92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
156s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
22/12/2024, 02:32

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4984

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
fc88c990ffdb3a692ec63a38b467a731

SHA1
e2824f707e067bdd7b1e03414f0abd2463e711f8

SHA256
edf5df9d282e01a59a21207cc5db6ada9a0ed3d8bf58f3065db2dd05991035bc

SHA512
40665578c8fc78352ed43040944323eb8829128e9fdf42dac8733fde02c2aeaf77da105c33359440c653ef60f493005c278614c851019842df0d5e793b8c41df

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
dd3be05243a48eb97ae45f83c46572bb

SHA1
b2660591a27c4ef46962f18fe16600222fad6799

SHA256
753f2fd44eb67d964fb48137a7e85aa90e33c4386e41665b7d52c6cf9f555b07

SHA512
379a26d62b1e346cbfbcf9eeb72650b1375095df5448f7d9a08b910895c6fbc1a47fcc8a4ce43a2c91fd6ab6597388271372a63ddb95305623a22f37a89053e6

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
93f93caa59a43431c170e6c721fd0e42

SHA1
41503400446a0b3f8c8a4655b677636a4bcd07e2

SHA256
9341eee0d0c348ca470c728ded9490216b2012f04b0e9362cc32785bbb5ef993

SHA512
785706a62e189cb5dcc8e5d497b8882b4f02484f16febde6d18739f771d5b966ace67c354e8ffc2cfa7d496c4af7d79df6fba0cda78ac509d71c59236adfca05

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
a3d78c37f498f6831adb04e9fcf043f4

SHA1
a6a735e62b489db5795ee9572e1120da00036cd1

SHA256
8a399c9bb7c8f8190fb6fba909a84fbbfc1e111e611e0a436e1323ad4cfb2d9b

SHA512
5e4405efb3ae9cb2601c2c55ea799f30d552428fcfd22fd098f2a6b155cd0e1836bb7703f038e1f76263af7c52e42bc33562671ef366016cd2b53938157bee69

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
03deffb10eb200027527a27881347e79

SHA1
69e8ef811a0f7d4e7c1a9bb2b7218e5c74328d9e

SHA256
6dec7d19bd82bce1062a8b4bce495806ec57f9436b007d1b09efdaa117819be8

SHA512
ca66adb36b68bac34a90601395cb9b61cfa6ca6360117c4bcc168e31d16375c6e7addc0b20e5c928cce58b341d4e6df5c2210ba1585d675ab729b5d26a636625

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
000011899b23c694b551c0fa51f49b1d

SHA1
4f3a84787e25e52fe83f71487286fb67ff23531c

SHA256
45a5d9923b3f8c56b39245a13282c66fab51b98c60b637778220b66fcbe29a8c

SHA512
f860a258634e5be99de82360781e02bfd5de8eab2203b21b3bfe6a9bb48ff64d8d156445566e5f7fa33c29ec8553a4037cc7518089fbbdee697921f0a6178a8f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
dd605c142d4e6de1dca3740db08ae4dd

SHA1
d389f2cd1b0ce5f3f38a280b0246d03e7eeac3b7

SHA256
1e917f4771f21a79ebd929f3eff2c4018020a65b7c7968ba1cfa3fef1e9d9de9

SHA512
a702c89b4fd3ee352187a1c22cf4e863d3515e0390b4acf25969f16a54dc995caf38f3d4932c0629652b30f9f642d468a2915a7e59adbe9e18c0555e325eebcc

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4d9b955bdd20d7a0fc20700a47b1bde7

SHA1
fa5df65c4214757fc99147f9ba58b6858eee02d1

SHA256
f3452c7861d424c1ad23f4631f9d656bdd6b32f1f0efd0d8f9bd95e50845d5f7

SHA512
458c16a51c0e683be4d7a08e20d65ccbd444409486cbae3cddddc4e689d4bf8912571c5367db8951fcdcd6f1052b858d77cf7527eb58ea2f02206be56b02bb97

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
04e6957af2b312fc4ca7160c185fcb37

SHA1
11fd3781444a2c67e1d3a2fb59a9a7bef88936ba

SHA256
6f1e62aef0e34e1b426c35ead41d8bfbe44f16a8102eb764e7e93842d99f4950

SHA512
c55ac342023c8a695d52cb9ebc7d62a4419a37d31fcf6bf10d9ffec5b158981260c590ba06081bdd8e77f28fa0673745042bee5c2d20b2ea836d58479ffe10b2

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
6c2c0f876ee9283c204230fd6c975e88

SHA1
368c4ee4401c1f98b108e7c0801d9e4790606945

SHA256
aeef338b610662c2abfca13d8e0b86525e4faa8f3302212d8aa09cd4bff61b7a

SHA512
c3c5c7d315e06c45492b9d65e82a6c38164fd4b8defc80bfac8c6c24b9011971564f5d6647b71a115e1e2bc87458a73b992b8b1dcf11a2de99acb934fcd52a88

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
3ccf42bfabce18bee057a304fab53b39

SHA1
f444f9ff4bbae18f1012303ca32482bee3167b14

SHA256
b6a53671e8624db21d9a89e833ec9afddc99ed8cb59597ca7b683f3aabb56ece

SHA512
9fee94f5c1f22a3b5ddd54dfec10cf346ca92dfa858e7c08095bdf7977014f88e04fdd92b581d31568c3847ba15e8645eddd12236902c8c2b1192bbc6d4b131c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
9248b072259ddc35d0a8f313cd6ed8a9

SHA1
af6d482e768a090fa864d793f1e41b0603487802

SHA256
1043cbcf662863a42ab875a807a356b13008b0c2824a9bb7c04119d9e0d97101

SHA512
47ff700208ece5d5734bc0bff7cd8a97ced88d4b16265d715302f926f048c45719520ea1ba5b019ff1d83c78d7b254e6015f1e50c357d0486c1c79eae7862a51

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
47d810dce9bae62e02876226f0c14ba0

SHA1
444037215103e872ce2f327afb356619b5945ee9

SHA256
2678721452766a8d18f1b365bf979c2cab98e41e649a59be925518c4ffb6a8d8

SHA512
4991e24fb0b214ee32045d7ec15311a688e5279c7b80a1c09ca09f165443b6c1cd2f7ddc1542ce8f536812e75197545176f115e99e3abd7df6cb70d11aa603b7

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
6a388f4b63a017aa12ae36a1a9ce7812

SHA1
78c5b9a687bd3f5573f2d2f0d2189afe41ea783a

SHA256
5ff724bf58e4b193be771e477d83d83f957e9ba18ac823a9501ed34340188462

SHA512
b486109a4f2a326797b98c916c94823faf833d7317da8c86e38cbb5a68dca5e521ac7d1bc3f40dddbe685d4f53c243ad24b8e29d78179ff250e139fef9ca6f11

Download Submit
/data/data/com.systemservice/files/PersistedInstallation5676629110219728062tmp

Filesize
90B

MD5
5b565b927bcd4229c18b1e7dd37472e7

SHA1
07f9874ffa317ab2b92e405fcbafc9fa8b8944a1

SHA256
91cce8160270f8c1cd4d8ffe90b433ef0d7fbdd8a80a507319468fc0511b7563

SHA512
9a071726e99b1674b096b91820693fcbbf2e59cf972acbd1b38bca0bef876bf85574cc345ed179bded99d641b1c70dffa113af5e84d6ff24ada6ab829b86550e

Download Submit
/data/data/com.systemservice/files/PersistedInstallation8585220789045444822tmp

Filesize
555B

MD5
6bd711464315e0565790c7e4f746b121

SHA1
3dd7a2cf37fa4fc0d40de7f4907aeffcba60b7d0

SHA256
e48fa2d1e1cd124ed924813300ceb0dd52896cba891e3079a35c705ab58bd23a

SHA512
e21f09a35bb37c6bd8342c9167efcb4b020b3abdfb784e736390c89bc5b96304822f14a153b1ef67643288695caf6a0627eeaa90963110343bfe99df1ebbe509

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
da141450eef0a83e87e3d7d1ab6c66ca

SHA1
f3db10d9591e85b7a852b5fbcb7f05ffd348594e

SHA256
cc1d0add6afb993107e5fe0f37d6b235ee438f5470209f378560423ca2fac088

SHA512
481cd8b569639c11da5677484c2f6c24270c75ce0c1062801704a2ac3a5fa492efb72a191799e30e69e8518b22b0a6d7ea1d749f2d0d05e2912fe1df375fa13d

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads