92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
156s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
29-12-2024 02:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5047

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
2405193427989b9532112b662aefa705

SHA1
06eb907001c78f7390e0d2081e194ccfb1f3c1e3

SHA256
eac482c855ed6acf8b304f74e1edfe7f84dc18a09e7ea1dbd889ae65ad9b0790

SHA512
ad8b6d4194d23b1724a777251fcb01c28c59c058b99a3e66d781cc3f693bd81551ece7a203f9be48780cd46d017d093f31acc964168fb7bfbd04c414604b79f9

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
eb4ac66718981e9c060b15e3a412438f

SHA1
dcd52cb43ff807320c155523c6ebf634056ac9b9

SHA256
6e89e42eb9023476c2efa78cbd10442f31409ca8c0e294697740bae345b4b0f8

SHA512
24ae0958773f3859b2c4465a6be96a3c3a24658c3bafe78caca7558f9c3e58c0b6f3c3afb828f2441422338d5586867d7fb9e9ae9e4bcb804254c763cf34df2b

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
f228a8a4e54f0aa3984bd15d51664374

SHA1
e69b7eb14605e5dcc3ddc0191433e300f4e9cc6b

SHA256
f161faec63317359b5798e49a40e865374b5e770b68f1fb02cc347cf73544e28

SHA512
cc7d4a283262a984db28f7e7d9eb518798e660586a1f0c89a553f9e8dd4cc74085c974b11485ceb7ec64806836c9c11487043fa0c45f2ee146bee8afb66bdbc1

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
44de80c6906452590c9acc1759057e13

SHA1
4ce2c662dfbbdd08ce1acad30ca9e2c381b2868c

SHA256
3248682b7ba55fad47deb410c5bb5aad6b41634cf52f7c75c7d277e879af2169

SHA512
7829bd27247b09a037bf69c7ce521c38b27fc4f997efcec83e0229beac8fd695d05ec9e5f79115ba88befed7f427fcb30a54b13e15243b27d8a5bbc0c3cbef99

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8ca901cbc75fb8dab24b8ef86d27a626

SHA1
71f68324f7d2c40fceec8587984f05cdb02141df

SHA256
1669b80609cb695d50d12d5a6d932cc4fe04d954cb5cea432ed6cb594b39d185

SHA512
4c491f486e0ac90b18287f6c8c2d181274569a87a416a65b19ff3ef602a142bd9e87f0de9455def50c932cc4658d823c54c7854e0feab8b1bdefdb9bfec28c9c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e969c2f4ca5b035ddae28797a1272840

SHA1
69afa75bf378b8eea281e7af67b5b9da44b32ffd

SHA256
e53806bff09169663749bbaac0f9b90b0541728d45b0fbab1754659796da4793

SHA512
76941966328b5c2f231ef9766fe6c32fed908423c188bd9a8ce1cbd28d2a4a43ba1cada04e2f7a33288da5247555876be9544108f1aed22787eb14c2a6fe212f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
624893aba99f586164069a2b7c461015

SHA1
e5e148025ad8f2c89f7279a7f47c1002b8e940a0

SHA256
e3a9c1ffe3c7d01042718e877cd684a8b9ca5dffc4b52eb6f3f3288a2d56d132

SHA512
64e5d602717e3c72a78333b846e40025ae9ad00de0c41e9dfd05a4e0eeab228ab7cb474ae602297b2ef3b5c96aa96aaa4b59c59b8552efb2bf6fc80153894c7c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
66c5495aff14caa65232aaea23cbddba

SHA1
1694cd185e9e74d257f097dcea096240b72c61c6

SHA256
fb73cf80e3497095a5c4a911ab5e58c99d407ab7f79fcfbadf6c2834aea31707

SHA512
a9f64f8c03b3020293b68a473d05443753fb0e5907aa85cf30956e2c58d450f71dd813babac3cde5cf440f12f1ff6060c8b20cd839ca64e6ea2556cdf0b2cc2c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
5896ca197c739c8c5ff0ac5d16134501

SHA1
93a8ce9f44f6de1ac9d5d1504b131c87e3f71387

SHA256
18199f232a34856a3cc2c10dfbd188e0fc346ceb02b20a4e69b0cbaf83dfc7c4

SHA512
628255822f25679f09dcc7e2dcec4fde8c6a33c6a4ad9bf749b1163858919b2be1295053d46414b531b6b8d24f3ba00489130163d0a386d687b2200615182622

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
d141fffbc072b18c2f42b14be77735fd

SHA1
4e31b23c07bb531f26d9788871c83d4fc258ad85

SHA256
ee87d5635c28d24f57a0bf085c1ee069ad3d93337c9af628837e9cf112b820d6

SHA512
71165f14b66d2c72a87f9cdb4ed58f85419ecb6e0ad9689858e8b37e7d545792abd3bb60e4f28ba8a577262232f260f7c345d718b012f0e6e192d1269fc27341

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
66bcbbef1028bbab9010290b6e383df3

SHA1
fd67eb7f3b8f70b450b681e34a949f22e68ef306

SHA256
883571f82b58257225c067bee393c05c51d4871a19dc980774ffd3f2b2a62124

SHA512
654efa4af9e0344d7beac009788a9369e07dec3c5a91189a8ae4fbf3e9b0222fc1a7405b539622ee9b3030d71473ef28f8b6447f2462bfab46f3c1bfa73c4b92

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
3a425b3a36af609226c50a511abde7ad

SHA1
8b6cda7f0522c69cae61f2a562db9217fa3c2240

SHA256
430ef1134d71c447f92f3d1d3b9f83ef24798d03f353c0a93ab84b7c5a0dfc10

SHA512
376102cec9ef4024f5aff5e041a8626928a539c903d278bd7c072a10ea48759e5e9fcb1f7386847290a0521adebc4310a9c8f5ba7795b8b39925bdc4df42abdc

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
b4b3ec04f166d67fd84cb31558760f4e

SHA1
083e5e738f207e8e865108fae7f45b7b4a38feef

SHA256
4716cd0a981503204fed9b0d4f7e71447bd00b0a9910d992e3e49767b6c83fc1

SHA512
3e66fa5c5c793c1ca06301087999a009d800b5ec899fc8370ee4084bc72f7314eb2db69423cf915d32da82439e81cfd0393ba63f5561223fa6c2eded88b5d79f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7cbe62552907d975cb8708265f1f47a0

SHA1
87a37548391721f74cf47fe7ce3fc60903499784

SHA256
b27a19eadedb4fe69a8b11e02f958f9c490889799dbdf36c1f91965d09e349bd

SHA512
de430a81d09e381ba996f3c6c90ee8f3d0c55ef2c70bd4e17ea05aebe71c8e4533bc0f8f7cbd1a63e47f6cb4242c4fc36611606cc6c7be487458f874e11f1ad2

Download Submit
/data/data/com.systemservice/files/PersistedInstallation4043581777634814794tmp

Filesize
90B

MD5
43c77748eecd53753adc909d3bb679b2

SHA1
93675b45144557c9de486222b46cea75891fa5da

SHA256
139dab7b43965b4170a875865bf891473f9246a072c90d1fafeddc7103a174d1

SHA512
f7196c599448100b1ef46e57a9bba91d19c659159e60a5f368b66d2e54a4b3fafc6b6637daccaff39b6bce434b3dfef0952e46b2042755acf2858b63e0753e84

Download Submit
/data/data/com.systemservice/files/PersistedInstallation9167485655934578809tmp

Filesize
554B

MD5
f69053ae847586ad1684db990501d8fc

SHA1
7b15ccb2adb18bcd00e55e8de285aff89d2d0e12

SHA256
5b41862f8c3615d7653fb75f29bbafea362e177a72379eb368d4f73023ce9d8b

SHA512
a32163d7d129d1bf6688fba9f7a259ff860b20d7cf3873e2d9071fba2d32a6383736d23a771933b4b8d185172457f26c1eb86b2d0ece18570808019e6179e18a

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
278581441a41400ca6557664951b9537

SHA1
2c052b3ca52a18a198c8090eee967a018b74e83a

SHA256
f1fd2684680df35f0ba6416e0aba1fabccc112812d881592af6db3b03f79ee5f

SHA512
304432fa77b3da2816d1e7ed38d9108718d2a7966305d2e895e2abf87f48f18118fa3775e74834aa732b022ccaec74c50bc8a10efe1404772bcf4cc12d2709d0

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads