Analysis
-
max time kernel
17s -
max time network
132s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system -
submitted
28-12-2024 02:33
Behavioral task
behavioral1
Sample
92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Resource
android-33-x64-arm64-20240624-en
General
-
Target
92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
-
Size
3.6MB
-
MD5
0366ae0abf0ada8aed90322bfe07dfd5
-
SHA1
2f0779ce64f02944e87674745cb446c5bc620607
-
SHA256
92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
-
SHA512
52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
-
SSDEEP
98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
description ioc Process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.systemservice -
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.systemservice -
Queries information about active data network 1 TTPs 1 IoCs
description ioc Process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.systemservice -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
description ioc Process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.systemservice -
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
description ioc Process Framework service call android.app.IActivityManager.registerReceiver com.systemservice
Processes
-
com.systemservice1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4257
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
Filesize
512B
MD54f0d129617c5fa0620fd0a5f0b7d0cdb
SHA185acd7cb684b02f4a50fd30395892ef6b285e430
SHA2567cc3ea01a23522616b620bdfb45e3a07a3b9e3a1b6da9ada150e60e19b13b116
SHA51297f9cdfcb43420c847d9945efd78c9553b9af00b57acfce7a7408a7553285a52c6849b0369ae5b986c2c4bd66c7c708c6dba592e15552cf3a5d3076e6ff7ba29
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
68KB
MD5f19169b7439226cef320feeb3dd4f0df
SHA1fc122bb782cd6a61d0539599bdd8270108a6bd02
SHA25607229bc1f62dc45730d0d79083807ed29e73057633b38ffa4c5f0959185da2a3
SHA512d4c67a71817a0312a08acbd929b6399b3ab60f0022f3dac56ba8fb2f3c51ab65364191357c6cbcd620c40d94eeabaac63d59b7873cdd9353db1b51995f6d11f4
-
Filesize
36KB
MD5045489a0639eee27bca52f48828cd93d
SHA1436e7966e7c019273c44faa4d8c5709b816dfda3
SHA2560151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e
SHA512c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e
-
Filesize
16KB
MD57237409e0640cfab7bdbd429bf821a3b
SHA14c3da934842f8d4835dfe2a9c275a300e5123309
SHA2565c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa
SHA512c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f
-
Filesize
16KB
MD5c3a9a79a3a2f974d1e889eead4de8b81
SHA1c38e83f7b4ed0f7ea472083cac4eb10f8f46bb9b
SHA2560495813920a8c366561dde29d274a72f20c584867ee03db1d7b69801928ebe8b
SHA51248da2641ed960bb72b3f6df4cc645073966324099ae223346bd6cff383ac57ffc7ae2716fe3cfd3043e018ce21d1b8aecda241c3a73cfccad7e0d891a8811004
-
Filesize
16KB
MD5a266836eda322c1176c84057996100ad
SHA18d863aacdf876f492e3d13c0086460155a2c528a
SHA2563509bd1ef49ab174cbbebe10f73aedaf56402a1cf0f928ea62b0280ac335abb8
SHA5126d19dd033945e504562868c95e927f809c13b2f8f5365b9cbed36c352c5d981c67e6e833668fb7f189f7d28937f66184c0b49513579560bc37d94c860169d05a
-
Filesize
16KB
MD5da71b448da351723ebcc3defc1759a8c
SHA167d05f71807a921f8b2fd1e645d8d694d5af8792
SHA2561aaa5f89821372e57120ca59c2103a64c7475131a2d974b73956e2266f6500a1
SHA512862b1793616e9e48164a4b214917464ec18a977252d4ee156a6cceb1f0546cdbb36fe53812ef8e6ff7a3eb2b15b26f05cf8683a7f26c4ab55c0c56a97c1308ed
-
Filesize
16KB
MD5cafa4dc3f9db64d35c7a626c4db57d1d
SHA12bb6deaa8b91f483f480a8889881b9a983f20ca6
SHA2561ef78082f178da97c25f44a2a6c8575e671047befbad5ce9a9fa440335d6d309
SHA512db740070418c2272e370a98e51e810f40a344ccdc09864d137978f8a8ef2f25185b3d5b88d9d42d2a2f6aa5b5d5a644a758d42343b10cc3deaaa3cd511c20f39
-
Filesize
16KB
MD5835cfc7decf507cdc5e54f602e3f9699
SHA14a55d424cb32e766554672cb2d0b3804fc47552f
SHA25629257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852
SHA5122ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d
-
Filesize
512B
MD58ed4663459d075a34a8b859a2426f933
SHA19c9e4453ba4dfc40fcd658c53f5dbd6c6254e3de
SHA25654c36ccdcf0a912063478ff6cbab4a56c3cf559db4d18256c7df93cb69f3c5c6
SHA5121e92e99587c9c51a599e1f76db35640097a6f886fae6f3df13822721c6239e40cb583665260457de438fd4bc8acc2df2206d79929c65b420382f1bd0d6334380
-
Filesize
36KB
MD55eea0c3857c7e03eb3e55df3e4a2228b
SHA13816f4616bf7e6a39d7bbee7f383749dd7dce416
SHA256a9fd1232ec5e5790ad93f64bf4f40252e18f54a57cb6336bdfafe547456c3208
SHA51269996098605151854ba488d9129f1087b0ae7333a5473f3251a2f53a07ae29ad96bf3b676b4d62fa891cd099e92e19a0014152ab617221ee88a35ac773ddccbb
-
Filesize
4KB
MD5a5b5ccdfd33e755f46f5f38633ae6070
SHA11ce1626e527a4630e229dd37bc6736e40f422941
SHA2569b4bc006861bd8f86872b7dd7bb53f31b6632b656d73693f79a09d1f0cbcbddb
SHA512f72005d17075f987a12dbe96690fa7c9e29089c0c67c35599eedffd909d320e028d05cbe112d37bf72918902bf3c86c958f6c441dee79c3e063ee6c2148c420b
-
Filesize
4KB
MD5bde44647f739092a08b590b3bb7ae42f
SHA12b4cf363f0f9a6187d2618b08545d32e93b26293
SHA25633de3569ccd38db6364a5c472084052bb5da195caacbb45b2a8c40689e606e85
SHA51294b11de345de96af4f44bf7ceeb237a2cd20bc46bd5fc45dfe222fbe24a2705d5eda761758153dcc8a83ef98e0a70e673542123a595175059b3f91773cd72237
-
Filesize
4KB
MD5164a882ddf20160d3bde22f702a2eb1c
SHA1ef4fd34847e8cf7fb560ec474fba2fb6e6b3252b
SHA2569f4b7be424e46276a41f3db94c15947573e4896dd7920d0edfb51d7088f9dfb6
SHA512fda1f89e93c17860154bc9e9f695d008ffc11974d541337929daef3185d1401a6304eeb70b81c1895ec44daa0276d20c00e0dd1400dd1b640a4102d3aafe3717
-
Filesize
4KB
MD57deb35176bf405adaf1ba05afd854757
SHA15074051798b23040720ea957e4ca31691fe5baf4
SHA256f84197530e554324843cb78b9dc94105a098b1255a883430bbb421b6c6d95bcb
SHA512889ff9357ebed9558b4f270c990e83550c570a86929ecaff86c1be2abdc7dc72ba68f80b464de46e20dde58d3dcca3ed997b98554bed9072737926341625c08e
-
Filesize
4KB
MD576aa6b086821d2011ac443d044e57d9e
SHA1b99d08ac8b180399bcfd3197e0bf33e0034ce636
SHA2569d970d251dc407fc530047be7fb19ed03dde57e6f7328b014726b1110d3083d5
SHA51203cf57c7f8588d160589f762ac954492259a96f7de3ed17b3789a644557156cc5fbfcec9719d606349ec52f6d22de7aa6c97e4d2a791ecc51433687a99526b85
-
Filesize
553B
MD5d96e602a12598637ee954d23f8eb99bd
SHA160a8171dd161e3ee770b88c5514b5d3b16838f59
SHA25654df04590a83b21f2980fd819b25a6ff61e155f62dabea6b5fc7be46919b7760
SHA51257f1eb2462c57a32f1bed1e97de8c7f9ed448560aea49a2230196f92f8543fc416e7a210ebbca980fe5579299b598dc3eab0fcd751bffc0b2276e012407f3eab
-
Filesize
90B
MD5a73494830e3a8088353c844f9771e3a7
SHA15e8f743e146f65a612a0accb34ca15430a45f8cf
SHA2567b9c7c459a82b575d4a0fa69ec5dd391a28cc5b5d744b25328ec43c72e35cafc
SHA512863296bd35b9cfd6018d7a50a09de18f1eb6ac72989805ed416515769c9796e29fd12c12eb0c6d8de869c4234a09373f0621be10e0913c088cc29c743654b217
-
Filesize
3KB
MD5ad310f9acb5422b67bab7ea41c3b3caa
SHA136d1a468f5fd610966eb5d0c992df57d09d2c8b8
SHA256e7249841e6cf751b8b2489c5fb9ea3d050aea66e71c836d612fba807eccf4a16
SHA5126b5a5130453a0d8c569cbce8e3c57c95511f21e599c36e55d723cddea903faaf8132bad0c0556dbd22739d0fba762083476e1a8eb001ca1254ef9f26140cf061