Analysis
-
max time kernel
12s -
max time network
154s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
-
submitted
19-12-2024 16:48
General
-
Target
3c273166c5221614198a7bbe0ed8ed0738ca4b62321a8d44a43fa7353a9f7d70.apk
-
Size
4.9MB
-
MD5
25ebf4b9f77b51dc09eb8cb590d737e6
-
SHA1
dd5f036a591611603b964e9c7bce3d901657b67b
-
SHA256
3c273166c5221614198a7bbe0ed8ed0738ca4b62321a8d44a43fa7353a9f7d70
-
SHA512
476d6d41484e1fbdba4cbf63539081b5616d1edc41fffc98062e87bfcfc7cdf2e3a195b8e64861ea7f31a7a26cb48f1c43a3cf5b006bf1d61d973a7607cc9a8b
-
SSDEEP
98304:aPfQWnSNff2dCFZuM876xK9yx3qpA2DSaX+SexUQt7i0rJDuE:aAQv76oIx3qO2DeSemQjuE
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries account information for other applications stored on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect account information stored on the device.
-
Queries the phone number (MSISDN for GSM devices) 1 TTPs
-
Reads the contacts stored on the device. 1 TTPs 1 IoCs
-
Reads the content of the call log. 1 TTPs 1 IoCs
-
Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs
Application may abuse the framework's foreground service to continue running in the foreground.
-
Queries information about active data network 1 TTPs 1 IoCs
-
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Checks CPU information 2 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
-
com.arzdigitals1⤵
- Obtains sensitive information copied to the device clipboard
- Queries account information for other applications stored on the device
- Reads the contacts stored on the device.
- Reads the content of the call log.
- Makes use of the framework's foreground persistence service
- Queries information about active data network
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
Network
MITRE ATT&CK Mobile v15
Persistence
Event Triggered Execution
1Broadcast Receivers
1Foreground Persistence
1Defense Evasion
Foreground Persistence
1Virtualization/Sandbox Evasion
2System Checks
2Discovery
System Information Discovery
2System Network Configuration Discovery
2System Network Connections Discovery
1Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
94B
MD5f4ab0c0c2a36c2af67361150c1221444
SHA1df4417fe230590cffedb288fad8c5d37c1d1de17
SHA25678b679c5257519619e4e8b8af3e57d6b6d223fc335667370dec54e8dd8f3b216
SHA5120b263574c37e41b130b3d62b1d8663d21b5140c291e15417543f65a04ef5575a4c436d2f0f3ae5e58a7886a5ff824ca6fa35885a41952a185c92b145f57f107c
-
Filesize
227B
MD56ce939533a3169f72d2f5394807f16ea
SHA1c5ae3553b18bf8dba81dbea7a3b870887576c0eb
SHA25613c2779ca53008cec5ff840ddc3ecf613e0f8cf6cd94626199afcac19538b371
SHA51271a7d2ca57ff89e319cb8d7c389455d9306c117b429fb368bf39bdf5d8a4678935a62326c4a9eff0acbb3eebb4c16fbe48b6ec1a0894ea985d1c67e50e0fb6f7
-
Filesize
51B
MD5d0cca8f3025e5c4622f3bc162832914b
SHA16661e8c776e7900d789ac666bfb6d9ea7a755f1e
SHA256535695f6e069823c1f908f8bb22a7258bc433d2501a094fbe9539a4832073cd6
SHA51275f2a038b9fb0af9fec584d7f4e2decc3799fe63e05b87b70f4b979f67687b7de3b360abbbc3007b820407989068ab03c18d3d598829f4de565d64422e471914
-
Filesize
51B
MD5d45fda77fab4cded201d40a6dc41bed2
SHA1bc44e87309460fc08cd0b96d62ae03e355bebd78
SHA256c5efb3eb08611b11de5ce851a4bd034fc3b2c3fe50f641f82a1b0644c047514f
SHA5120d533363dd8617bc1702b0b8943c6f1ee7e382c7b7b1df4ade261e885978acf55252771f565f0772f1d51844156126ad774c48791ab8fe616e078701ed455078
-
Filesize
51B
MD5a492d695323c9acc2d13ef45a911c08a
SHA1159dcc06448dd94c5ac47428c1447900d03ee172
SHA2567e7681e0cc652d3e25cc4f6fb8aa4f83465a9930527608645277d86c4a616cdd
SHA512dc79a5fbddb201db3854e0711d375ebc2bcc16d20605c2c494907da69db3dfef9c9ff927b5c49de72828cc00a49e48b1b3135d78e660ff001f1d13686354f59c
-
Filesize
51B
MD5df440e5561598824db92904e56633d8a
SHA1664688bd419bb8ba0af7e6609c26d03be43cef6a
SHA2566fc38b1ecc56855f50bd7aaf1a07e3d5a52d6f19ab6edf9773ada8aa776fbc01
SHA51201d1575fd13f9f7799500f0711d8bd16f866a4314175a795faef6b7c0b246df89a364d972630d3b42079dc66b3d034da183493f7d7650c4c9d7d3cbb6bb2355e
-
Filesize
368B
MD53d8efdb94e41468a52d0e242b7d6779f
SHA188c91f9d9fe807823aa8945020366e7cbadf3b2c
SHA256e0b08e947458a0b8314cc749d4646d0e2ee1a83ba6f1ae3313a42c7553f3583c
SHA512ec6b0cbccb1c9b882a16f339f3c563998bd988c5d54c177d979f3c8ee2829fe308469690af2f08d0df05e53460f85f6eb0f82940caecf6c39ff3b673d9b1556c
-
Filesize
363B
MD5729165146fc1f42618844651fb16cd45
SHA1c39c3847d47651dcb92671af36614dd44b0cdca3
SHA25673a8d585add3fe2ad1d7ae4d52b520dade0c21b8c11d506580b86cd4820df15c
SHA512d43e2054a718add690644e552631622f8da3abfedfc8af41e46ae6df878edfcabd96cd138028c0272b295b8a06028ca685262cfd5e1643b1a4975f816f6a5924
-
Filesize
256B
MD50c15541fd272b0c8364103831200440d
SHA1ee70964d3d96222a8a5d88431daeb66a6d8f4319
SHA2568a3cdff8b99d7495ab339a5c7de4ed8a6aea7ecf2e5ccd73a716fd892d197ad0
SHA51263ea6632e5b73113a99053a476f81a76eecf33309f6ef616710e1070b7384004111861bd88338ef04b3d3db81e33796b59354fe8bb61f9843e05b0bae065fee7
-
Filesize
241B
MD5b254133cd4f7d66e27aac0446b08fec8
SHA1abcb80b78327a07b0fb4a83202c85e1858de45de
SHA2564941867626d39be2bc5ce40e59775ba077460a396c5c9e7cf1a467409458d698
SHA51233481e249fc24d8a973941fdbcd24896f0c2f372843a5ec090f22242691ee0c467e1eca1be201ee526f7e83bbcd6c258fc667c0fbaa9956aa7f318fe4cdbd8c8
-
Filesize
256B
MD5401a23f5eb8c95610b419596f40fbf89
SHA122a9dff7cbe5043a00c2632dfa5fcd8056fd9d75
SHA2569b74b2ddc52a3fc79e3854439da96eda9443743fd65890cc0a196ce9797dbf3d
SHA5126b1cc10f14320f937ef4371ecf4d7f6223dc691650265b042186976972339d81a2facabcbc0a1511137d5d6721212c91bf366de0f8f63646fa6de3ead65537b3
-
Filesize
241B
MD57cf3badfd9192b5d7ea2df73596b838f
SHA1d1708a2a5fb41cdb2291b41eb800f0484fbcb2be
SHA25626d6e56442eb1c25a5b51d33c0a64968b97cac12a39159ea7f550543f5881611
SHA512230959f7ee36f08587426fc2fc17deffabd22ad7de88843faf1ab075f7e61a1b58455bd93f4ee9fcece79a26ac64dc69536170f1c523e552e357ff5a5689d2a9
-
Filesize
256B
MD5829628f7f7d84defac5498f5e45e7655
SHA1fed3d6b27b74ba32614698a5e391bfc3b0c94136
SHA256d535a8c836b4170f4e29b0ff72e67aa4263cff05777d56de4c64ec768f2fd854
SHA51220df1a02b6b26851fa4f18ac8aec758a7a2fd32307b4e6a16be8305288850ee55f2c7c8a0a71ceee0a5550958899e43e1b1880081e7c488766ef9d10431eec26
-
Filesize
241B
MD5335ecc2a7f6626f0873d0cc540fb0290
SHA167c25f31108aa5b03e34ed910e6f3501a9dfc5e9
SHA2561d5899866de8eae037055475924bf3f65bdc728d9c7bb7698e2710d678f265fd
SHA51230a78fda0c9091fa259c85de5f292cc2d4a51c8b4649f3f78f584bf91ab8caa30a443d5290a865fe15efe0ba857975bbf74b8ef4f4746541260cd12e04afab8f
-
Filesize
256B
MD54a1434774d4c78249b38e40906d331c6
SHA1c0a56f8bd0c9b13300465d57a791556fb7d3a176
SHA25609550de954988b5cfc5739bec7ec96ff2a08360a301b3cfc1386b881e90d6435
SHA51216c4c8313148dbc7002b6a0c6660adac4cff3b65b0367f33b65db60abe0cffcb2fbb9d673ab28d8054862e4907a8a860f65feae781f3349c54cff2263f8e0f51
-
Filesize
241B
MD54b249ab63e42099a04ffb54619f7c620
SHA12661d968c91cf43e05a628b0efd89e9277fae4ea
SHA2565a9f942f866db5a81fd4a3c51db9a25c971e7add31600a0c2f5d21430ecbf554
SHA512bbc12e0f0f5591c320533d40aeebf4f9759c5a64a94a4349e30a7badaed099bd1dbe2ccf6c227c5bd2cc2514e54ff44319d02154ce7add2aab5dd450d6342708