92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
13s
max time network
151s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
17/12/2024, 02:41

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker collection credential_access discovery impact persistence

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.systemservice

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4303

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Clipboard Data

T1414

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
d20e3a70eeee06be7ab4bd316aa31c6c

SHA1
becaa96f34c5d404bdbf1ebc6f373889acd3e154

SHA256
d7e3a8ad23bb3fb2114d19e0a1975a2195af9b0982d0fbbb9e6d0b36d219a198

SHA512
838b9160a459154d867d17d020a6dd4537b43fd079bb5f1867ea8987d7131dfbc7af7f03f942ef2a8723fd7f55b9a2d63be976862a472ebbbdf8b7d20f4ae141

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
7336cc5775cece4bc73cf49369208fb4

SHA1
a48428e73780149a893b7240669613bbdbbd7586

SHA256
25ebc63fa1da26806c47b96d65466dc9fef2513db1531c7dfec5be05ecda8770

SHA512
45d24faaa1c6dc958960dfe43afc719ed4cadbc9e1587284e2162650ba6a34396eb872db610fca57377efc6af5c486b777d9c40ab41eb321347fe970aae315ca

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
532853d75b335b0292df3e922a72d5ea

SHA1
7f0678a43da1b65a24ce60d009feeb886da23ed4

SHA256
976956e00c0c9c1076402f49268c5f893d79c104b3466131c2774bf209fc4a8d

SHA512
bb4f5be7f727bee6f75d68268a3bef3ec880213ed99449bfde18a45ab1a5199c3a05e0820181de912acf69f583179da2619a679cd7990cb2429a61c50fee3d65

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e061a20ad3478f0f54f78571d3a3d0c1

SHA1
4dd867322d2bccfdbf85a3201347b24f61c7775d

SHA256
9a3070eec37077bc5ef0979fd2ccd5be25ab59e11b8c0cdf5fd263f7d08e2b0e

SHA512
75cc8023d506d30925f01d666d8dfd6b9c45c552179fe0a079d13b6764cbc727aff89e8306772a382befe16fdb010866a249cdafe2799bc99c1d833a49e00756

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c4e43de5939adff93e1b163c4ddacac2

SHA1
9af62d60718c6b12e9c35a1ac799b3f62290cf1f

SHA256
c36feafb59bfd727dd85b5e65c98c0d797949efccbfd33726d9079b82dca1f3e

SHA512
5083420496b73824fecc8ef8b56656aaf2caeb8c3b050becec05661c5f084f9476b679a16f937bcf471dd9ebc4ff98bafbd091f7f3e2a921dd5a66e30a2052bf

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a0e35c65fe31b671db532e776cd0aa6b

SHA1
5b4425fc12e73da48cd6e9dc525ddbf5195794d6

SHA256
2dc6b3af7e8e300080a3e841330b0ac798acf3c2bf53156b427f1eed96abc2cb

SHA512
2f84ea354c152844804dedb1e31da8c4a05a0050676f0ddb68488958866b0388cfd829a13e15804c2431e5d0f3e5ee2bc3c3da691a8ad4d3772ad044fe6459a6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
835cfc7decf507cdc5e54f602e3f9699

SHA1
4a55d424cb32e766554672cb2d0b3804fc47552f

SHA256
29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

SHA512
2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
a270ec4bb32159568a1f20a302387cca

SHA1
1c8e95473cce05c6d9d54ddc14e52a5d3d987428

SHA256
93289371a662aa0d558d337659ae3e647302e0cb9ac3263ee5dda97bcba30829

SHA512
c0b2da5b5cca9b548721e2a66b352b93114e7734b5bededd80a0e05ef082080a605b0b5cb7d1a243e2d888a75f716ad21c88fbb60328a54f8834e7dda245631a

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
19770d298f32cdf3d3c4abc19eb7d514

SHA1
474359507de85f688e33264b6773ec8825b5b7ed

SHA256
bc3b7916ee2143d4464780e556f818b27c6de5ee65071bc03eac338eb105cef0

SHA512
6c9f70eb8db1106515679969aa1891d03eb9b1c67e601932500160c05569c80b9f532b4596021041c7428fb7381be21285b527182b8f4b03ed80ce93dc4b3425

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
9f82bdc06d97bb1de6250108a2f6b763

SHA1
66cfafe4c48091f63ab50b90501da74e47d8f76c

SHA256
cfe22e83a9c173aa5349fa82cbf5d7dc6b50831fc186f594fb35d63d8d83cd88

SHA512
c6e746dc3cdd9750bc3d4d1e7faf6e559c3c37af311e32f8a865748dc1316dad0d3f13b5955afecd89371017c57ff81e8182d8358a18b9490480077b52014415

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
dfe2d956c02d5f4728744c009b3833c9

SHA1
469eea5ac9ba83ac58bae8d814d77cc6a45f9d03

SHA256
ca4fe4b90c332c35dd25fdb4b4e7938eb166abde17de1d01cbe10f53ce4f518c

SHA512
8260667c71da1874b833ac59154f64614977e7c591d022ebdcd8e55ae45bc503bd6ccbfa2358dcc1b47feb7a812c4982fa9ad94773c62f8ac89a665c1f5b7e2b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
1053d8188c7f938f595d0437e1fb0c39

SHA1
9b02c8d78a6777697aa15c6eaf0348faf0182b46

SHA256
4fff14019eca8ea239138bf0ade43c8795825cc24f70033788d7ae75b1e09211

SHA512
aa3507e0e07eb5031e8133607a486acd3db5bf9e9ab3080e9f8ec7250617a95cfbe4f6232d57010d407d7a57ea91a36418c3fa8d500ce734c194b54c0a5d4c01

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
e355a7343ba8ad840a0eb37993cb4661

SHA1
2ff11faca91c4367b896afa7132ee56f160efcd4

SHA256
1a818aaf3b920036b8fdecab053a903f6d7db824b2d59a2c96eeaa265367dca6

SHA512
a852bdf91f099cf305b11b0b87f4ea73c791d2dbf77ea89a5a45a377a72f71d6036bef1d2f59bd99a15f0a9579be1f31fa0ca767b62fcb6f91f2d02bb436c568

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
b8ece3961b898793467f70ea4de413e4

SHA1
346f2af929888492f70b333d96ad4681114826aa

SHA256
1c31a37af0be46f07f5deab4f606d91b582753fd0ba95ccc3abcdde7dcfd3ef9

SHA512
4b80def5fc418ccd83af6337747b856089e1c48414bf5414ea421f5a7478b88fcfb1d5ffc5db8b7c1a7bd66fe65f19c2105ea1f52022f1fa68b2130381ec6844

Download Submit
/data/data/com.systemservice/files/PersistedInstallation7935153784102011360tmp

Filesize
90B

MD5
d0b94e7179828638b85e7b964043112d

SHA1
af50eb720611993e0fd96ee8d678938da8703262

SHA256
d0f30c72444f9266d002f1c87e38737efbe5e848ac976ba410f86bbe0cdcf26d

SHA512
9bdcca79b9035a912b69c8bb6a26728c75e44218da36a5e06e79c4d2f7dd478caa9000d2024b2512b686bf8c8acf7df215643a00f748c2a20b12dc7570165ae9

Download Submit
/data/data/com.systemservice/files/PersistedInstallation8751359045609074468tmp

Filesize
556B

MD5
44010fbeef95b8638b295992df048f92

SHA1
9d1fad92ac037f93b0f81a47b7497f888249ee0d

SHA256
9ff0cca91676be402bd0a9bbd037758d3d2f7463499d664733df93d62daf65a0

SHA512
cfbcc6105f3b3611af8ff18e8b8590dab7222641ec48a94a73c98b396ef39621dce1f248ecb016cb49ca5ce9d874322caeff3a4243fb6ef91817c17f39c7be34

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
f50c8751640221011740938a4a18320b

SHA1
9f82dc8a4b57c2d381cd996a89ca78010767028a

SHA256
3e8f8d275e7e9ecc5c61a2e100947f15f11866fbd24105bd965e33109a2cf959

SHA512
d4f452deb73056c4fe3539e5bb912410c0a488cbcb5a9d6ff3c1bb33b21e0286af4868546aef815a45e8ef246b6e111ced80dbb4622a2e53d9d12af42b228e14

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads