92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
13s
max time network
152s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
21-12-2024 02:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5159

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
75345d03e0631148016fb609bfbe96cc

SHA1
74e1119f31563493f2073493056ec45618fbbdbc

SHA256
77fcf3e492f46992afadd3069218513ea3ee11985b3f38a689ed4fae026c5377

SHA512
28e51384747bc90a6d0f3c039f3b78052026249d1cd0951961a98feebc9c81ef5a35def6e6ed953788a9918019cc2613a06856c5e8cfacb58de780b9c40bb4e4

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
30789e7b14fc3f8dcf435f316732ce9b

SHA1
0bf97c0688df5d423696a03249719de58996b35b

SHA256
e2948be0045c453722de11e2f87fafb6f6ae7c534bf6d3f1c1dc8e0ec6a2ce1a

SHA512
1d73fe388d66658eb872d238dea9806f9d5eb5e3de160c4438acfe56bf29c06428dd805f1898066243f7f93cba47656d26e7ee0cd3b92d420cd2a979ff93b4e1

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
fba05cb45b4e315d6e7b039783ed9f6d

SHA1
abbe15408ccecdf4eef78f3a56dc30f2cf83e6df

SHA256
ea3ae46cf407affb6af92ecbe932dd1e96459a1dd339a7817d3413a8a6f702d0

SHA512
48203b47c42295c809e0f5f514a2cd0a5ba63566ff62a6a71da754ff3e1e69073b065953d6ff5911348ddd3c71c0768e904f077006494d9198716d0c2d474ffa

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
f12f9d1abc7db9d111e797f226566bbd

SHA1
5ac5b5d55665b87ec1c7e7f3257da1462e0158cc

SHA256
efeed30fd2f9d8815b7e8d488e6091e98d845bc1341abe1215ec8adcc07d7aed

SHA512
5b38231c14408fcd5d6a63746932da7be865a91551077d44019ff74d5501f6fb075939b0ed0e72c5a9d61a0c55e62409ee93eeffdc70604051f0e91831c8e39a

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4189ba61af95f9a5a6c7542bce89cceb

SHA1
e4eb4671335732f64d8e4f2d8209cc28996ce298

SHA256
265639c4fe742f0d3b205cd7af3868fc7f02f157548adc02af5c910e1269db47

SHA512
19aba5c23887ce5a6c87cb1f0e7cb5c242d03ef406901459cd69beee97c773979c8fe86e4357ea2e2e6a9b22335b9c0bb09b36e712541f86ded8a76538b3f66a

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
fe0ec919685fbc5c82d8db5a2dbaf465

SHA1
46ef7c03713d36afb73a5c4b291c10b5dd118d24

SHA256
6a5fba8db32e846654cbf5ced965089655b0db2390afd5ae81e0da748a279515

SHA512
3acd95df3a1057bcd61dbf558f69bedad06bc60ee0e65b1125b41d207ebd22dbb7b61cdd5bc43de5d73029436c14a60d02bbe03898880f75f35a081ad76fca32

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
471fcb0563a420e97997b485941fb193

SHA1
f90ff1c06f06845458d1a6b092b662fa7df92c1c

SHA256
539f8d8688b59c820206424fc9f453e5d17056a8a7f1119068a1195eccfbfa63

SHA512
e30db497d9e43ca012bd940d8bc3d22ffb6e451ab11a2a83e6bd844fa53c574d793935751132c1b68db325c6f58bcf6e953c52256fc438d45f7edb5ebbbcf0c2

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b647c70b73c3d8b2dbbf0aa21eba35c3

SHA1
2a495c8ac738f7513549f525a020620716d75d08

SHA256
bed38d828114b37f685a7ad080209da4acbde71ced2f94d9bd2d981f3b3a298d

SHA512
34940a028a3000ed8a6261db33857a1dc86b71ed0964bdc9429cc8bc6a24900f4554ac9f6a68308936f50ecc87aab4412f89c23ffd2861c94fe487dc562511bb

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
f6e70dd2c6df1b184cc965b14aa58303

SHA1
453d6b3469d86151396d4d3c0814197aea265e39

SHA256
a002ba803e858a961f78e19be704d368701251808c559f0ea29cc4233a2bc521

SHA512
6f06e003c3f902b82a161c3ac040f3965e5564299ae18c3034fe7d22a77cb45a287906c466abcb114d52ab11a87cb7da80cb4e2a3de744ad95e581b43edcaf17

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
6c85cf0b24eb4b5713f872a6db51be36

SHA1
04393e09f3561e35916aac39ed27493623582443

SHA256
442fb58c22de0f7a65035567e817397af61245860b8266f6e828de5a7809aee3

SHA512
004c83437c4e51c0557cd8e9c5d9f7d4a51244d7c38de111764fcef6aafb17bdfe970e0f94b0bdf417ab9060d7cd13ebcf5b260964af8e474b34e127b32eac69

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
41e7c8a9a984af2540a4f0ea59db65cd

SHA1
6f80cb0e06080c59d330e410833e98f05e55fe10

SHA256
b35badae5903808f1af86fb80688a586f7e40660c95c2f8ae41929e83bfbb00c

SHA512
f4da60b986d51c4c59462fcf7a8d17d19bc20fa288aa6a57f75517d25a46099a943f4d12b7efe4900046329d73400af8b744ff5be2f69d6f041a0988f9b7872d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
5335d13c6c3226703aeb5c548eba0b45

SHA1
1b8820f1d523ad12480c4967412d59030dae776f

SHA256
db3711aadbc1eddabb291a8acdd36a6e00170c241b97498fc08f0ce882cb46d9

SHA512
8d61d0b26ffb36bfb426a25ccb20a9d92422a04a1714fa91c512dd7f424c1ec00729c47e5656964ae18367df5d85a4ffeef6b16e0f7863887228bed7a243fe51

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ecd832cc6700c320944e05da89789018

SHA1
08dcd508a76d0193a5e9f881d01888252fcf4d34

SHA256
b89d731ddbc53a6f71b3a29766b14da8467a53444ec6225afae519e394b64049

SHA512
7a3b6ee31f9cb916094231dcbd9c36aec87a02b3e221291e10879992b88eefeb45fc953eac973bb86d2460aea42d11450228b6a4fa5abec04e0bc694991295c2

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
6c838589ca67c309f842e632091bc87f

SHA1
c125adff8a733da6ddfde83695204d4a7a9a239c

SHA256
c074a653f086720d20714dc04e3106e44e047cfe78983f15f0829c639efae526

SHA512
301a196492e69c93603c694a13d9421108d69fc83b14d8d609a6df8a491166c8763e0bf441e9b1bb4b2f09d59d5447f288673128c9cb12fe18b596925fc1ef01

Download Submit
/data/data/com.systemservice/files/PersistedInstallation3453688365796039534tmp

Filesize
553B

MD5
cfbde19384f41f80d467c19da922348b

SHA1
2b5807c4cae9fd83dd395efceec5ffd2d9ac6875

SHA256
d158caf3b3cc98dfd1b24846f488912a51f245b279ad52bfc503dfefe1c67595

SHA512
25658fc564f4d80ed3ad519887210e1b44a3afee422efb28298603e70962f849967aa1f500f9595295e614d63e48fa0c545c4b0f975cd54dae61324ee6c02f9c

Download Submit
/data/data/com.systemservice/files/PersistedInstallation504702150260107268tmp

Filesize
90B

MD5
d4c3a224943a8e4e299fd3943b7664d0

SHA1
dbc371eccd912cabe48c524e1ea5beb4e2f35a66

SHA256
0613555f37e89a123f6cbe3f63fabcd14dcbf400ce045720df4cac0801b2203e

SHA512
e78535c9ff3969e8a2f3896796689fb70d28a01f2ddeafbd71bae1c14c5bf0dacccad1f0efd3c3669b42cd1c345d34e3da44d58c0ce1f7e280089b9b6efd6245

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
51af6b9744a253e6112b80ad036f594e

SHA1
6681a79e60eb22a2fc3cb88372ee69c2a86489cf

SHA256
40339f2500199135a5bbf792dc8a6e3c9d63e8b20b3c5b628a8bbcbd4fcec5ca

SHA512
e3b0c4c5635286ee6b9621ddca39b89a96c821646addeb4d68466377cf309d94c71f665dd8453ce260031ee6fc8f433d5cf694ea36a3a90dea63e2ab91090a38

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads