92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
157s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
31/12/2024, 02:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4983

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
6671fc112539b21ef2042d227c07f522

SHA1
d4b645569da0db6d74c62dc8337013981128e8ff

SHA256
78873a98b2fe8839153cdea2bfaadf5d9d1b55e609ab776f766e7f34ecfe2771

SHA512
464b781582c961e788f7176fd291d7e2d4c391fa247b7dd52099d2d4142ddc901ff7420b48ad970372eb88c7012ff961385ffae5aa3b047608e86b737bbb370d

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
7d9ed7cf778dccff3df3850a07d2598d

SHA1
bf1c2bbbe0a6cf1ab6d4804611ea41e32a37d690

SHA256
6d889a85984bb542488dbebda81c9087e5376579a74465c330c9c7f04ce9f622

SHA512
89d23d738fcefb2172390d99c2482541c0c1d24670671dc93ce6e9d2a2f63903460343917c74dab771e4d5a3d2ab546c1860dcdc597c6370be6052df299e009c

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
0bdc245fe33db8cfa2d6905dee98ef1d

SHA1
58551192a090ab61b683798566bde49eb645f2f6

SHA256
56906a4691fcaa2294adf67fdde70233bd8fd5a3da848c203e83a0e40d6424d8

SHA512
dcc94810b9e922a736b1ca654a731d315310cfd8d28961445f247dfda68968ad0febaf4dff0555d16b6d37a4c624cf14f255655a0fb0bb178ec7aaaf058eb563

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
175d81cd9c57191dc838373d57078b6e

SHA1
c64892a16ec60996b1211ab0972435106d38a737

SHA256
279a423340d72f6628ddf63758606af5486ec507130ea481a93624ad8d3ff3b8

SHA512
d84ab128678287c3f8254c7370fb484e1cc3a71febd25fb74ea1b8828f08faebfec2f25bd5b25418bcd9908986caab386f39069092330e04f5766c34538380f7

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7cb6a8e951676aca6e16b13a5d6b530f

SHA1
733926ef0acc332bb528618edeb3eb9f397b3196

SHA256
7f8df2e064d69a40be3a79f051d9b3d4b38005e71b635e75f06b5b7bcc85cac2

SHA512
9c67396cd6dd496e344eb6ce52dc4c29e317ab4b525cdc81f93c1409bb8eeecda55410db64cb0d9a12912c981640f162a9d6f431bc38ccd9872693e7a92e6453

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
329ac5c8317e0db4d599ba9a812714ff

SHA1
68e7a0dbfa694b08f7e00ca28c267ac1bf19c715

SHA256
7695c815626565a699312702f5cd287e8f1ad762ba1c97aab502fff62355da93

SHA512
4ce33bd99bc00273e3ee0cf62af1cd556ec951b883db9bcee5e545d9acc715d01e05eda9e1922312ad4a5dab8034f8743ecfd43ec1341fa264e4b2b4e3b704a1

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
464fb6a4875b89f9bb542140482494e9

SHA1
66f4c24015990fed5be38da6a6440d1478a3e005

SHA256
59780b1dc92cdf1e409e6f711a3989865a65275f223cded006031406acc3c7a0

SHA512
6053092862cb8ff3853992353e9cf8df7a65294816afecaea2e5fbab8cce02f3422074f5d13207c6a6bfdfdabd87dd38a1b6150b6f8de1db9250d5ea303cdc14

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e62b9da0279080912abe92f4cc5fb464

SHA1
7e29924b4dc7778811ff4658537cdb7b5f2ba8b1

SHA256
4439c38d6b8f77c0737301b8d75afd1958f94fdcf275e8f5b24f3f2d89e5b3b1

SHA512
6a0c8a8586aa47073543e8477ec229d3a3cbaa86501e64b6e1549d461bd13ce90c9fba02d8f646f2c11d270564a1b54ad8568733a4725a3633ac9d1c5ab28343

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
8023ade5887ae1ce93a6064e447fff9f

SHA1
86f95d3df8b320c7af79b325265778082ac99680

SHA256
d9f3fa5c13716e8956564e6639b1491d6a3bd065659e5e930509d6e6140ea3dd

SHA512
502b31b3575bb55ffc699f8c30bf236bbfa1986c78723732074ee255d27e17185dd317dee8302e4913d462140019dc686b8114edf0019068263ccf47d25f81e8

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
02da4c21554b1b24e5f0e031177c065d

SHA1
b549055163519a06df025b95f6bd3d8d4b9d69b7

SHA256
43b2f0fe47cd466859ec1c19da14fa50b7c0b8b0e9e342d1c992ddd7957915dc

SHA512
0abc0895176954c08c48271f2e2ad879696afd9cf13207b1cd140f6716b0d623f069c54bcb1880e75ea72f5348513a51788881662fb2707bb69ec3278c0c19f6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
00c562c04e11f17f4739a6d3f5be30ac

SHA1
fd7ce8d42e353b89e4bb4e94fb474f499c03d6a9

SHA256
6a425579235d56597abf2611b5d6238585652cfae24797946f6c846707bb5471

SHA512
1d57f36bfa84692c74e8646c9a68847b61c04cc3fa201d082412dbf79cc67606344ad52d6813518f1f84ca1bc959286c883743f6754ae171f289958e1f7a5a11

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
a848f236835b3da151506f6722f71675

SHA1
8397f1d3100a912af9529972a0aa06fb66a57870

SHA256
070c5c9b73294ae495a41b8138a2a19fd50cf25462b60cda63a446ec786b4c7f

SHA512
151a866ed85ec806aad2b2b2d3cb0006bfac09c9c1b3e79fdea9dc360cb1f739bed79c9a05500d3a79cc02f6b7a02d8c5cd39da43fcfa6365aaabcdeabdac846

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
17574fce221b3742fcbdeedf86b0f85e

SHA1
e3d785949a76bbfc0fab423520b63410c8349d20

SHA256
4e95d4fff01994e7d76fe5c4f915731dbf5908eb881ba29d32e33f273da1a166

SHA512
6758f9c3059e0e7f93fe33c563a7881e7a4cdfbddee2bba38d68d4bd660019696df8092e579deb341e9f7f415bc0c49905f5b9bbf20a5b57804e23bf9e0479fe

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
5a8ec5090b915012b31260cde4e31fc0

SHA1
155a83f91624856159845b35f73147709d63750c

SHA256
ae21f787812f7d86d84d6ee6e57b9aaeaf95cf496e3d4fa1ca25214f25d6b8e8

SHA512
ddbfc2f03b57c5345dfb51f63e800ac0f6cfc8d0e91e6e88758a69474a6b60b53cfd16e11ac1c36d87101d70968d2b19d6089bba2215cff71655c78150e47322

Download Submit
/data/data/com.systemservice/files/PersistedInstallation1133487032387680632tmp

Filesize
90B

MD5
74f936e138a33fb4ae1fd3ac49857140

SHA1
2896dcf2f21d7f3687a48bbfcf1384363c637c9a

SHA256
708f4e34b1f540342d80a53e3474ee78ca7765ec8bf9cc61a2f9a99b3cfa6b07

SHA512
4ffe68230cefe156ba553c517a41e7e9c380efe348e7c4528a179e780aabe54275e554391f3bbbe99b57057f99003b1d6bc95a2a38a532630598084fdbd21a85

Download Submit
/data/data/com.systemservice/files/PersistedInstallation5151741587625831905tmp

Filesize
556B

MD5
986215c6a4ad3197b9b876f36cf51bd6

SHA1
18048689445bd715025f2d0d6fea306bea680d07

SHA256
dd647b58a719169abd38c25928bbdb83f7db92aba4ebc557130d9cb37f416dc2

SHA512
e9554d434277b817143e8a5335bfc95f3b4c040cc09db27c3243aa3637257283baad7792f11d46f9da438e6ce69a2ab58f906ba42774c9aa3b76adda7e091acb

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
46146fcffa79da8d2d328fdd4619a0d7

SHA1
f51121c1932c679208c01a1f878b055c95df892e

SHA256
1923a315ac596a773b8d9985db53e07293d7cf64307661b951e75219fdb345d3

SHA512
ed6055f3490915545d520e876fc4f68b616f2d49c431fdd14c129ec791387d0c15849f5b61cb082c2c632a24363c3c38e077fc908f1c75f7d02922f0cee3a8b2

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads