92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
18s
max time network
157s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
13-12-2024 02:49

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4927

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
0464bf359019fed48bd05c204cb74294

SHA1
d7ad0ff4b5467f980c608af2cffbbec09b391b59

SHA256
1e6737ccd4ad455457d42b6c7e4bc73fed54cf91ca7a857476827fd35965c779

SHA512
968a373095f688e296ff0f1721b0b329eee3300afe2bfee1b800e670f9401b53fbcbe819f7702d230ca1a44e3e20a0bd8ac63327dd944c26fed12187e6e5b37f

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
26fc2f0d3a6e783e975960b455ca223e

SHA1
025372bc4382c27d6fb55d1eb02e8360eae49e92

SHA256
2595583753551924638b88453b2a572476dc255c2a5631e58fb3b5af9ec8a211

SHA512
749507fbfed5ea96e0fd707189b7c4935534cee5c3779ae1fc600b24a1c5845f53de95e8ac50954810e8d685c8bcf61199b177124b269089958d0a354c27a9b7

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
002f632eae2b4058b65f9827e98c67de

SHA1
d6cf3f0af9a1ee4965e684f1b26faf2fca4c877f

SHA256
6ca17c5e73a3b509c3e63a6faf7d71ec129911d528cc4a42d1d6e3d4aea86de0

SHA512
0f1cf891687b7ee6b211042c678113968c0561712bb9c8149c93652604a964487e5db4b8396e4022c51da8b0adf2456fb759ec0acd8bd6ed231f8a67a18c4805

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
31d8feb647f70d40b436aae7fa47f608

SHA1
392eda5d2001a3d1461ca305ec1d98423f5e6605

SHA256
506b489a2811379ca4d01b32f32391d9d19a6bd289bfdadc5283fac832c6d950

SHA512
fb4beb184d73e2cdef7aa41ecd78709c172bd63c3bfe124e34d1c826289799905739a0a07d51fbca4a1f68caf1509c9f15aa23fdd21ed0ff3fd085c16e66e2c1

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
1b49518f19b8df2969b7792d08528355

SHA1
dbf975dbf26a3d2903394ba336c6e152eb00bb14

SHA256
972dde5c7cbea25b787f67ab47c6c8495b7976ea7a10d4ba143157e496548040

SHA512
a4185b5c772f625e98aa163c2dfbb19db77dc78029c02b0087b87f409f93f761cab85217eb7267714a829b57fd25c8fa576bf2342ae1c0698b28b908af5f3ad5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0022304627a57f2e495f293ebc14d510

SHA1
36fd08d8cc96e1662458f50ce6539fbdf2f90509

SHA256
c79c2b7d6aed88e258b6a1ad76aa35135ebc51138b43b48dfa34290c791c1d92

SHA512
646b1c8f403ab39032fd68abc10c6a8e9c97d113ac4c6403b4d2dd35cbc0b1c1d35b02358925cfe934136a2c3e4c2c923d8edf7a00ebb84ed2275660d476a3f8

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b50177e98dd4e0df746e3e0e2cec3a23

SHA1
0534869a8e1ecefd1613c030caa2967b972dce23

SHA256
b4980eae325c19ce0e5ad50136cd43387d27befa2906152e3d22ad90d2add081

SHA512
f77d2093c94e8f600d97e37273550c838f6ef3fa7f696e18730b750b4d08ac850cffccbf58bb2e0a885ff4bb9d7a1b36124996d1332d622ad9acb78c8c4fa9b8

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
910e459f6c61c0b6c3e300c6fe3f027b

SHA1
36429a3196fcd449ea91d6745f7ba7214f3eb02f

SHA256
4bcda98f761603412296fea5a2d12e37f4f783e978138f10238f99decfbc5649

SHA512
6052b1b2b387ff36aceb2eb6d40e1ef9f63d3f64ff54866dc8be1f5302f36ddb991ce3f6a6ab1c7af51f2e91616f55a2c6934f260df873f589c7ce026b0f68b8

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
5c1d0e962c26fd0a1d2e7cd3414b7760

SHA1
b68330cd351c6df12a76d0e989505177e325ce47

SHA256
33a63ee83a775a2c8c5f5934cee7431aa909fce388a32e6f71f462e3f563627b

SHA512
eddeee08be6616692c960581068adc972012b61bd4d827db17b09b4722b93841225a373ceb6e3124b3c9aa994f756f2a7292e00ab1d4519f2b1a1366690a2039

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
14275fbca245a0478955b2bf47d88a1c

SHA1
33348308c2e7342aba53b29cb7d64e8f728c49a2

SHA256
6d6b2d4ba4e1fe5bd9e09907a1ca8292d39ff491721cc7268d58315da3e8970b

SHA512
fb4a3c3fca14ebbbb7a7ca4efc641c879feac7df9574fe24a6c13ef6e00237e0c06ffc15eff8a045a6cac8128d8d8ef56de600f8c3895bba325eaabdc3dbc8e8

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
1dbb2b6799ff4fc807e6c5a55056a06c

SHA1
6361855bd8897b363a9c7abd90842793892c155a

SHA256
ba15708255e25e3a070927ddb7d09d61b118f594ebc08931c9bb7a77695cf903

SHA512
289a49c7e5273899b54626289481d5bba5296da8b74885a49b319b79c4b707ee84bba0e6d1ecd372207ba88ebc2f651554ee361d31c67c464ad4de13e9c340c8

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
2896ba6d142040ac31ec8cab99745e07

SHA1
4fd1d092ef1e3074e79c9b31fa2a99ce2a200db5

SHA256
82f74ef5ac09bf8a9e7f9b1476f7a7990eacdc98d0cfcee6e0afe5f6a2fa8e5b

SHA512
2c8e38294c5ba632160fdd3d3d927219861fdb7dcb5dbb40e4cdbdd6793dd1970ac60fbe8e5d33dad82bc8d8deb554b465dbce512113333f7c22595fc532393b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7b6ca9dd68e1d1867d997dbf50d9fa22

SHA1
678936c82de2aab7db266f9be622e38f6b8a531a

SHA256
d0267d50299f5ac1aeeef733279c71eb58c3b8b0c9b26a5bb76925683ac13210

SHA512
df30acb8d4e971567ae6223b66cfa2e4722b33fe939d8d61d7328c311dd2f85a585d1c1ee803b3d42a8d470bba39bec76ce30a53b028f5c8b52a3d7aaaf4cb6c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
dc64286774ea884dc5016759611d702b

SHA1
c629354726d5328b4d7f11a4af603f8641aa5ede

SHA256
7bb46938ebe5990002ea3a89a6f296872879891807975977d49083711afaae83

SHA512
41c91ce58ff7469d4e0a84b6f62733a4e1aeb9cb4bd3fac730dfd75e13eca06ff5212fecc7ac9c69aff2fa88c98b10b38251b280f629f17f3e9328bc50240e36

Download Submit
/data/data/com.systemservice/files/PersistedInstallation20242174311943091tmp

Filesize
557B

MD5
ed820c31c3e19600a312e293bb6215e3

SHA1
c9bdbf9a55e86112fd59cd44b6083b2b899d534d

SHA256
52b1bf49b3843fb745de21a9aec069c1b96bade1c6de0ca938f72d607f00c90c

SHA512
ce3faef5cfedde252b5f1549edaf15cc106b29017ef84f6e16bdc559be0338918e5054b4d61f6ff7f456d37271b6af071eee4397592f134e0c8a59db9f08dbed

Download Submit
/data/data/com.systemservice/files/PersistedInstallation7105366753892299773tmp

Filesize
90B

MD5
4f6c034cd41f2681777f37c957f67e1e

SHA1
1ee860b0ed045e91c2b51eb03ee172275ab05b8f

SHA256
6cc8275d4b5d6ec69919f0383542f3c7ce3e1739b67e64417256aa8fe6ed4d0e

SHA512
b1fdabd5a735884d33bc30e49756c35c401c8904f847dbd96b58e972b6acfa41e406ecae08526820fd213f496822ef0ca724bb2119e5fef4252dca3421967261

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
4c0bfaae8809417290e60efc4e651be7

SHA1
10c3320e365202f1e9c07c14334e7d6291de0e53

SHA256
29eee46f8ac9d39b6d09a2ed61be2b72e47d613846b6aea4d64aa0b4600453fa

SHA512
dc070414f07e4ca0dbf450829725e08b11cb0c3d303a7a0dfc82f1b711ec2a84d3151d0ea39c40da273ab835666a4cd0a7806ebcb414a3ff70cff6e1d9158e85

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads