab3e75f6f1e67db2778f4469ef42c36e678ef2f9d56e8a8c3a2d1842

    SHA512

    6f230c8069e95069d531f0bb2a2b7afbf9778e6f33ef7b62535c545453d99b5c9eba0ee33856b7c0b145cc8ee81943c7f89fa3d75385134c15af98c6865ab8b4

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    21c7da9f82c436b63652acd0f0b351a9

    SHA1

    6c7856770b0906f5a6f403e56f0e8be3a8fa07e0

    SHA256

    fc8816ebad017cc0defd3b4f26678ec55be6de70f59b61ae102728ee46fcce96

    SHA512

    c92c9d04ecad92e3a76ff4d2ecc61358a6c59e83b9414c14d956c87c394d80082d157aa2c66a7f7109474f70da6fbd3d790df47fad359bff8faf8f49d433bec0

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    3e881d9a01ca707bed38018ac69f4518

    SHA1

    5820f9351d7cc8082de6e5686eb9f8fedf6fb830

    SHA256

    4a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c

    SHA512

    8f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    7237409e0640cfab7bdbd429bf821a3b

    SHA1

    4c3da934842f8d4835dfe2a9c275a300e5123309

    SHA256

    5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

    SHA512

    c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    5b3fc1fd05775c6236db3f8f7ed38086

    SHA1

    bffa713f126f7e46e9b153c57437aee8c774549b

    SHA256

    9df652e05a591f3eaa474a0f87eff777e8b08c1830cd54ff274cceac5b4a4c51

    SHA512

    316c93c878736607e738e71d6a50c690947733f24822bb0e777d228677087641e98892dcdc287f6383b00b1194e59b9ae41a83bdaac9f9c0b301b127cf118535

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    ea3e52bcaf10b7c9227eccd2267c69a6

    SHA1

    ecdbb2969e9e08b41e80b7656a44a62884cb30e8

    SHA256

    1b3c92fb2c1cdd4315b3becee4b58a2f50f7ef507c598e22997f88b39a3c4a89

    SHA512

    9795e99d2605d759c3641b8e2a06ffd5d3888e04955a9938d73368b374472c23637d1b2343d89e81a365f6a978b8b2c499d9386592523e943fe48cc3349d3bff

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    96f36823854e1d39fd6839690dd3574c

    SHA1

    d9e4e2b57ac8a76ba332ecc2e37ae3858d15408d

    SHA256

    594aa2f33a5c48e8fd375ec702ca914e5ce934599aa5755aa8ca4d722e3b0d47

    SHA512

    2d24b713d44da63a3df3eac04007728d516521694b4f2faba066999055449a2ea8818aa7fac7c96a270c4eb91cbbf29c7ff3a8cb03e32b1e5f265b55a22d7ade

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    1c276c72fc2435204015510c7ec66910

    SHA1

    ef7d3d049a9f1411aa45c8798b11fb37e51dc5f1

    SHA256

    761922f32806cf2873f88bb016776a617c06dd153821305548fdd157ab2e02d4

    SHA512

    e2a9754850a290ce8790f88004a128570b7dcebe255367ec2c74e000989b4801d1c22c315a0b355ab578bf112e78d73c4d9a122b77f7ca48115193b08e229046

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    be381d4ddcba57136acafc47b2363c3b

    SHA1

    b7964dd144a1c5f5166dd0ca732fe0bec9411575

    SHA256

    a2b1652a0a61f844035cd8b54843b7bb3f0d8643a43f0675ea8a4b67f774b9a4

    SHA512

    628c734e289c5c3119e58a9e3485eac43c0122d575b76431979b4f3539a517657f1d75ecedfc5478cf49b1bea09d40c45a2156c13f428376517b3e3ad37aff41

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

    Filesize

    4KB

    MD5

    b770e2bb82d98eaadf483acf9d26d370

    SHA1

    ac8f6233cd74a26186121c69504aa9bc4fda4538

    SHA256

    e815b61d002f665e720d14934bba0c2d12f73c030fb6f2635f987fddd069471e

    SHA512

    0f12e4cec8909f32d17daa4dff69b180136b893ee406a1e13ede9d435e86e1d424734119f5fe4772f781b299ff123d8700c25b3c76df4612f7538fa3545a02f3

  • /data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

    Filesize

    36KB

    MD5

    80a4c41baea5f2e3077ccc223074403a

    SHA1

    9e82b4deecb70aa223dad061d37bb49f58b57baf

    SHA256

    4730566477baf56f6918df92d6544a7ed087dce29ec5afe46870f18f3de0da69

    SHA512

    515c28941d8c6593acc49ce7ab2855af6a1982622030c4b44ca43431703d8f1a2d80787734f93088647d877973754229a14d13e3e3e22939969724e3cd96f03b

  • /data/data/com.googleFe.app/files/PersistedInstallation228809480171192709tmp

    Filesize

    569B

    MD5

    adcd5d2f629c6f24c70c097b59bdc5be

    SHA1

    94c44382d78d75cd980130405f861278713ad63a

    SHA256

    831de04f859294b53be9933df4da80313e914b48014616310f346614fe5f6c6a

    SHA512

    3952ccfa1b100126ec0d2513fbf1f3f4b5bb822954b1d053bdcbf86cf20a2f5a0c2d4ddd78a9b224f434e63a0cd4751aec3d90f2206dde38472676bee0e53354

  • /data/data/com.googleFe.app/files/PersistedInstallation5859630424679275997tmp

    Filesize

    90B

    MD5

    f9a6a975ead16075c457e0144192d64d

    SHA1

    3012252b50255e51ab8706919ecc221c8f32d6c7

    SHA256

    e0613e24f2bd130019358eb461e40616a141a44dd91a684eeebf680e694cea1f

    SHA512

    b0f9750082305f3a41cbf2661db07042daef5bb950606e20699a7c32bbe1eb2ea36377b0330e3b51b228a72c53cb384694e4585e8a2433d60863c9ddbca8e353