92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
156s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
27/12/2024, 02:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5003

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
7121d9211bb2609639c3345c0947b1d4

SHA1
9a3bd404f8cf9fdb7d8557d71ad2574c9de08a85

SHA256
b267a826b7359b27548b401d9325b95cef8007212363e30a0ccba20419b80d94

SHA512
91139b30e1e38a4bccb94e91006f29ed17a3200747f5897747b51c6bb2f155c44c3f749a44cea20ac99ef496d538ca8879240d37bec0b52957d4610efb0e0556

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
a1fe176b932a90efdb50e414d9d0434a

SHA1
8e4decc7f213aa84bb0480aed07f2bbd21bf740c

SHA256
2469eafb76d5fb098fd84c4bc2c0bda73efbb88c4160016c924e18e7e572c467

SHA512
2ffe301649ea61b15347625cf7bb33f8183c4fdb2eeeed8b2ea58be616ae36e44c5c57788c49e7753d98459ad7b0e6323617294f592ce96e4b842187dd9b8dbb

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
b321d68be3014b9dd9e6b7e2ff588aa7

SHA1
67ad0352081914afd3c5d78adff520c28d6eb1f9

SHA256
ef4e88544415d57cd3730675ed41bb809d198c9225a7a2633f619cab53c54f01

SHA512
b640c1c9c9cbe0ab7d324943fe4c290ddb0ed4a546215f4edeb34d1e568b4469ee517aae0bedfd0aa92d2f6e7fa4e43134124bfdbddf9475fc4bb4c11d668078

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
7b54d10d4b9712c3522e75dadd0549df

SHA1
fe18c15ae6669b08a1afc96ead2d183578e976a6

SHA256
8adf8efe78ca3d667ebeed83b274ac5c8b8a137d33c21aa85dde49284fbdf834

SHA512
f069d1cc04c98bfcd3086edbd24ddd9866babe06d92eedc89a5d773a587d5d12d6c73e5d7575f25478da37b5b7eb00bcc6b9ccafe144caaab39fd30e45bbfdae

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
16b756f82909f50b247fd2599d40f2bb

SHA1
33cada6100d03f50dcff87601332a3f7eecc4b1c

SHA256
e5cae44baa68404b35a9a0fac76aed285f0689d7c533d5cb0094426a06599bc7

SHA512
956d49bc254d7853b7b3900927e16adaa3730635ebaf20db186446fbee3fcda07e36e43d947e34ff99ffebea7d4f71599531b02528a9713187f591dee7be3d92

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
50af13be1f84bb2573a2fb852938b8f3

SHA1
a61fd0ddc09740cc92c646177f19b551764fe02c

SHA256
feb6b8ae41af36d6090596a45f70d1c7f9ec74730133a3cafb93cf7cd3b14701

SHA512
7fd0e8b312ca59139998c7e6ce3989dc325526b62779ac837fa9b611e17073a17c1fa0312c0c382974d8610a4b2aeb22ca63ddf9fad8b082131ead2b9572d1bc

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
871fdf4c9f8d309b289b25c92bec85f3

SHA1
17b69911f2e6d06e349e8c85b1534fa4305473df

SHA256
f71348917ece7c3e557f65408711839d8ed0620ecb391f1d3584e650fbfa0883

SHA512
43aed3e1b2974f4d4e658825033f93cc4a238bc04b189a9be135ad2032033e8878f509eb42c27165042ff7a4de1f81c0db91f1a09ea568eab5337076b2c61a9f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8c38f74e9de9f65177f3606efd9c68bd

SHA1
429e69b529b9fc15e85a9d322120de17079176e7

SHA256
17b12a234e7efdae129dbaedcb7d7bf498cb2ebc09ac9852d54c9887ca3c6138

SHA512
9df7a1e0e28d8cd65e086152e703d13cf44c870daf93bf1452d6b3ff1884bb8c26304aad3e18619a6bfc869727568a54bbaded03500adf247d7157704602792a

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
bee6fe5365401369999aafa01ce1ce39

SHA1
1c602134fbd0d13cb2d0c9ee35db9c6557e1bd44

SHA256
291625a3af359b1cb8c5aa84a12c664e7548c3f764fddc19104e060f096d1244

SHA512
23fc4592b5bb3790ad986463f1b50cb21ed4f1dc462cec7ffe656e459e0a42617bab9843352a483da79912b0a8791f23161c390cd344039fdae6f23aa273d02c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
3a57d7d8910089a726cc626d0a3d579b

SHA1
2283be6993fcc033b6a3731c81493b57c1329292

SHA256
05be7b8de45b9cf5afbdd4805b7374bc46d496a468846ea9938e3a49100208f2

SHA512
b3e978ec86cd6242ec524544c1f75487bd4706b04ab17566a2cfa7aea77ecaea5a94afd1046650c0209e672765c216a2a42c65922cfbab6a24951cf6dec1230c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
97502a9f31d3e4f68ba054b1a9bf9818

SHA1
d992af114b9e05afe113c61aed254abde20cb8a0

SHA256
6423065df5886a6093618c15036d6998c3b7f956705fb021f2227c59b401c05e

SHA512
9109ea32fc1e456837732771a0ab45e61a49d5c33dc4fd63437091db036bc376f3b1ecddbcef220b869a792d54d16fb3cd49ba78735bb5dcfae866b26a383e7f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
8b07c605f52d8c4567c8f8125d9b8f5a

SHA1
4565de918ee52417d0a6776c1fcf1f6a0616428c

SHA256
e66b820e60423ba33daf1689aafa128e0189bd3a1f9306d3e44b92c01c50d7b3

SHA512
7bd010b8dfd6f07259d53d18df883b3e99e38ba7a3f3c91e9f9d2d8e3c8869a1cd170397d72aee57e9e1692a1ce8d5bc97a257f5aedf26790d010c3e6486fed6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
4a2802bb0486c3a1030e04e7967288f0

SHA1
5608305f0cfc485f2f8eee82f32f160699aa0797

SHA256
16f2d76075087989ad9752b5d41acd26d704ca84fa72a2b838f74574e2c4f569

SHA512
7ad3c6ae61628757092ca8f61668525448617df3e9b56d2963a881c67103adb425be40dd2ba629f1bdea4d60e72085ca79393225d54e84a19eb303131f27209c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
5d6c40913c88507a9c2a017bb2d59fe6

SHA1
4d0806472dd084d0b141defb5110c818da1b86cd

SHA256
16a161694ee314678f7a036e617e387c10d6e2a9f2afa39dd479539a320e4845

SHA512
462fdf1248e00c0a051f8f2069afd1321869d0ddcc224de91c1d4da22d654d6ac938b42079ca9706a7d8929de4d847e5751ddb784274f79715dafaedb4d2e7bd

Download Submit
/data/data/com.systemservice/files/PersistedInstallation3315025655331275600tmp

Filesize
90B

MD5
89414389ad2fbaf04f6910eb396ab474

SHA1
efb7706dc8d738afbfce06a8e6854a85b5727f9e

SHA256
7d14350923dc45a1647f3498f62c54a71425ad06eeddbf2b78c9ef250eb857a5

SHA512
fa29ee06de2c59a0f1837b18ba03bb4181b710198bc0ece88019164cdb16927c05d6d22c6c840bafac0abd792e70f82a44ca16ad6832c00acc0adb77931d0079

Download Submit
/data/data/com.systemservice/files/PersistedInstallation8637369228034392888tmp

Filesize
555B

MD5
743f693344a8e9707e03e24c0fd3b5bf

SHA1
ec070599b6301c4ebd63f40b84ad27acf7b064f2

SHA256
5b944f989467af784ef04270b13f3c0d098b1febc8f344d29296ad0a5756cc8f

SHA512
07312c1e7bd3c11fb88c946b69ad32daaf2b4478671625dcc3401cca9df50319c86bf6f23eea9dc8f56a1d1ff094cfff9bf39da61e4dbe0fac20355aa2a48e26

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
3f1351a26ed12c0243af7a9fdd78215e

SHA1
18db5ea705f4a022b31489c2d978e6b938cf193a

SHA256
46ad1d773b42f2b1ca78c0fa48359834aa782c7d291a528b19123cdf1fb6b656

SHA512
225339565790e1c4a71d732cf975d407695537e154310f337dcd089386308c7ea47853a0d9750b546f63f225cccc080389e28700350744286d70eb194f86818c

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads