4e609c2edadf166dbcb5c492e48d8169d5a36b09a3698a1ef27cd681e9f36f1b

Analysis

max time kernel
123s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
15-12-2024 17:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

version3.2.apk
Size

3.6MB
MD5

86b9be3dfc022d5b4725756c0cc5a02b
SHA1

e899c25a2674f317b8327682553ecf6a9f436f94
SHA256

4e609c2edadf166dbcb5c492e48d8169d5a36b09a3698a1ef27cd681e9f36f1b
SHA512

ae5798ec1e65fa91adcd73d6f6dde480e1180725e1b6c60aa4c4d1e10e2aefd890988d5f93ea3fb49c689d67d024dbf95df0ca20f8547b70662b7a063b96aab1
SSDEEP

98304:oK4MrIdrbxVoPs14H9xx6eDo6ddgwLOKTQdGd:oK4MrIdrbPoEwv0I7IGd

Score

6^/10

discovery persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.googleFe.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.googleFe.app

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.googleFe.app

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.googleFe.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.googleFe.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.googleFe.app

com.googleFe.app
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4318

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.googleFe.app/cache/1

Filesize
50B

MD5
ce2caab3e836f88c7e999792501e8013

SHA1
a28a0d6033576cf12aa39c17e36dc94395fd2f56

SHA256
521a6d6c7762a72698cb4e37773309f3b015773a72b40c53b0b015c6097bed9d

SHA512
21919dc956c0b0e7259afd887edaf1f014e85905b11cf579a7f9b2fd59ab66ae10925d2ddc01a3d2aee6fa9f218b1606526ed821791257f9905b47555cbebb84

Download Submit
/data/data/com.googleFe.app/cache/2

Filesize
34B

MD5
c76013d165ef454e96824b1f62118c7f

SHA1
f9e0cf89bcf722d7204165ae26c131cf01cbff28

SHA256
9890e8131aca75cf93d9b0d92da3c653ca25768f93c29dcf486793de952fa142

SHA512
9b5d264af7541b623e5ab1f1fc96d572d5cd91df876351b5941646045bc3c268c10a822c6134aa8d25d81daf59e957a6c54d66757f3c7d2bdf60755d28d78b47

Download Submit
/data/data/com.googleFe.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
44e33d77357b7cbb0e4ba72f07f5a49a

SHA1
ec6a19be89893625cbd1e70221ef170876d98c65

SHA256
9f42d7413c1a483ec4f0444f7e72ab7a876703c82d99a27db1ae9b05e92a92c3

SHA512
c29b55fdfd749fd56d2e2837f9fb735f7e3bd70d3a98fc34afffa9e9f4551af8e3e3456ad5a110217bc13a35425d53051e010a9f32d3b11a1c39e9eecb2067e3

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
47383a01f1a2a99776b7717362ce2540

SHA1
a693e4b4498fd1ebd6ad156e2ba2de0132547d08

SHA256
2f50302abcff7b3d5d6baa8f7036ee509104aa19d0ae7a182ba3e1a59e1985ca

SHA512
ea61191c6361c38a4468e77188e648d2f6be13b6744c4991f4a5da81d8cc8dbb6b5011a0e0edbfd98fbb62787fd216ed98a1409831a4d43874faf03c47f18d45

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
cb0f092389e55ecc66a979292bd9c45d

SHA1
2cb849e98ae0fa775cdb41009bff5b6050b6fb80

SHA256
0329051456cb6525e8c313f7c37ad7721b3bb82ab57d6d2780c83c514302c234

SHA512
31d3fc470734f5a923863d6080648793f671f88df9f6543853f8155bf506795c10cf9eabe94c1c104993f4202e47fa59713f079f8e99cf3e3e1f02898628d598

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
44450908a674b2ad5703f9db4f34796c

SHA1
d56ea23e4e47047d5ea2495dc5978b51d01f38d9

SHA256
a767fb824a8ddeb03949a0e2870e18371b192982538abecc754e28cbb15cb647

SHA512
bdeed76eac285c4626fb8841e78e2a2ca5e7b39224995e6f9cfb6b74893ea8243ccd4a6f81e8b3832e24a0cffa2f1c51f8cd1f65412770f61dce46f0e9ede630

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3e881d9a01ca707bed38018ac69f4518

SHA1
5820f9351d7cc8082de6e5686eb9f8fedf6fb830

SHA256
4a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c

SHA512
8f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
da0b59821fa697d1a61be14707f8cce7

SHA1
4e2a9e00354839db4210b85ef61016339f7189c9

SHA256
f5e5662707b8dba7f4573a154610a1721f7d5b36b57a5e69b792dbd6a902438f

SHA512
840c13d2ed70bc1f59d1feb5a6e1bc5a1835bcd7e4d28df3edf4e83b44c9b8ad5ec0bb3dd89abb9a8ffe92e7707b2db673d29422a8d94102c8675583c4d9067b

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
173cf9ce50bb2ef5de87dddf249c0b6e

SHA1
1764b0ab780f458c79886da28ddb28e4b6cbe8d7

SHA256
260e685ffa4052ed53a91e5d3d9fe511e8ea1de24e1217bc87074b433de05fc8

SHA512
6adab1be84db4e72a8ed36e481391c8395c7b849f8620f50b0cea6cbb74e3e4ff93d7a7c3ec2fde5c6ad20a4bf9dde69a34c67f6b43ca40c3964d224ab30d778

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
e9d5e9275f4d8df8c4dcd5e7843a0bca

SHA1
dc410c1c33495320a7580a0631ff542be40a4850

SHA256
5def8852a50230c5ed44faa232ba0e53e9da704aaf9cca7513dbab67c5abdc52

SHA512
929e9aaf9d4aa156cfd679ad03a3dde1650449fc7edced7cf6be83de75e35bdb09f341b45916181fb37a2cb131988d9741d76f08d6fda86af8e578c59ddcbbc7

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
0057657e0d370a8e2355dab00362e295

SHA1
666ed5f55eb35f71564419fd0e4198ec09345250

SHA256
0a603465ebf01f4f2975e0e0dd6f99664e64f309c53139351a0a78e935e076ca

SHA512
7b32fb5a73cb94720bf11b82bbe2d793a23e9706f188da4105631cd8515af45c310c7506754552b005c95b81a3ad19bc59a91a677a7fd0f506e3d0eb03d63dc5

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
3a5348fc5d63854631e7ff030f44d3c0

SHA1
b79dcfd5eaa8cb4f7de4b0671d918aadb86504e1

SHA256
502f2901d915e883192c5ed4d5e23a18d6a0ade63f6d54308e6b17b2147c93c2

SHA512
905f044a47f0e244664ff52025b7ff7f46b571a689414b01efb3898629d1b0f5f0420a56a038045e493c4ab7c70678d79ac1be230161daf2473c02a4cf277680

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
8d19ee7690dd38808fae7a1da2d57315

SHA1
85e0d6bfb20fb33427b002713682feb44b931dde

SHA256
0b93bdd02addf49514f9625bec52867166fba3ca594a51dacd18b8845245a583

SHA512
9b18fcd46528b9bed3992583799fe90808cb3930508ad2a449cc027ffb43b5b27f3a1534839750eec31fc755e6884bd79efcb39a0d8d7258f3f6a5b7bab154ac

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
ee5ef4b2ac31cf8e24392a19fe1df891

SHA1
62346192b0c14dec7a4fca481c852fb669509fde

SHA256
103969d9b1f08042937501f62fd737a31d82b39481b1766c20f874191ab007a0

SHA512
edb37e6e2336c25ee153915bce93f742f66176c875a1f1709b60cd696e462eb86a3e6c0bbd0381566878bb6607296dddbc2bb29cfb21bdba3a603ee5ac2e8c78

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation2411827163495257637tmp

Filesize
90B

MD5
897b3d023688ba8eb5a7e0c9d53fbaf2

SHA1
0ad264a3be51b416902a73a7fa248ba99ee4cabf

SHA256
4ae70a7899d34fd235e523de3ffc88c65ddf92847e30ff57becfc98615c0731c

SHA512
7e5277a3a7e4cb2b338b2cfd17990fbd6f3ad32f624cc74a5724bc91b3f20e84cdff482aa8409b3a25eb71891dd6f3f068a8823ff738bab86b876f6b0091ddaa

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation603090349174991113tmp

Filesize
569B

MD5
1c793db3fee9dfebf137578aa7ccab4a

SHA1
310d6099ffecc4839e404db1ed466ea1a055e0c7

SHA256
077a527b9dd13ea633ea897a8b8111564aa46d2e022ea5296a6bc71811a992bf

SHA512
c60c3129e61d6fe9ab0ab7db1eed13fe3ab57bc6cd36f07ba60c3cc07fa84789f2a695c525af7b7deb0d44fe8114e1c1090e58be05ea837ad16d4999848645ca

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads