4e609c2edadf166dbcb5c492e48d8169d5a36b09a3698a1ef27cd681e9f36f1b

Resubmissions

13-12-2024 08:39

241213-kkgr8asrg1 10

11-12-2024 15:26

241211-st87tsspgr 10

Analysis

max time kernel
131s
max time network
133s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
11-12-2024 15:26

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

version3.2.apk
Size

3.6MB
MD5

86b9be3dfc022d5b4725756c0cc5a02b
SHA1

e899c25a2674f317b8327682553ecf6a9f436f94
SHA256

4e609c2edadf166dbcb5c492e48d8169d5a36b09a3698a1ef27cd681e9f36f1b
SHA512

ae5798ec1e65fa91adcd73d6f6dde480e1180725e1b6c60aa4c4d1e10e2aefd890988d5f93ea3fb49c689d67d024dbf95df0ca20f8547b70662b7a063b96aab1
SSDEEP

98304:oK4MrIdrbxVoPs14H9xx6eDo6ddgwLOKTQdGd:oK4MrIdrbPoEwv0I7IGd

Score

7^/10

collection credential_access discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.googleFe.app

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.googleFe.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.googleFe.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.googleFe.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.googleFe.app

com.googleFe.app
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Checks CPU information
- Checks memory information
PID:4488

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.googleFe.app/cache/1

Filesize
35B

MD5
b1934f4a849dfd4f6decaa58cdc0cb97

SHA1
c983e0b04390beb0b676ce905fba102bb7a7fc7f

SHA256
09b0d89d82845e668862cb06e0b2d54f96b9dfdeed27ef17b15ef3b03f128972

SHA512
ae38d9ec4a5371c705e09a803d780c47503f5d897e62ecaff3d4ccc50e6b873b5303623043255a39a9f380e50d2808cd9145ba383811185b1c8568365c184ce9

Download Submit
/data/data/com.googleFe.app/cache/2

Filesize
34B

MD5
c76013d165ef454e96824b1f62118c7f

SHA1
f9e0cf89bcf722d7204165ae26c131cf01cbff28

SHA256
9890e8131aca75cf93d9b0d92da3c653ca25768f93c29dcf486793de952fa142

SHA512
9b5d264af7541b623e5ab1f1fc96d572d5cd91df876351b5941646045bc3c268c10a822c6134aa8d25d81daf59e957a6c54d66757f3c7d2bdf60755d28d78b47

Download Submit
/data/data/com.googleFe.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
438d5b48a94569eeb725d2aa42c06de0

SHA1
71a4361e21cafebd465bc9acc59e620f9c8b31ed

SHA256
1f5ef875550c2e71300092f47e99437332b3f249264ec2f8ab4694e3f2483cfa

SHA512
61aa814a1c48c5707e9ee525e2135834f752a71201a80b6c82a9161631838412f9e0148ad52da56bcfe238af04349dac38159dd8095cb5cb6dbdfb388abd837d

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
6e15478e25a8e80fb1965a7ded4e8112

SHA1
c0e94257d91d26d8096f1b77778d818dfe9c6799

SHA256
5dae57a8a407355cd24055b9825193f57ec94ee92dabb6f05f2a49b11fe0d875

SHA512
de521960bf8abffed39fea4f19fc364bda618d1fc2e4be25f37232ff2621aa9c1e21f655011ca2914640eccf57367773781c861887183016fce381e20c040925

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
98aa3db2705a0540802d4f6aed8e8c89

SHA1
04ddc0e7aced36c36babe962ded3fc10cac076c9

SHA256
1e7f681702be64444e4c6bd153a206dc933acdbad5299bd800b5a47a8107d743

SHA512
1c7323217ac90305a2ce23fcd8a84f4ff1ef7cac39576a1b77004fd08e4e7b6e1238f68ba833a29ef42afa67e40fc08fc41691e80c010e9b6afcca7c70d1e504

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c731a628a6cd95f93dcd060853374a56

SHA1
0b191ed82afd7e75dcb217b784aa62a4af787d2f

SHA256
68dfc3058d647be4cfccdec25aa42bae21854d8a3c0157870a82639e5cd3c90d

SHA512
1d4b25d1a7d835b24c7c7fabe0124d188eb37a40acac0f1d7c6edc223759d8a1b4086491c0529c36e2585067c50d8aa31335d8f94f25a1de465170bcd10c36fd

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
927f9e56ad5490c00d3313c20d650df1

SHA1
a6d31654d1012fca9b0cff58471b3a049f14aa61

SHA256
15d9ae2d5cd1eee1e1043da63b2e683dc68ecd0d7a9a0624374b37f27303742e

SHA512
6a4d6d7ba84aa30f134e894141e15ff1f9d7792ee09c2954d1e193ad34bdc7dc51f4515fe5f35e99421288b8aadb6e56a9cb46005708b9e20ba4b2b3a3c8df54

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
08a59152d5efe486183d3e2c2fc2e213

SHA1
811e8758a3c27ed6413f2f24e226a5ed5a30ab09

SHA256
104cfa7ebabd6e1de42fae984b900453371d8bf5eda8a9b77f44b1b1a518d95e

SHA512
9ff43f42f6f0f128be02358e6a2029134dacec0b7ed7087353aa830457ad6a1a124307e24e6cda0f2347b8cd27dc5936349c3a67fa4cdf5024ffcba3ba3d31b2

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
5b16562545362766b6f9e80e790589e4

SHA1
d7054af553e7c8c75109975010e235452db04752

SHA256
dbc6210a9fe177a76b7dd94056cf0f7938b35e7afbb94faf31a5ebb399a9a3ba

SHA512
7217d306efee111832028e6d8fb5208c6d96eec52f1654b731e7c00c3e762b94c7838133b8536debbf3947bf4bd8a93175644ca9efffe66d4226b1bed8793a80

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
1f59643b47ee1474138573666b654a4f

SHA1
a30db9ff84e194bd2a2dd693b225be82ce416422

SHA256
22fb1f02922365e5f50db31d6463d122375e2e4219c7823265bdfa8a20edc98a

SHA512
a475c296feb683ad0c7778c90596c0292c26a0179414f00b9b0b28c71ebd598a134303b116052797134453b48fe7f817e4cde82ec976c62fcdb1761136242453

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
737021037f789c4d6f40f51aaf05bfe0

SHA1
cbd19093718f55afe7931f88d8e1cee7953a0fa6

SHA256
6ada18fb81c531678b5e93a2cb72f6c43613571e580f4215cd5867098798fcd9

SHA512
83bba22d104468b13357d707cdea9389bd2d53350d38cf9091b6a4eac490c27585d4ee9746603da8a4a0705916eaa869970da32c22662b9ce15db020f2cf01d6

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7eccfd78580a006a05620fdd7202e83e

SHA1
5f30005cd8b3d27d3da7548a364436c8aed8ecd5

SHA256
9ba8d5b04266a1cb13b9c1578e02140fc3fc4c79b3c207a633a9edceaf93602b

SHA512
1a0573c81ddc5345c979c8a2fb3f92236c3e48c120122674d937e041d89ff06c7a29ea36dadda1715252d4f2ae7f957bf9e47d3e6f248d9a9bb3543532860a6e

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation5430598700658821467tmp

Filesize
569B

MD5
c3e94ace71a2a3aec41e2e3be885e88e

SHA1
4e08b30ff0f28c5a71603ab9e53b323a2cdfac5e

SHA256
3ff3d71aeb4e32514897bc16c56f26ea7add4053287d91e692ccd7e745cf9347

SHA512
f159cdc51b06b958b099ecfa10103ed6f96ce581172957fba42138d08978f2d6277339170b1d3b9f259c6160b68c258146013710cdbb78304da4ec9542ba5dfa

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation8295612849810952154tmp

Filesize
90B

MD5
ca367511190d7af6d0faced108cbe93d

SHA1
6bda94db2bbc926dcbe90ef658c6b1c0401457a2

SHA256
eb2f7ecac7e701d8b05d8921f57101b844266c73d2e4083398060762a4d1b422

SHA512
21a51cbdc17ee139b2580ba0584c2a5e79171fc462b86880f1def68351fcac063c903f31288e052fcb84c999145a267d2dd3dee3f4902b3a6fa5c1ba55f48f60

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads