Analysis
-
max time kernel
17s -
max time network
130s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system -
submitted
24-12-2024 02:33
Behavioral task
behavioral1
Sample
92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Resource
android-33-x64-arm64-20240624-en
General
-
Target
92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
-
Size
3.6MB
-
MD5
0366ae0abf0ada8aed90322bfe07dfd5
-
SHA1
2f0779ce64f02944e87674745cb446c5bc620607
-
SHA256
92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
-
SHA512
52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
-
SSDEEP
98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.systemservice -
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.systemservice -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.systemservice -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.systemservice -
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.systemservice
Processes
-
com.systemservice1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4322
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
512B
MD5300804b18d4ae0c646f1d709b6c84dd4
SHA19e379384fc1ee0f150cc5d1ee92545e7e2ffcc2b
SHA2565a5e18ae287853336dfffff7adbe850f5a0ce4259dd2b04ec0f4ed68e4478bb8
SHA512e673ffe152b56693929d5718980671a2b1a6009da5d482423e3e147ecb7850bba988de605a61803a2a6d2f9810b3bcab4711d7f0c401b10ba808ade98d15a8ff
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
68KB
MD5157b9e7e05908aea5ec016070b1e01c9
SHA19f2f1ce932242ba9e578a3704d3640b7949e5959
SHA256f0dd8c56371cbe8f5559db081db9c2f004bc29a453588dc467c8a8b8b43ad389
SHA5124c139c60c5db871fa9cc199b522a78005996e1478bac87759c351f487216fa9385ceebccb312a8afbf53117cb882075acd51b6adbe04dbe054d694d60042c309
-
Filesize
36KB
MD5045489a0639eee27bca52f48828cd93d
SHA1436e7966e7c019273c44faa4d8c5709b816dfda3
SHA2560151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e
SHA512c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e
-
Filesize
16KB
MD57237409e0640cfab7bdbd429bf821a3b
SHA14c3da934842f8d4835dfe2a9c275a300e5123309
SHA2565c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f
-
Filesize
16KB
MD5690d51c4e1cf2abf411f47a4b69c8ffb
SHA13e2cc72253da11d22ab274c8d9c37fd9b2f7eb36
SHA256138e81aeb30a7a582947a080bec531a98d6574704c0fd88da071d4eb02c5fd76
SHA5127617c404c56eadc60a372cdc24b25d4a4216f8e8d5e08507e2dc7b7f2105476f3da0864da0f1a5d90b800c18a8da909604bd833bf1887e5ba5e4fe2f5d8d2dcd
-
Filesize
16KB
MD55f3e2370ea422123c65fc0497bdc9a46
SHA1162d3b60744cf98d48ca28f2cfc17ee27505d99e
SHA256b287b048699acc663c61504417227525ccb973864341f757a9ef9834e31f7120
SHA51232c6de34ffbcb79adcdb376bedad5e9569c34ca9382e430f97a659987e29ce62056dd05dba11f31bc02d78021c7b40b1e05d4a0a791becff83cdbcf4265b7240
-
Filesize
16KB
MD56f5994030d356ee9bf37e9df23545315
SHA163026e574d49b09a6d4755bc597614636e53379c
SHA256a71e502f2f50308b375168c2cec2d4cc2c1dc76c38c1816513c0a91656c27797
SHA512707fa7dd1040027466a0e9a64d8615521884604485fea88c4ed68894945dc69e098f5474bfe9d2fac49d3f5894109a9e3a8247f0d3ed10bffa45311a4a0a7934
-
Filesize
16KB
MD502e6dd69dbc6b2a74b1e55ed63147834
SHA13b5acd49f06c6ba40c2c6de2fa50eb7e9ba5c247
SHA25610773d37a31077f57548e3f4146a1a1c173db3c4b2e7144a2c2005400759ea68
SHA512072923bf5a2a923c26cdd2433e078c80dedd4ac7aa3c0b7d47dd8190fd548968974d6fc70eda06bc5ffc154a1398ec83fe76bf3b5943dc516eaab3a809344406
-
Filesize
16KB
MD5835cfc7decf507cdc5e54f602e3f9699
SHA14a55d424cb32e766554672cb2d0b3804fc47552f
SHA25629257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852
SHA5122ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d
-
Filesize
512B
MD5d7f21c8f8cee74113289bb3da522bf04
SHA10fe74a0d7cf2c3c32e231c74c9ede7d0996388cc
SHA256282282e18d7a69663ed4531f157fc15ba113cfc1300f4b2e4cb751f9d857a6be
SHA512672bb467e36e597a9c7b115a3d2eb61bd772788ea737fa7b86e9f0f5d59a644bc0485235547344a15244d2fcfe43fa34025dbad9c0f3ff71255bc8c22054e45f
-
Filesize
36KB
MD5b137f77050851b6e50366a64a22088f9
SHA14e34d8c2ce384a1713a37dd7ab2bb4267419dd8a
SHA256c02c6a192075f72c518477f985b49a9763f98355480817c5eb2aedf4dc33a60d
SHA512b42ce16908d1a137d16a4742cfc3864d1b2ce98897505b69b60848cd05cb4e6795468b093ae0e203401dfb425dd015e6f71fdc503008cdd6541955d48549a995
-
Filesize
4KB
MD5e90882d424e51baf8ade601e78519c58
SHA17e07ecf195d633940bc0676c8cc0c434ff9bba07
SHA2562a0b2a299950c462fca0b057ba7a1491bda5c711558eae68ae19bd7dc2d9d158
SHA51231b102bb16fd4843bc8efd733bfd327a16f630d6af57990092292dcc71ee97f6566e193f211b70bcab035f8263caaa3c9f270cfb99d9f485da702407c49c802f
-
Filesize
4KB
MD5831b53ee9e1580fced941da3e07663d5
SHA1a31f6541cb69a11158a8a25087ad775e62c39e72
SHA256d30f420f7ec3267da2335da5d35806aebfb8f056ea36a73dd88eb9a4a5e0afd6
SHA512b27344ea84a3e3fe3cd577e90d177c04d8813f11a0a98135f769058888d0c947ab42ef799f4e1b60b7cbd83c70b14981a691b57bc7277308a42d4953b41478ca
-
Filesize
4KB
MD5fcc4fec3782b13ba85c24bf3589a32ea
SHA126990bc07be4c0ed6a39b60ca7f7ec011f42b6c8
SHA256f00f900180a275eb2c5d57e3515c515ac1a97bd57170aa9a326193524cf420cb
SHA5122add3a44d5f54df744c79bcb8ce3834dbecbc84452967ac19c7d09cb8df67b593a15e9edf86968f7e3ee1bb3e4d2aee7f97dc238e7f0f735fb000b71702a3922
-
Filesize
4KB
MD5df342debf168fc22992297ed361baa61
SHA113b472c1043b05c25a168a214658eff7718465c1
SHA256558e055b5357fb11a268f9f0ed8e8a06e3cf51531cfad3884ee91d1d9e7f7be6
SHA512d9f706d4f8710437d56bdd7d39259c57ec8ae76c0096d59123855fdcb6ad83713b56b2eb6236f7026b461849c6b59e9688f47862fde58901d30e8e3d6a0863a3
-
Filesize
4KB
MD5c05e067213710f1ec77eca81b95e3443
SHA183c3cd57e386c62f3da10ebc1ebbcf32e0287e65
SHA2569cb6ffbfca2b8a81acd670b5b2b1258245e13e10efc4239f3b88912e61b7ebcf
SHA512a6de39314808f8e9a40bb58d0e0455307abee7c164d11ff48a0abbf82763e17dff44a6c2990c464cd1ffa6c573638a30b3b7c9f71dab1843d0e55ba371709acf
-
Filesize
90B
MD5d9072a72593dc2ac2a794597f1977f8c
SHA1885ed2df76ac717428b8203c7998563444691d22
SHA2566136b1859bbcd47930b9a93f974bb8f3e353008af29eeb2485ab2996f3414845
SHA512c3c10b185e362cc8180ffeb2f4281d645ab15c24858f726036f5060a645b17a178c70a5d79812c2bb4364708d4b7eb8b219ea6db2ca79a9c1de9b10f35801c0a
-
Filesize
556B
MD538a567f7e31e550c0b3c00a8cef75132
SHA1565986eed83f5e48e254aee632b818b390c8fe65
SHA2569c079c5ad40a755928a526019b53c85b33050c6fc7c824b00533d1574adb982c
SHA512d357836122897cf13168420588a18b88cf71ae424fac843ec4bcfcd6b37054492a8f0e10a33b1e87bb5fcb1c233e22502f541407571fc03438a16f18f9763bd6
-
Filesize
6KB
MD5b2ebf129ac62c08a69586d0fb0ba82b1
SHA1e228b92c4d429aeb79f36a604214cf59f5835b87
SHA256d772f1fd1ede00571a2d17fb94da97c0fc6888ee733938adbd515a78952045bb
SHA512721a2c06c2470c820e01750539aa7f417954c6dd4db9683753de9b6296dfad7983dba81b6a31b30de6daf7fcef8cfc2ee6f51376bd041c1a9a2e7717769480b0