92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
127s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
16-12-2024 02:53

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker collection credential_access discovery impact persistence

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.systemservice

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4246

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Clipboard Data

T1414

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
aadcdb57b87b56374544b54cec39e759

SHA1
8f93ddcf86e1a0793cd1fdf310c255d62a87d1c9

SHA256
3c1f8d2934bfbab4d76c6b15f5d56c324b210a62e83f0a0d656d3f24f0dd9a4e

SHA512
4d99e4af75f8cb7d4d135c103a95e25b1c0f6be7359e1771af91c022747596c9aa18dc057bcfe203f52f9119914d3fadacf5d606c6b349f20082f2c69d3cad1b

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
41e9dbd39914c9b92750a25e8a1be9fd

SHA1
67f1fe72677a26a0f7888dc77ee9dbfc02135e03

SHA256
0976673077a87faafce8ab32d8380d58ac0497b7daf5ee7e9cba893d092d63e0

SHA512
6f5fb527cd7bcfe89a85f34561d34b4d1eaa55f855e98e6849887110d0c62db36654efaa6c64d4aca2c0beea81d43f934edc3d5b86bcc5b99239dbc3fb77a6b0

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4cbae1b78798c54d37d5faf058f7c6b9

SHA1
dc5d7c175a71dfd9034f8c3cbbc6fab1b546d22a

SHA256
6fd791682e31a457f9daed7f7aedb9d4bae176dceed12b0eb6df6ba4dcff4884

SHA512
58225dd5b1743dbc9c947ebec38bb6beb1069bd2b7558e4c9e312ac758c40593699fbb2eca163a9e1f3aa0874058e06ff271c077c352e92cc33f7e89b16e2b85

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
af6f78670d5b812e594d7d33daf9b923

SHA1
d845d09af1a2db1742eabf9c2be7138bb10ef00c

SHA256
af3a558c95f1940f29da8cc6eb5f90fd4a4719cea28157036255dc8a1d0558c3

SHA512
d0908a58c6ac84ae32abe39869f3d72b59a5ea678e69eb60415e60aad464b56db36042bab3659326637ba8b0621da5fdfccb14e012e19e8f34b1c3aeb9d50df6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
10df75de77b06b524c2ec78504179f67

SHA1
3139817a56f0a55cce20408af870e0dad25f831c

SHA256
3690140e4c4c067abad8c238f132b109335f592ba9eacc190ab04983c83d7546

SHA512
625fbd7cf4f1603e7d26024cd10cb7e164faaf69383e53cfaaa1704fb929c4d6c0231c1474b06483a61ce30ca87322367dfe697eb138418bfb73997e816832a6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2addd04bb18c5cae68db31c3fb8bd1c7

SHA1
a4a8b7ef38b51236a2de3a638d60db3f3f43867c

SHA256
6175834600eaf3564c7dcd614be84b928f7fcf7baf394d236f5c55411885d11e

SHA512
a4659e015d47f2ccd74b9b7be23153a732b50f8241581dbd5da9197ee1a24b52a89aeb903943699dd47701e432c57fd2bd09994fe07a7d9c49de473913123005

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
835cfc7decf507cdc5e54f602e3f9699

SHA1
4a55d424cb32e766554672cb2d0b3804fc47552f

SHA256
29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

SHA512
2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
11be3d013abaa054a1ae4d63153c6cf6

SHA1
7dbc312ea5e4812779a315a269f8e96ee37cb4ed

SHA256
3a3d3de27416903ca1e9b348dfbf008a6d4be13e6b9bab19f4f07f73aad0c915

SHA512
ff2b15084f27571ebb235662d299c1ad88e170889ccfffbcec4ac2bfd9336cafa95402e641d9c1681cc87b6e9fe5def0e394e6d07e2d599c95275b54615f26b1

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
50da3b8326003d4066797f6073be7438

SHA1
9c9110c1f7151be0f150cd5c98ab5817775e730c

SHA256
d4509695f8228bc953e68480c5883b9fa5e7850c404ec7e6dc2f3a17d2b68093

SHA512
57ca84f739921f5e599a919ad0f941d79564b213d1922843faf5f20e1c1c68a7339115627176efaa4f48e4cbc441d19750cd47dc837416c099e84933f267276e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
898613ef49880fbaa5b1a32a602e90ee

SHA1
463f143603c92ec946601aa3ecb48e58cc978f2d

SHA256
639384549875e84d8362ab81263b5782bba50145d28586ea07ca0fe460abd6b2

SHA512
fc82071c3248cee2ccae90e54dbf9526984bd70d518d805e8b7e61d4f7a5a5a72d723c2e600f074971271ed8f87f62ebf6a1e222056affdc28c1824c274e387c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
0fb351a987c90a93a19fe1e2614d1137

SHA1
781cb5864bee7b321285833102f9063973ec2e8f

SHA256
77abd930e793088873dbbdf8450195f6c1b0ad021cebee872fb8e514699841cf

SHA512
4e7451911d7cec55ffb97a4661a9913fd4444a9dc71791d3b9079c53659483b9efb52c9c9de18dbc7f1c088d574a34dab34a93637c4106a4190640c2c0401c7e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
f734a5bb3e216f98adb6c6598a53a8df

SHA1
b985f39b34cb4d123d7e418e43a50719a7c60c51

SHA256
5c49bc4986a543507bba910d8333cb681a25aa5d246c7f900565e4ad60bc3a58

SHA512
1ba1f913c28d0d6f73cfa64206d02082543fd5d1ecc08cac9b71751ecab8aeb204b5befe059abc754653bac6659492d40e9a8d35e3886f7eaab63e79e47d8d44

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
012fdba28e17960039259b7bfcc46938

SHA1
caea33c180a0803df4e5a0fc4e4d29967ea30864

SHA256
d1cd03ade6da7db4ee69fbfdad391a4a3c2a580852d02a8c4b249a072b00f01e

SHA512
bf5cef00ac1fad451d0d54f8abd4af74722aeecee68404c69d40f45c337ec1e0f177fc5ba2380170d5e3feeed3c77fd0fc896608c74db9d3d6de2cb4bcb32d18

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
701bb9c10a74480df676c77a4eed2db5

SHA1
007862890ec6a8404d8e2912d487417020f3b0f6

SHA256
7762b96ad604e41d5cbebaf23e76b869698ed30dfd0bc209ba3b5ce895aeed66

SHA512
eb63aab78aa0e0ca24e65cd452f27e7e5987de0e0f2c9ec7857f3921f3f7d862a3c2c5be7c03588017f55f5e31edaea6fd176f4e274d467d83c24bdc958f2ffe

Download Submit
/data/data/com.systemservice/files/PersistedInstallation1902057154311953619tmp

Filesize
90B

MD5
9e0394283ff707e554d27f0de0291001

SHA1
2b36c12e352e2e67fc131c608003e5111ea4f5e1

SHA256
6ab1efc1e79fd03d721da973d059dff4ec5da88c8a55a49566054534a61a81cd

SHA512
0d3d6dd991496ecbe15269520de2943be3c026d4e887e5e7b0894903abf651752c640555d0f91fbf72d26ab44ec997cd7e735b94b5388c05e6d4ee0d39ed2d4e

Download Submit
/data/data/com.systemservice/files/PersistedInstallation498411078969598981tmp

Filesize
556B

MD5
87df941d9d32ddc2067b67d412b81b66

SHA1
7faeef3bc8ece9aab5ec388703b22cf36b142d42

SHA256
8b2054030c8d0a952d0ce945f809a0d645d2d3d6bbbcd4c992b555cb989ed39d

SHA512
ddd1e309a9bf0cc35aed6fa573a8aba7e076c066455ebba1c3b423c9f7b837a8eca03169336443e9f8aa01fb16a7b5cf04e438a3c110260df76080d0b04821f4

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
e68c4f9635176c925e16c719c666936a

SHA1
5b0d24f6ab2fb9820b376ca657dea4500e47ab87

SHA256
021ef0bb57495638ce05fed9d56946e491a2a196b566242bc4c30389434af0be

SHA512
9669a9ae7f0567337d32ba1769bbfe2ca1faf27db8d1ad89fe8846124f11794e48122e310b5e96e38706bc5078589fceafbd232ef44f6f73c4075a4a7c2fa624

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads