4e609c2edadf166dbcb5c492e48d8169d5a36b09a3698a1ef27cd681e9f36f1b

Analysis

max time kernel
123s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
15-12-2024 17:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

version3.2.apk
Size

3.6MB
MD5

86b9be3dfc022d5b4725756c0cc5a02b
SHA1

e899c25a2674f317b8327682553ecf6a9f436f94
SHA256

4e609c2edadf166dbcb5c492e48d8169d5a36b09a3698a1ef27cd681e9f36f1b
SHA512

ae5798ec1e65fa91adcd73d6f6dde480e1180725e1b6c60aa4c4d1e10e2aefd890988d5f93ea3fb49c689d67d024dbf95df0ca20f8547b70662b7a063b96aab1
SSDEEP

98304:oK4MrIdrbxVoPs14H9xx6eDo6ddgwLOKTQdGd:oK4MrIdrbPoEwv0I7IGd

Score

6^/10

discovery persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.googleFe.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.googleFe.app

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.googleFe.app

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.googleFe.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.googleFe.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.googleFe.app

com.googleFe.app
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4254

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.googleFe.app/cache/1

Filesize
50B

MD5
ce2caab3e836f88c7e999792501e8013

SHA1
a28a0d6033576cf12aa39c17e36dc94395fd2f56

SHA256
521a6d6c7762a72698cb4e37773309f3b015773a72b40c53b0b015c6097bed9d

SHA512
21919dc956c0b0e7259afd887edaf1f014e85905b11cf579a7f9b2fd59ab66ae10925d2ddc01a3d2aee6fa9f218b1606526ed821791257f9905b47555cbebb84

Download Submit
/data/data/com.googleFe.app/cache/2

Filesize
34B

MD5
c76013d165ef454e96824b1f62118c7f

SHA1
f9e0cf89bcf722d7204165ae26c131cf01cbff28

SHA256
9890e8131aca75cf93d9b0d92da3c653ca25768f93c29dcf486793de952fa142

SHA512
9b5d264af7541b623e5ab1f1fc96d572d5cd91df876351b5941646045bc3c268c10a822c6134aa8d25d81daf59e957a6c54d66757f3c7d2bdf60755d28d78b47

Download Submit
/data/data/com.googleFe.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
199c87c8737d557c4dc52793222ccb50

SHA1
a9d20878a49927bc0fa16f60725908e98943b707

SHA256
6336e279ff433314364dfddcdd1a85569dc62404255f1ad7e376d4c3d89580b6

SHA512
4dcee4afd14d5c786b6a20e32667cde2795e2aab0a1bcd87e174eaa57cdb9987a85c79283461d0b69ab97a559df74bf8f3301c344e2cc579d669534fc32981bf

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
6ce767f2b21264a1d05450a6c89eb7e1

SHA1
8deee629b9037fcf741e3f7fa705f5c05099163b

SHA256
21a401c8dba53fb0243bfeb652632cdba28cc2e52001a79bc17e1e4fc305de47

SHA512
529b38b155d6d78ac4441785e9682bc5ef2fc71fe5ef5a8903103f1500df2dac6a27b5bbeeb83b0fedb334975873e9bc03399b4f0903e9e636e1b21762a68bc1

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
51fd3472d1c299ae4b83b087a280cf85

SHA1
49bdc42d4572184a339791efc9c05fd27c8fe7a9

SHA256
f2c3c835bdb0c181c6d4279e86b0de33ee195cef8ab5fdff24aa07e3cba19610

SHA512
8108e7da0404cbe81055be6f8e738cbc51fd1e65b25f4c7872cfad22a7e1cf42d904e8ce80decb536495c3d69456263d97cfa79375536f9dcf2e42a656fd7670

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
cbe23b922c0e591a81960c1f935fcdfa

SHA1
9d10de8d79e1df38e3bde51f9e4a0f109da9da0d

SHA256
0d5e0427a194aa12a8c5648bcfb7f637fdd751dad11570e9c4ec57afe2d85c84

SHA512
c0740377c6b39dd48d1be4ace11201a62386c0be487b3b1d82b442b764175083090a71d0b2c5abbc8797b22392b1f0982ad771578bca097dd31625419129ac53

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3e881d9a01ca707bed38018ac69f4518

SHA1
5820f9351d7cc8082de6e5686eb9f8fedf6fb830

SHA256
4a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c

SHA512
8f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
6b947d9e987eb11eb8b1540cfb489048

SHA1
3a94e9905c953c3291c0126b54b31f2fac87bf3b

SHA256
8862ef1b7ed5f8c6c01c161ba03082ebdc74721954e704d3e5accc0f23a15f79

SHA512
4817c19abfc7f60fbafc75cffda4e7f2efa6a6281e3558f13c3fe9767d6a9d07fdbe672b75bca1e7fa852bfe0a8e159cf51024eb4c0571dbbd19df409f638a00

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
16428044fe84e6a976cdd3a5b3af40ed

SHA1
802805bc61c8642d862228061f9b8d7ad84c35ae

SHA256
56d798ab6242be1fbda98520b0ae05bebb8f6c8025e030e150ade14bbfa7b46e

SHA512
48d027c193454aaff1b2c062579a2b1bfe796549651749afbf32d9e7c98becd6b69123364bf75a724aa0914a9c56beaeb319efa5a37b094570ec7090d1fb57d9

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
ec889d1b6501f1b8337a9972201226e7

SHA1
9f327b05784be7bcd522e86cb9e84f089e68b9aa

SHA256
8829d3a99d7ccefd1c85100256099480a7082c328b3376d114dfb59137d27a6c

SHA512
70ac26ff407621b8eeac2ab5c3a6877a5a57e43dd4acbe01faec5ae84103451eaf0ab029081af3d42a3506bbf3dcdf26ca1a76c0f73d8fd585b8d204967f0b95

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
275347c3976dd3eb53b701eb6bcabb50

SHA1
78584654c5bdfaac2d210cdae8e2d9da089304ee

SHA256
3edd033bd8872d7c6aac65b011fb7626fc3db4c6d0310a1754d68254e93d2c08

SHA512
94a75b3f526b615b3f3f5ea0631cc168e279010e6a5cc9badb5150f225bd4b88d6dfb18e9fe862b7f9cd29358deef34670db3129d5914a2acbb22414bcb80a8b

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
89d1d293a8ff8b0c189aaaa8c719c5ef

SHA1
d5e784e4bcc3a8a5057d787045ef2ce914c085ac

SHA256
b6bb8a411a9882c77968c872d62241064790d4467043b5835d48eac7d56df5a9

SHA512
30bcfc189ba85bf294aba4b8d69fece67259d30eca56545fc750b6d8132b5e98fcf81d11a34ad9340d3e77f4bb8ca1b36c8e23046da6360511294be7da50bb08

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
1f954624ce7657818c9f062563ed7cb6

SHA1
555a90e89f4ef303e11f1d85855dc452e9832488

SHA256
8df7b247dd21860fc04ee86f12b8be4083126d6d68e0de27f395a6b8517751f1

SHA512
d7e14fa8609b89361624cebb04d40cc855da7e3c24989a48855623ac8317000cb4a45e7329f5253ae31b7088368291f880deaa110ab9cfb3832c0a0cdd8b664e

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
dc99eca66c78f3384f87213cfd2d76f6

SHA1
61da4e4ab1e467e6175665bccd9077765d750071

SHA256
115118ba6507e1d731d911b72b381d029293e76342c0df01cb4eeb6cf280a862

SHA512
22e1e3c2dc547a1e61b2a198446804234a345e7ab9751668dc629d60117c348c733aeba7c1034f2a697f39c8a3a84fcbb3234527b13d01cc9316b1a97bb615da

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation4652683796189192030tmp

Filesize
570B

MD5
e819d0d8088c3efef8b18e276ac17fc2

SHA1
c289aef2af0b063e92f969c2c83f97bd485b1d7f

SHA256
1385950e722bf4bcecf86abc6c0693e2998db11a62b49414d16a744688ccd0f4

SHA512
04161e4ff71549b8432459e7b2a87fa91089b03e9e3a69dbb60d0f7e000fb908cfa97cd0dd59e6c9f92dea142adcd84cd41674ea1005587fb82d364369d5e894

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation8813496258062479951tmp

Filesize
90B

MD5
8d33071ff39aca404259d77264063f3e

SHA1
38bf76408b74032d4e80e15b892943c8e208cb71

SHA256
a50ec8c7cf1aaade5fb6d1db398c0af64605133699e4c896c2fcf3c89edcc97d

SHA512
61e7c50ca74c8c311dffa982dd3e0994ec80eed696d317249eafe40b936efd9e3ded3d8c7db6abdf6abf99f51f9b11285812630e6c6602c0e0f703b553b382c0

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads