Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

6

8c921f8e3f...df.apk

android-9-x86

10

Analysis

  • max time kernel
    17s
  • max time network
    28s
  • platform
    android-9_x86
  • resource
    android-x86-arm-20240910-en
  • resource tags

    arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
  • submitted
    16/12/2024, 03:04 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8c921f8e3f90f253ae8d1478a63ee51c88c7bf515a5387d4a1d78e7e1fd4a1df.apk

  • Size

    4.8MB

  • MD5

    38686940198a72f0a4a2c5683bd3fe40

  • SHA1

    5b045098abcfd7db97cce62e548d93fa0f7285aa

  • SHA256

    8c921f8e3f90f253ae8d1478a63ee51c88c7bf515a5387d4a1d78e7e1fd4a1df

  • SHA512

    3c488abcfb8e462e48fe4c79f691edf5cdfe45ae7e956e7afe7b2d749a3ee4b7e65a6facab2e10927f8801ac46a77b595e87fb34cd3a2a0f612d5ef1587dc5d1

  • SSDEEP

    49152:iRsEXwVvoKY83Xjy45iS7xrGdrSu6pYjVKScohczKaWZSbPe8lUYCmKL4:iRs1vod83Xn5iSRGcGVK3O4bP/2YCf4

Score
10/10
octobankercollectioncredential_accessdiscoveryevasionimpactinfostealerpersistencerattrojan

Malware Config

Extracted

Family

octo

AES_key
1
39326332386133613238663332663233
AES_key
1
37373937666633666464353039356663

Signatures

Processes

  • com.lmfor00_supervision
    1⤵
    • Loads dropped Dex/Jar
    • Makes use of the framework's Accessibility service
    • Acquires the wake lock
    • Makes use of the framework's foreground persistence service
    • Queries the mobile country code (MCC)
    • Requests disabling of battery optimizations (often used to enable hiding in the background).
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Uses Crypto APIs (Might try to encrypt user data)
    • Checks CPU information
    • Checks memory information
    PID:4276

Network

  • flag-us
    DNS
    60d91c4f445ac9d708cb49483f9de8f1.ca
    Remote address:
    1.1.1.1:53
    Request
    60d91c4f445ac9d708cb49483f9de8f1.ca
    IN A
    Response
  • flag-us
    DNS
    60d91c4f445ac9d708cb49483f9de8f1.ca
    Remote address:
    1.1.1.1:53
    Request
    60d91c4f445ac9d708cb49483f9de8f1.ca
    IN A
    Response
  • flag-us
    DNS
    767d8fedc3eb8edc699cf4193af480da.au
    Remote address:
    1.1.1.1:53
    Request
    767d8fedc3eb8edc699cf4193af480da.au
    IN A
    Response
  • flag-us
    DNS
    767d8fedc3eb8edc699cf4193af480da.au
    Remote address:
    1.1.1.1:53
    Request
    767d8fedc3eb8edc699cf4193af480da.au
    IN A
    Response
  • flag-us
    DNS
    f95dc99c0cdbda6d23344382df35ea10.uk
    Remote address:
    1.1.1.1:53
    Request
    f95dc99c0cdbda6d23344382df35ea10.uk
    IN A
    Response
  • flag-us
    DNS
    f95dc99c0cdbda6d23344382df35ea10.uk
    Remote address:
    1.1.1.1:53
    Request
    f95dc99c0cdbda6d23344382df35ea10.uk
    IN A
    Response
  • flag-us
    DNS
    9a43354c94cad9c9b2283a070d8ed998.com
    Remote address:
    1.1.1.1:53
    Request
    9a43354c94cad9c9b2283a070d8ed998.com
    IN A
    Response
  • flag-us
    DNS
    9a43354c94cad9c9b2283a070d8ed998.com
    Remote address:
    1.1.1.1:53
    Request
    9a43354c94cad9c9b2283a070d8ed998.com
    IN A
    Response
  • flag-us
    DNS
    bce73e9d8318296b66946b8f4269c2bc.org
    Remote address:
    1.1.1.1:53
    Request
    bce73e9d8318296b66946b8f4269c2bc.org
    IN A
    Response
  • flag-us
    DNS
    bce73e9d8318296b66946b8f4269c2bc.org
    Remote address:
    1.1.1.1:53
    Request
    bce73e9d8318296b66946b8f4269c2bc.org
    IN A
    Response
  • flag-us
    DNS
    cc3bdca194d506693cc5ddff16bcd2c3.us
    Remote address:
    1.1.1.1:53
    Request
    cc3bdca194d506693cc5ddff16bcd2c3.us
    IN A
    Response
  • flag-us
    DNS
    cc3bdca194d506693cc5ddff16bcd2c3.us
    Remote address:
    1.1.1.1:53
    Request
    cc3bdca194d506693cc5ddff16bcd2c3.us
    IN A
    Response
  • flag-us
    DNS
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    Remote address:
    1.1.1.1:53
    Request
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    IN A
    Response
  • flag-us
    DNS
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    Remote address:
    1.1.1.1:53
    Request
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    IN A
    Response
  • flag-us
    DNS
    8802955b514c48592c20aae503d11ad3.ua
    Remote address:
    1.1.1.1:53
    Request
    8802955b514c48592c20aae503d11ad3.ua
    IN A
    Response
  • flag-us
    DNS
    8802955b514c48592c20aae503d11ad3.ua
    Remote address:
    1.1.1.1:53
    Request
    8802955b514c48592c20aae503d11ad3.ua
    IN A
    Response
  • flag-us
    DNS
    69c8094e70757fb5eb181e8e9658d8c9.info
    Remote address:
    1.1.1.1:53
    Request
    69c8094e70757fb5eb181e8e9658d8c9.info
    IN A
    Response
  • flag-us
    DNS
    69c8094e70757fb5eb181e8e9658d8c9.info
    Remote address:
    1.1.1.1:53
    Request
    69c8094e70757fb5eb181e8e9658d8c9.info
    IN A
    Response
  • flag-us
    DNS
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    Remote address:
    1.1.1.1:53
    Request
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    IN A
    Response
  • flag-us
    DNS
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    Remote address:
    1.1.1.1:53
    Request
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    IN A
    Response
  • flag-us
    DNS
    0f18fddf7232e6d8aba8741d91276d02.in
    Remote address:
    1.1.1.1:53
    Request
    0f18fddf7232e6d8aba8741d91276d02.in
    IN A
    Response
  • flag-us
    DNS
    0f18fddf7232e6d8aba8741d91276d02.in
    Remote address:
    1.1.1.1:53
    Request
    0f18fddf7232e6d8aba8741d91276d02.in
    IN A
    Response
  • flag-us
    DNS
    bde3f3d431cd782b08411ac25b965e7b.net
    Remote address:
    1.1.1.1:53
    Request
    bde3f3d431cd782b08411ac25b965e7b.net
    IN A
    Response
  • flag-us
    DNS
    bde3f3d431cd782b08411ac25b965e7b.net
    Remote address:
    1.1.1.1:53
    Request
    bde3f3d431cd782b08411ac25b965e7b.net
    IN A
    Response
  • flag-us
    DNS
    f95dc99c0cdbda6d23344382df35ea10.uk
    Remote address:
    1.1.1.1:53
    Request
    f95dc99c0cdbda6d23344382df35ea10.uk
    IN A
    Response
  • flag-us
    DNS
    f95dc99c0cdbda6d23344382df35ea10.uk
    Remote address:
    1.1.1.1:53
    Request
    f95dc99c0cdbda6d23344382df35ea10.uk
    IN A
    Response
  • flag-us
    DNS
    bce73e9d8318296b66946b8f4269c2bc.org
    Remote address:
    1.1.1.1:53
    Request
    bce73e9d8318296b66946b8f4269c2bc.org
    IN A
    Response
  • flag-us
    DNS
    bce73e9d8318296b66946b8f4269c2bc.org
    Remote address:
    1.1.1.1:53
    Request
    bce73e9d8318296b66946b8f4269c2bc.org
    IN A
    Response
  • flag-us
    DNS
    bde3f3d431cd782b08411ac25b965e7b.net
    Remote address:
    1.1.1.1:53
    Request
    bde3f3d431cd782b08411ac25b965e7b.net
    IN A
    Response
  • flag-us
    DNS
    bde3f3d431cd782b08411ac25b965e7b.net
    Remote address:
    1.1.1.1:53
    Request
    bde3f3d431cd782b08411ac25b965e7b.net
    IN A
    Response
  • flag-us
    DNS
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    Remote address:
    1.1.1.1:53
    Request
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    IN A
    Response
  • flag-us
    DNS
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    Remote address:
    1.1.1.1:53
    Request
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    IN A
    Response
  • flag-us
    DNS
    cc3bdca194d506693cc5ddff16bcd2c3.us
    Remote address:
    1.1.1.1:53
    Request
    cc3bdca194d506693cc5ddff16bcd2c3.us
    IN A
    Response
  • flag-us
    DNS
    cc3bdca194d506693cc5ddff16bcd2c3.us
    Remote address:
    1.1.1.1:53
    Request
    cc3bdca194d506693cc5ddff16bcd2c3.us
    IN A
    Response
  • flag-us
    DNS
    69c8094e70757fb5eb181e8e9658d8c9.info
    Remote address:
    1.1.1.1:53
    Request
    69c8094e70757fb5eb181e8e9658d8c9.info
    IN A
    Response
  • flag-us
    DNS
    69c8094e70757fb5eb181e8e9658d8c9.info
    Remote address:
    1.1.1.1:53
    Request
    69c8094e70757fb5eb181e8e9658d8c9.info
    IN A
    Response
  • flag-us
    DNS
    9a43354c94cad9c9b2283a070d8ed998.com
    Remote address:
    1.1.1.1:53
    Request
    9a43354c94cad9c9b2283a070d8ed998.com
    IN A
    Response
  • flag-us
    DNS
    9a43354c94cad9c9b2283a070d8ed998.com
    Remote address:
    1.1.1.1:53
    Request
    9a43354c94cad9c9b2283a070d8ed998.com
    IN A
    Response
  • flag-us
    DNS
    767d8fedc3eb8edc699cf4193af480da.au
    Remote address:
    1.1.1.1:53
    Request
    767d8fedc3eb8edc699cf4193af480da.au
    IN A
    Response
  • flag-us
    DNS
    767d8fedc3eb8edc699cf4193af480da.au
    Remote address:
    1.1.1.1:53
    Request
    767d8fedc3eb8edc699cf4193af480da.au
    IN A
    Response
  • flag-us
    DNS
    0f18fddf7232e6d8aba8741d91276d02.in
    Remote address:
    1.1.1.1:53
    Request
    0f18fddf7232e6d8aba8741d91276d02.in
    IN A
    Response
  • flag-us
    DNS
    0f18fddf7232e6d8aba8741d91276d02.in
    Remote address:
    1.1.1.1:53
    Request
    0f18fddf7232e6d8aba8741d91276d02.in
    IN A
    Response
  • flag-us
    DNS
    60d91c4f445ac9d708cb49483f9de8f1.ca
    Remote address:
    1.1.1.1:53
    Request
    60d91c4f445ac9d708cb49483f9de8f1.ca
    IN A
    Response
  • flag-us
    DNS
    60d91c4f445ac9d708cb49483f9de8f1.ca
    Remote address:
    1.1.1.1:53
    Request
    60d91c4f445ac9d708cb49483f9de8f1.ca
    IN A
    Response
  • flag-us
    DNS
    8802955b514c48592c20aae503d11ad3.ua
    Remote address:
    1.1.1.1:53
    Request
    8802955b514c48592c20aae503d11ad3.ua
    IN A
    Response
  • flag-us
    DNS
    8802955b514c48592c20aae503d11ad3.ua
    Remote address:
    1.1.1.1:53
    Request
    8802955b514c48592c20aae503d11ad3.ua
    IN A
    Response
  • flag-us
    DNS
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    Remote address:
    1.1.1.1:53
    Request
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    IN A
    Response
  • flag-us
    DNS
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    Remote address:
    1.1.1.1:53
    Request
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    IN A
    Response
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
  • flag-us
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
  • 142.250.200.46:443
    tls, https
    689 B
     40 B
     1
    1
  • 142.250.200.46:443
    tls, https
    689 B
     40 B
     1
    1
  • 224.0.0.251:5353
    2.5kB
     8
  • 1.1.1.1:53
    60d91c4f445ac9d708cb49483f9de8f1.ca
    dns
    81 B
     81 B
     1
    1

    DNS Request

    60d91c4f445ac9d708cb49483f9de8f1.ca

  • 1.1.1.1:53
    60d91c4f445ac9d708cb49483f9de8f1.ca
    dns
    81 B
     81 B
     1
    1

    DNS Request

    60d91c4f445ac9d708cb49483f9de8f1.ca

  • 1.1.1.1:53
    767d8fedc3eb8edc699cf4193af480da.au
    dns
    81 B
     81 B
     1
    1

    DNS Request

    767d8fedc3eb8edc699cf4193af480da.au

  • 1.1.1.1:53
    767d8fedc3eb8edc699cf4193af480da.au
    dns
    81 B
     81 B
     1
    1

    DNS Request

    767d8fedc3eb8edc699cf4193af480da.au

  • 1.1.1.1:53
    f95dc99c0cdbda6d23344382df35ea10.uk
    dns
    81 B
     81 B
     1
    1

    DNS Request

    f95dc99c0cdbda6d23344382df35ea10.uk

  • 1.1.1.1:53
    f95dc99c0cdbda6d23344382df35ea10.uk
    dns
    81 B
     81 B
     1
    1

    DNS Request

    f95dc99c0cdbda6d23344382df35ea10.uk

  • 1.1.1.1:53
    9a43354c94cad9c9b2283a070d8ed998.com
    dns
    82 B
     82 B
     1
    1

    DNS Request

    9a43354c94cad9c9b2283a070d8ed998.com

  • 1.1.1.1:53
    9a43354c94cad9c9b2283a070d8ed998.com
    dns
    82 B
     82 B
     1
    1

    DNS Request

    9a43354c94cad9c9b2283a070d8ed998.com

  • 1.1.1.1:53
    bce73e9d8318296b66946b8f4269c2bc.org
    dns
    82 B
     82 B
     1
    1

    DNS Request

    bce73e9d8318296b66946b8f4269c2bc.org

  • 1.1.1.1:53
    bce73e9d8318296b66946b8f4269c2bc.org
    dns
    82 B
     82 B
     1
    1

    DNS Request

    bce73e9d8318296b66946b8f4269c2bc.org

  • 1.1.1.1:53
    cc3bdca194d506693cc5ddff16bcd2c3.us
    dns
    81 B
     81 B
     1
    1

    DNS Request

    cc3bdca194d506693cc5ddff16bcd2c3.us

  • 1.1.1.1:53
    cc3bdca194d506693cc5ddff16bcd2c3.us
    dns
    81 B
     81 B
     1
    1

    DNS Request

    cc3bdca194d506693cc5ddff16bcd2c3.us

  • 1.1.1.1:53
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    dns
    81 B
     81 B
     1
    1

    DNS Request

    3dbf6f3be2fc8bfa6297832b06d154a1.ir

  • 1.1.1.1:53
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    dns
    81 B
     81 B
     1
    1

    DNS Request

    3dbf6f3be2fc8bfa6297832b06d154a1.ir

  • 1.1.1.1:53
    8802955b514c48592c20aae503d11ad3.ua
    dns
    81 B
     81 B
     1
    1

    DNS Request

    8802955b514c48592c20aae503d11ad3.ua

  • 1.1.1.1:53
    8802955b514c48592c20aae503d11ad3.ua
    dns
    81 B
     81 B
     1
    1

    DNS Request

    8802955b514c48592c20aae503d11ad3.ua

  • 1.1.1.1:53
    69c8094e70757fb5eb181e8e9658d8c9.info
    dns
    83 B
     83 B
     1
    1

    DNS Request

    69c8094e70757fb5eb181e8e9658d8c9.info

  • 1.1.1.1:53
    69c8094e70757fb5eb181e8e9658d8c9.info
    dns
    83 B
     83 B
     1
    1

    DNS Request

    69c8094e70757fb5eb181e8e9658d8c9.info

  • 1.1.1.1:53
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    dns
    81 B
     81 B
     1
    1

    DNS Request

    ad6f2d7e7c64dca4aeacdac31ea81f5d.de

  • 1.1.1.1:53
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    dns
    81 B
     81 B
     1
    1

    DNS Request

    ad6f2d7e7c64dca4aeacdac31ea81f5d.de

  • 1.1.1.1:53
    0f18fddf7232e6d8aba8741d91276d02.in
    dns
    81 B
     81 B
     1
    1

    DNS Request

    0f18fddf7232e6d8aba8741d91276d02.in

  • 1.1.1.1:53
    0f18fddf7232e6d8aba8741d91276d02.in
    dns
    81 B
     81 B
     1
    1

    DNS Request

    0f18fddf7232e6d8aba8741d91276d02.in

  • 1.1.1.1:53
    bde3f3d431cd782b08411ac25b965e7b.net
    dns
    82 B
     82 B
     1
    1

    DNS Request

    bde3f3d431cd782b08411ac25b965e7b.net

  • 1.1.1.1:53
    bde3f3d431cd782b08411ac25b965e7b.net
    dns
    82 B
     82 B
     1
    1

    DNS Request

    bde3f3d431cd782b08411ac25b965e7b.net

  • 1.1.1.1:53
    f95dc99c0cdbda6d23344382df35ea10.uk
    dns
    81 B
     81 B
     1
    1

    DNS Request

    f95dc99c0cdbda6d23344382df35ea10.uk

  • 1.1.1.1:53
    f95dc99c0cdbda6d23344382df35ea10.uk
    dns
    81 B
     81 B
     1
    1

    DNS Request

    f95dc99c0cdbda6d23344382df35ea10.uk

  • 1.1.1.1:53
    bce73e9d8318296b66946b8f4269c2bc.org
    dns
    82 B
     82 B
     1
    1

    DNS Request

    bce73e9d8318296b66946b8f4269c2bc.org

  • 1.1.1.1:53
    bce73e9d8318296b66946b8f4269c2bc.org
    dns
    82 B
     82 B
     1
    1

    DNS Request

    bce73e9d8318296b66946b8f4269c2bc.org

  • 1.1.1.1:53
    bde3f3d431cd782b08411ac25b965e7b.net
    dns
    82 B
     82 B
     1
    1

    DNS Request

    bde3f3d431cd782b08411ac25b965e7b.net

  • 1.1.1.1:53
    bde3f3d431cd782b08411ac25b965e7b.net
    dns
    82 B
     82 B
     1
    1

    DNS Request

    bde3f3d431cd782b08411ac25b965e7b.net

  • 1.1.1.1:53
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    dns
    81 B
     81 B
     1
    1

    DNS Request

    3dbf6f3be2fc8bfa6297832b06d154a1.ir

  • 1.1.1.1:53
    3dbf6f3be2fc8bfa6297832b06d154a1.ir
    dns
    81 B
     81 B
     1
    1

    DNS Request

    3dbf6f3be2fc8bfa6297832b06d154a1.ir

  • 1.1.1.1:53
    cc3bdca194d506693cc5ddff16bcd2c3.us
    dns
    81 B
     81 B
     1
    1

    DNS Request

    cc3bdca194d506693cc5ddff16bcd2c3.us

  • 1.1.1.1:53
    cc3bdca194d506693cc5ddff16bcd2c3.us
    dns
    81 B
     81 B
     1
    1

    DNS Request

    cc3bdca194d506693cc5ddff16bcd2c3.us

  • 1.1.1.1:53
    69c8094e70757fb5eb181e8e9658d8c9.info
    dns
    83 B
     83 B
     1
    1

    DNS Request

    69c8094e70757fb5eb181e8e9658d8c9.info

  • 1.1.1.1:53
    69c8094e70757fb5eb181e8e9658d8c9.info
    dns
    83 B
     83 B
     1
    1

    DNS Request

    69c8094e70757fb5eb181e8e9658d8c9.info

  • 1.1.1.1:53
    9a43354c94cad9c9b2283a070d8ed998.com
    dns
    82 B
     82 B
     1
    1

    DNS Request

    9a43354c94cad9c9b2283a070d8ed998.com

  • 1.1.1.1:53
    9a43354c94cad9c9b2283a070d8ed998.com
    dns
    82 B
     82 B
     1
    1

    DNS Request

    9a43354c94cad9c9b2283a070d8ed998.com

  • 1.1.1.1:53
    767d8fedc3eb8edc699cf4193af480da.au
    dns
    81 B
     81 B
     1
    1

    DNS Request

    767d8fedc3eb8edc699cf4193af480da.au

  • 1.1.1.1:53
    767d8fedc3eb8edc699cf4193af480da.au
    dns
    81 B
     81 B
     1
    1

    DNS Request

    767d8fedc3eb8edc699cf4193af480da.au

  • 1.1.1.1:53
    0f18fddf7232e6d8aba8741d91276d02.in
    dns
    81 B
     81 B
     1
    1

    DNS Request

    0f18fddf7232e6d8aba8741d91276d02.in

  • 1.1.1.1:53
    0f18fddf7232e6d8aba8741d91276d02.in
    dns
    81 B
     81 B
     1
    1

    DNS Request

    0f18fddf7232e6d8aba8741d91276d02.in

  • 1.1.1.1:53
    60d91c4f445ac9d708cb49483f9de8f1.ca
    dns
    81 B
     81 B
     1
    1

    DNS Request

    60d91c4f445ac9d708cb49483f9de8f1.ca

  • 1.1.1.1:53
    60d91c4f445ac9d708cb49483f9de8f1.ca
    dns
    81 B
     81 B
     1
    1

    DNS Request

    60d91c4f445ac9d708cb49483f9de8f1.ca

  • 1.1.1.1:53
    8802955b514c48592c20aae503d11ad3.ua
    dns
    81 B
     81 B
     1
    1

    DNS Request

    8802955b514c48592c20aae503d11ad3.ua

  • 1.1.1.1:53
    8802955b514c48592c20aae503d11ad3.ua
    dns
    81 B
     81 B
     1
    1

    DNS Request

    8802955b514c48592c20aae503d11ad3.ua

  • 1.1.1.1:53
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    dns
    81 B
     81 B
     1
    1

    DNS Request

    ad6f2d7e7c64dca4aeacdac31ea81f5d.de

  • 1.1.1.1:53
    ad6f2d7e7c64dca4aeacdac31ea81f5d.de
    dns
    81 B
     81 B
     1
    1

    DNS Request

    ad6f2d7e7c64dca4aeacdac31ea81f5d.de

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     69 B
     1
    1

    DNS Request

    android.apis.google.com

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     69 B
     1
    1

    DNS Request

    android.apis.google.com

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

1
T1624

Broadcast Receivers

1
T1624.001

Foreground Persistence

1
T1541

Privilege Escalation

Defense Evasion

Download New Code at Runtime

1
T1407

Foreground Persistence

1
T1541

Hide Artifacts

1
T1628

User Evasion

1
T1628.002

Input Injection

1
T1516

Virtualization/Sandbox Evasion

2
T1633

System Checks

2
T1633.001

Credential Access

Input Capture

2
T1417

GUI Input Capture

1
T1417.002

Keylogging

1
T1417.001

Discovery

Software Discovery

1
T1418

Security Software Discovery

1
T1418.001

System Information Discovery

2
T1426

System Network Configuration Discovery

4
T1422

Lateral Movement

Collection

Input Capture

2
T1417

GUI Input Capture

1
T1417.002

Keylogging

1
T1417.001

Screen Capture

1
T1513

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

1
T1471

Input Injection

1
T1516

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.lmfor00_supervision/.global.com.lmfor00_supervision
    Filesize

    48B

    MD5

    046a414913add6f5bb60072c7db819b6

    SHA1

    451ee4f6809260aec622d772fd329c7d0297a842

    SHA256

    b66c1320cb063a1d391c94273572ea6edae76c8c8b0a07f8d75c88686f0df72a

    SHA512

    4e6355f3051ed5e811ab030abde1f5be7f5e1cf33be99cd08477e9b6c015deb1d8bd75a09fb9c7176b8511c5ad0a67abc0902a3531e97564ccb6afc57496a47c

    Download Submit

  • /data/data/com.lmfor00_supervision/files/.k
    Filesize

    307KB

    MD5

    4e73947cabb5db3f92ca85004981b754

    SHA1

    6d9667fdb0280ed2dcb782b4683e422a51bdc601

    SHA256

    6db94232e756b90ed437f1bc87dc38cf20fb2e7c7a19a5e40c6c17254b7e234c

    SHA512

    be8b500a7070af1dfb53b0cf1a7b327dadc4e163a6dad905496ac228c58cd1ed87b054533917924455d35e9b300683ae33e1bcdd91935a5dbae1d693c3e13d69

    Download Submit

  • Anonymous-DexFile@0xd4978000-0xd49fb900
    Filesize

    526KB

    MD5

    8917f8d036fdaff7896d9d2ac8cc5fcd

    SHA1

    99de7a5fe202c5f3770f9053637bc11d9ad1db6c

    SHA256

    0a9c1f778a9ee73be40b4300c5258172ef2dc461e8885b84a1c0fdd626bd50bd

    SHA512

    376ce24ae51c69b7adff5c2421f9a186d307290779ef7ecc51cf661977bfcfa623e3048e89ba2aaf98eb586f1e11637e90e6c4b1d948b21c93d01ea7b5517290

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.