4e609c2edadf166dbcb5c492e48d8169d5a36b09a3698a1ef27cd681e9f36f1b

Analysis

max time kernel
144s
max time network
134s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
15-12-2024 17:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

version3.2.apk
Size

3.6MB
MD5

86b9be3dfc022d5b4725756c0cc5a02b
SHA1

e899c25a2674f317b8327682553ecf6a9f436f94
SHA256

4e609c2edadf166dbcb5c492e48d8169d5a36b09a3698a1ef27cd681e9f36f1b
SHA512

ae5798ec1e65fa91adcd73d6f6dde480e1180725e1b6c60aa4c4d1e10e2aefd890988d5f93ea3fb49c689d67d024dbf95df0ca20f8547b70662b7a063b96aab1
SSDEEP

98304:oK4MrIdrbxVoPs14H9xx6eDo6ddgwLOKTQdGd:oK4MrIdrbPoEwv0I7IGd

Score

7^/10

collection credential_access discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.googleFe.app

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.googleFe.app

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.googleFe.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.googleFe.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.googleFe.app

com.googleFe.app
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Checks CPU information
- Checks memory information
PID:4459

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.googleFe.app/cache/1

Filesize
50B

MD5
ce2caab3e836f88c7e999792501e8013

SHA1
a28a0d6033576cf12aa39c17e36dc94395fd2f56

SHA256
521a6d6c7762a72698cb4e37773309f3b015773a72b40c53b0b015c6097bed9d

SHA512
21919dc956c0b0e7259afd887edaf1f014e85905b11cf579a7f9b2fd59ab66ae10925d2ddc01a3d2aee6fa9f218b1606526ed821791257f9905b47555cbebb84

Download Submit
/data/data/com.googleFe.app/cache/2

Filesize
34B

MD5
c76013d165ef454e96824b1f62118c7f

SHA1
f9e0cf89bcf722d7204165ae26c131cf01cbff28

SHA256
9890e8131aca75cf93d9b0d92da3c653ca25768f93c29dcf486793de952fa142

SHA512
9b5d264af7541b623e5ab1f1fc96d572d5cd91df876351b5941646045bc3c268c10a822c6134aa8d25d81daf59e957a6c54d66757f3c7d2bdf60755d28d78b47

Download Submit
/data/data/com.googleFe.app/cache/~test.test

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0a29951ae083fb5d89cce7b3d162028b

SHA1
324c6648c4df2d544d01a53f70e1219e363f8603

SHA256
823f6dbdd2fcf5f3e1a7259b7bf7f7747e190ce21e997c8aefad85065260bdb1

SHA512
cc271e8daf455fed7451cde7ba721fda0a52ae28b016a60a82290ab99408e129a20b4c922feef034386408a438c112681848e7a9687ac333a1acbb7b99c14efa

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
645ac01e736ab5a949fbae052db8b9d7

SHA1
8b9141fd94e493d453d971ef9dbc028339fa32f2

SHA256
32f314c8b2a9bcf0b67b50d914c7b24c898a0adb6e9631cbde93ce0ee7dd6f3f

SHA512
9f26ee0c7e9d26ea880e8da3871c304aa9b809f8022483ef14f46603ea7047ccb38b959e7ad9f46005a83173a80bd4e19d20c49b71b598cfef313943af8c35ad

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4e803a94cfa13fc34d5f80a242e37f90

SHA1
464fb2f08e4cee9b1b23c62a7e9501f2993d2806

SHA256
c3ec2bcb435d8d00a5bdb8004424baf8c102384fbcd4957a1f8d18fea3c35c73

SHA512
e9f8492c9e4024a46d0c8dbbfbd12b31d193958778f51ca11e887edcc76c35bddaa358fe3da57ab00de625905aee7bf53f62756c5ff51635ed3cca33329b3a3a

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
6b43af3d45cc22f839a5b0031b4d5d63

SHA1
bc83457d378a2865e84933bc01408d71ec171461

SHA256
b5d194680d4609905cf3fed5c12b5b6d179b5134d5502a0303f93fd5d72d4dd9

SHA512
41768f55ff1ece236c2c4b7a48f0a198b91d1300cc10d9d0cedaae9d86984369cc49eeb41bbedf81401f50e0575d1333c4c673f12f0d6c11de421b985d4432ce

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
de82e2c94d2718988804b035a46d17b1

SHA1
705f5ff19093ad209f2a666085d6ccaed3bf58a4

SHA256
29110e626f8f49171d14a819b34492d094120f21ed7a963007fe95439d771d39

SHA512
68f5f88e638e76cb5036dad6b320896f1735f64067ace152e0baea81e9ea0d153559f53bd5c608b397281369dafd14c5f5965f92f567dc89db157414a699023e

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
000dadb2de9898b081a49407f196b070

SHA1
93d1b9bc31c1308b125bc3d3000114345e6d81b6

SHA256
292df2f0af04971a9686b889a027838cb983975997f15cde17cf04ae1b561058

SHA512
a5362761b3aba0bacd1536882a9e261de07d41fb3e63611b0c7184490fa4ef027c4dcd91f42fccd64d1b1c6f7470f31ba06eeb6c45c3ea291550975eef2b5869

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
8d17b6159c69f888066443889fd70535

SHA1
b5ecd975d591e9633c54e93e16593a08aa55f3ff

SHA256
c2f0bbf4ba4ab31f9ad5d2ac820019dd360da1e607cd36c3b3a8457a882c446e

SHA512
7533ad61e00101cee3902b65803bd6a5112f4de794e2aae885104a1827e64fe6b020210cc48ef3e2805bf17a955e9be0501f7b8b9149625ba7510a4662a0ee31

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
004f6795b8a87bcefcc4ef60177e12a8

SHA1
1ac5146166a01c284def55ee704e251806fbbc18

SHA256
f3ac7fc22af131a3dc0943d007776385606038c4ddc605b6f06dce6e47519db5

SHA512
853e50e312f081c5d319a7741c9e2f4d4ee0fa5286379adce66fc799f450354b27917a784e200a83791ce11b6c58dbf9a054cee1de5b96aec42a41979aae6025

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
aa3bda2457e7b13527c6d4a662c887cb

SHA1
701799a2d51cc3f59bfc3f888195ece8577174a4

SHA256
ed35c0afded4da4943027eda7991b9b8646a3e21c2ad7b5134209eb80faf380e

SHA512
e2415945e7adeebf97b48d3a099ba37a5a0bd0571b418f9403fbf3d130b9369f87d0fd27c6f50ecd77ec3853cb7ff324c36d3ce8c8959abaf55225eb920965c1

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
e97fe0acb303648589f9946a10698535

SHA1
2a7cf008c1cf0275238f2a47b234822660c3d321

SHA256
4f02628ea4428eda5f5b9ba9583bda797173244245989493a310e4f40230f6ae

SHA512
c8877e4de6c5c22ef70099416a629aeafb00f3222ec7db8d7a0487674433b4003ea5b8926d048522e10e263c97a2253af6946596a036ffe2c9ff976da3922e05

Download Submit
/data/data/com.googleFe.app/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
3755b5c5dc819cc2a04e8e8cf29e3cc1

SHA1
deed95c4737506c77c893245b131f4ec1360d748

SHA256
7c4bd40a08d1af4068a0832d6d6b6dd6682c0c4f573757d46b4ba9c03a9e1ec0

SHA512
c8ad370106d6887ab36af56a052914cca804254bdaa723c03b24ddfc783bfcad6b38d1795274e82c4f5a655588ce4229822b271e35852ec83d27a300e01e56e1

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation2183481474458326428tmp

Filesize
569B

MD5
09093459bc90678ac41c7c103f1979b0

SHA1
a05b2cb5de60caf2c7627e617bc457470b9b3544

SHA256
e54bf5f83884c98c254a9266d428275fc2841235c4e355fe7f486627034a3754

SHA512
cebf276d1c395e5164482b0e9dd061bbd70ea8b88d8b31c11ed9585c73b62b9268e67bd5da6e7c0244ca5228bd66a383bf2e01796b3950ca5863d263858a6046

Download Submit
/data/data/com.googleFe.app/files/PersistedInstallation795644168837907978tmp

Filesize
90B

MD5
e9c4becceeddd68a634cb233b7774555

SHA1
c5fd525a301504bfc6585d7bcbf233e8f5e8f902

SHA256
b59c1ee01160d313c3b17d35ea948d5abdb301c3642422ff8a6f662ed5a9dafe

SHA512
4b8471824dd953dffb745978c3fc67f5c90ca4f1484ae17a4d0105e826093d6e27b92dc56fd8d4408646322c5f341d4a49bb8710dbef912217d44f47a70fa694

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads