92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
16s
max time network
132s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
26-12-2024 02:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4931

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
4d4e7ecdf2f030c70ed635293ffde297

SHA1
32eeab03d1c1f648f9fe1ddef8bf79bf39705564

SHA256
537fefd8967f736b04b33fe3f1c884923a52992c33b161973d877749471e0d4a

SHA512
b0eb411ed4cb696f25406d92f5e22d45b45c351fdd3f181954b20ac3eab3e0764b24c4ca1870c9b405dfb2c15ef6d05908ef8ae3cced177b28373de5981a0329

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
935da8301511a2c64ac05847b6ced662

SHA1
95b31da60fb996b44db4df1d6b360395e1c80362

SHA256
e1515bcdbabc67b4a0fb57aed1a59e1a212053e63990d58bdf6f68993fbb10a3

SHA512
c988ee6e872b4e4ec5d9e286fbbd92030b4cd479a697c56b0c78a6e80b73233ab352f32d8d74b6acffc0f3475fdbd4ca066eac577f68b74d86983414c57e2be6

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
64c8c698e9e5e28a071c348f597e288a

SHA1
8d73b9ba2663bdc9bb22b6eb2a056325e7e79ee3

SHA256
fb4d5288fa6215038d1368cd1fa62323cd41d2d9fc9698c37e46c87f0bd03754

SHA512
a297f2c8d6a2ae3c6c68aee48db7ab770926f066a12924f4af79b6ac2bda8579f5cced17e5f1da79cac4def92d8ff3d60a76ce6a2dad7232b24942480e22cd11

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
b37c771c21ba6acbfc950a1ee3a1d6be

SHA1
a8f7b575e35b9a5716a8573cdac05938a3c7d83d

SHA256
b8601c8198039a79913ea7d446f4037507daf8308a3077d0a7684cd7b61457a2

SHA512
c83a9eccb5ec9025cdb963ad6ad49d9a55c48ee884d2d87252e221d93516f68b1978be3b2be6e7f9974f949aa9e453f4b0282b641f30bcfd29e9b83009741fb6

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7a4a2552c1c0ba85073d8f105ef39966

SHA1
7cd4404f6345ae011596c72d832f24a5a5c2650c

SHA256
f79e9e42487e7d6875f00d458c1d4af75c4fe324028f7f2f53462de9fea26fdf

SHA512
d5379eba6736bc3a1df2d5ec823865e2cbbcbd820c2b761b654ffb0b827456c3bfc4084347a8e609caca1d1dddbca5ee85e7bbb4e0e520e1d905d31a796bb2d7

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8f30484bdda800b9d3b80bfcff3c45b4

SHA1
2d752647e879048a409e3c6baed8e92f729034f4

SHA256
b87a30098b75363e09f68ea2a7a9c748a0ac6aceccedf5a49cb83cf15e016dc2

SHA512
b4a8f65a4075f42087dce3cedd2a371180b0e0e9ccf8efac2c39ddadff965dab8ab40e53b7d1203db23b5797bcac37f8b977c2aa4a1b3eeac722c0c13dc854e9

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
00cb9cb6eafa83fe6aa668d06a6e8f96

SHA1
d96e588b1774eacdf07a5647b830ec7b2f6fe834

SHA256
2378f31bd800fed110bcb7c1380741bc90c19168bc4c2ad7074dec7e384b8b07

SHA512
e6a54b56319bc93fdddae995eea051c07a699c5a26641c292df84388c0e6da97cccc28fd1e2f070e865b9540d0620b5395bcee063a6b8e4e127c258bf965c1f4

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0a127532e9694d797d09ae0a1b42e028

SHA1
409f01808a59285a60d304010223b60ed206e799

SHA256
9a9206739bbb238512843cfa0040bff7458df39e06f84d9266a4a3c5b2067e1c

SHA512
6b89c1f821f93ed11ab647fe3875470d9c24d1b91fe277f274df345c3b1b14ecc70349e442045b1891fff6bab424b58af5f608dd545543389610073a325cb82d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
85f49a5de0a6cab2bc6bae383d1733b4

SHA1
e26430bdcdabf49c3e1980f692ad8b6a01fd72b0

SHA256
462d5c67f97be079060ad92008469a6534dab9c9638c8525992740a3336656be

SHA512
2436eb23b132c520ee11cb3dac21d674094f771ff518d228e84f46e0d44fc59e5f8eb9ec385655b9dbc29e5f100df027bca25c89ed80b6cfe2ef4d023992989c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e90f0b353c8231bcdd36d20aef3482aa

SHA1
40359690cc46dcef817eb3046408e81a5b1408a5

SHA256
fa82aea45e89f73e59c05e9bef42cddd65c6125da9596280c0ec71ebd5267872

SHA512
5f2d42be5271e582ebbfd0b84b001e19c9ba8ecfc1a6c1a0f87cf81024b73322c432809fb56303471954cdb44fa695b256c7b387950b0f85edaaa9d76faea92d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
2defbde779a4b21bb0a18c640ead20f7

SHA1
5b31b37db33deee4d5c91ed5be5c389be360771c

SHA256
deb80c1392663efe28751974852e80a19f60ca6d8521fb82eab62509702bfa9e

SHA512
932dd6a090c04871b772429930d17b40c6fa8d7430decc4dc04eae36f450ed1ba7ef5ff28faa5c0a683a06f05f86f79dd752aa5a93b0b2f5032e8e2904ab92b3

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
901782fca9ea7e5c9a8468628d9753d3

SHA1
070f426efa4ac42a2108a6b4a0894890c0e41eff

SHA256
6076d9e66647fe52523c4762c846967a630c91e1b6fac5628be04d701739fa4f

SHA512
22c9bc575d2032d59713cde600fb0b2649b1106785a35d948c47c08837f7f0c59b012190a27e42c4e2e4fa8076e7c9b2ebadd5e25a34ba5c954538e44d65958f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
82452e65f2561e81e60ac7c35d447955

SHA1
d6d497b6fa1b5aea88c1ff7ceb0cd8e49a35041f

SHA256
b0869500c2c8db6638d9cdc57489ac9278dd94ce4e99d414d3ec5248faeb9590

SHA512
fc319c3b55bca60c3d2168228b23a3d50869eb2fb42433405f72bddbd9d7d2331c8d3a1565f930698442af88589f9e54e7ea187204f6d385927c69ef72dbd4a5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
f6f21741b5237f97a9e8567313e28e5e

SHA1
7d6d08e144a55a94dbcddedc1eccce3a847f00fa

SHA256
c686eed81442db56445864e972184b9d4bb56a343ee46a2c788485e47122b82e

SHA512
f01d393eeb4d6e4e0790c4331629640cd35d4a8f2214d111be5bf6652e12b38cc749ffc02e1ec072f4c9b614c0ade8f8bfecb03dbfbe75895961e4f1db72d116

Download Submit
/data/data/com.systemservice/files/PersistedInstallation1882856997529367225tmp

Filesize
90B

MD5
dde30e86448f99eec3518c30bdf692d6

SHA1
c254960e2c45ce41dfecff42c0f0a70a9e1bde08

SHA256
822a23b6b34a9a638cb293c3001eabbed2015798990f37ba6f5218e19a2a5c96

SHA512
0ebcf97353b1a28a4c691cc58a5d5334e5bafb6ac285569ddc469ba2259c14ce3672f1b449882ff5b343f26dc5c5ab1ed22f8b3ca6497d29572acb15b6f0be04

Download Submit
/data/data/com.systemservice/files/PersistedInstallation4095802181042575988tmp

Filesize
554B

MD5
4ff4b4425c399682767eb7441524901c

SHA1
346269ad4a81dcd6364ba8f692dcf175641c583c

SHA256
19b6f04375fe0a8ed7233228f5c0545e20d46062042310ac03bba342c00b3a29

SHA512
2b239ea6d816c92508bfd32d1143285150d864c0417957646407c9cd3f1e32164f92ca6b67b523d42f99751a4b505f578b05bce4af9658e552a6fc429efab768

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
99e96226fccba17786a0ef7537b65773

SHA1
d9e28a13bcb9956dda97907aed9505aa07b90abf

SHA256
a1e9701de1ff86f11efbb980db2eb37303de2cbde921900087fe3df6abad1b84

SHA512
362ea7ceec18ed53cd62f45204035c77ca01ea92132973935c7b3097c4127a764a9af8e3358d618830303d471623d1f8d8a444b8a9836e3950d6d4853ed859ec

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads