92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
16s
max time network
152s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
04-01-2025 02:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4981

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
7039e258e3defadebb7286a62b390372

SHA1
f17c3ec96e40aec437d058d9b8e0d742246aeb89

SHA256
3a601f1619d3d00979d0d4484511067be4c34f5a37b0bb60bb8800b73d14aff1

SHA512
29a9cf2ddf9cb42c0d886778bb98cf967900d40eb6d4038e3ffdd4964c57508f1b6c73dbcd10534e50bf344fa867413d3b78e0d6cb9a7060bbaf4516bdf2d88f

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
367fc3ada884b6e93bc299155ff100a3

SHA1
f858a66a7ad00899387f3e63bc145aa124ee839b

SHA256
e0ffe80a7406ba3f67610f54450aa73166a21b16943dbba78f33d8e0d42abfa2

SHA512
3c65d83823da28d28e8d2efd6a046b5fe495efde267a00a78f2ec643865d5e4b9c496418d79b6264993eb8d792c8683a3bec72313a4f988075226d1e698ea0db

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
eb88904cb0191cb9b89da2b8d09ff52b

SHA1
ec7d76e183609474707167cbb52f426bafd49aed

SHA256
e9e43959da9de6b7a2b10cad986d5f1b19f3b6c440bb978660b60a4fa3bbb270

SHA512
0b13ed9fbf85857d54bf1f73757df98ed920406aeaaa21789aa8909519b4a623a6706f55c091cfd54e02580b638404cfd8fd7d1a04a31e644de4fbe62d2701d5

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
56e24651f56adb5593ca4d50d8758f9e

SHA1
9322c9f80e6d3d163711356fbf03c50aa842b874

SHA256
38480dbf9fae1fdff9b5538f17aef80e5a71932b28e31f440d6b1cd978c60a56

SHA512
ecb1de3d0313789bea93746c49248414e3a4f8f9ac65c2ea928c182734f5459bf36b1e2704f54a88c529ee2a48e719624a3f7948df30b47b3704f740173d8020

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
73c030577c9a9fe26e0257b4fd0e40d2

SHA1
f3b8b4510e5075f568fda3945f85e800ad6fb824

SHA256
b1a65e03712f328a0f4ef18d700a3df94054f66359e1215587cdebca83dbb0d9

SHA512
2cdf4a6e3cb29117fb7d0d05ce96e3926b080f7806f1cbcf2c26b9f94a4e96f61d54f7284ba13e7a58e789bba84765933e3c987242a4b72b3d1526196ffa11ae

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c017bdd24bda897555652d00d4ef8822

SHA1
8ed642e460f96cbc47cf46e1380e05eb46f2aa20

SHA256
e003ecf9114eb443a8225edafa40a7c97848e6ef3dd309e57f49ca6049adc8a2

SHA512
77df801e3023e4255a5066989f02299535981e0b78ad05c6bd2e6d160b585548619c7274a2f39d0765eca6586a92b241540b24eaa99582ac9a01f7da35196f96

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
81f49c4be8c45163514f8ae30dbda5ce

SHA1
0a3fe1cdec94a7cb306b637c4f80e7d71b90910b

SHA256
cc45cbff5d28006437081348a72e3f1eb5ce2d694c00187adb558ef863b86839

SHA512
356b7dd77e6189c3cc02f8c756210fbf892c43d7f6e52cc4353a55ddd9bd42f1c2699e7d8385f3461a1cb1484573b225dcd0b27ba8cb750e21cf8a165218f6a6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
78825a86a3dc7f45f2369a9da5e7ef8a

SHA1
82c5c11039c0c7b9dbd8b0d30686de09bd4c3f0d

SHA256
3bb5bb9c3fb4895448f0a693452b542903b4dae63ea4a3dc214c998ccdf9cf9b

SHA512
442a01e2fdec2edd488f5719d6655de4742e47f54e74e79669b79155b2cabe3decd50df3bd8d87ddba0924ee33b8d4ad025701cf8c3fab9710d1d91d2ddcb3f1

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
31cc830609b4e9c1214df51e5327f74d

SHA1
bee7dce1a5077794adb2f6af2b169ce212bf865b

SHA256
83c99b234c2872198bd76d7fcffda7c9388a0e5bd7e6a738663a90dc356f14f2

SHA512
68061675f50765d11176713456f4644b451f657cf8db629d3d09e73d8273a7497d982cd6a15cc90f4e83c5437a62e93860ef849c468bc3018cc9c33609c94540

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
44a403990783de786c7e757a95d38660

SHA1
8db6222e93482d5224625d82157f66fd8d0f857f

SHA256
71770983cdc6f2392ac547ec6abe6b3e5ea3357423d61ae291c97e9625edc0bd

SHA512
a14a30cb1f40e5c4dfaf6309595c6d0bb8a180d449550ef0ab0986196d3571a91423187cee941e7a2868397e66074ee2d94091de35e9014eacf78acce317bee9

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
d6832fa24a3472bfc9aac4d556beb6d3

SHA1
f78f010a72ddb4c6d84d92f3dd8c1ba8985440a3

SHA256
58e64317cfbc59c4c3e593429218670280a60fc2cb565ab104a0a49847777322

SHA512
097b6cb3c83498e3b03d0d345a7282655546c55642ada3abf5bbdf1713c170a424cb0494215bc9a25f5b0eacbb8e0bfb9265bea82a9cfe213a91f1f038e2f10f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
be81c89d1bc6c3a777149e0ad10aafda

SHA1
f7673f74317d81f31ec7e867dccadc95ed428900

SHA256
59ac3b204e478f09d546be7623a78a9c615111005ba11f2d86f6b8ba51a6e40b

SHA512
3783bb820ead5c6a5068481ff16abdcf5aa22eec5f047200c8408f2d1e9b3a155a45582f26d0cc7ffa7b424f2d9eb91e39257a66a03ea18e58af3a58843c78fd

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
8f24272b15aa9ae624df28df687c2c24

SHA1
0623c02bde58b4dbe1473e782b33bcf31a209272

SHA256
48fdf59221828755f4e66efb24c13b73a432c69932be1cae38930cb028b55e82

SHA512
39ecef3fc50bbfd71de85c5ae681bdb7ed7033f71ad8317a42917a6863bd9701dcc30b4de444ed1ef16d20b4e4ea63d21e281dfc462969f9a5af691aa25c91ed

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
39aa711f6bb690b15e575c091ef9f895

SHA1
e3ee5e57295127ab4cd51224a42d693615b5c6db

SHA256
f20ec75f420225acd4879df39cd289507cf80b5ec836582dc527b881656b287e

SHA512
0cafef339075f137c54204e0edd3c0dbb3d69b769cb9926ff9296ef4ccfc8538a808bb42bd6d26f337c0484ec3a9446f80a22ad5d0419812b9c1781b1cfa36fd

Download Submit
/data/data/com.systemservice/files/PersistedInstallation412771434627275450tmp

Filesize
90B

MD5
8877e50850b577f0235053fadafacf26

SHA1
6ea3f2bc57d9a18a496bf4b27915e4d1d1c7e2bb

SHA256
31fc80c6b458467a1040159e7276769e62afb9ab8bfb90718ddfee30e097d8a3

SHA512
a967e364f37141621015c52b625c6ae892fc36af83cc9088e835abff8e000de04909bdecc16b9b6830f9170a798756b9b0411710b6b22188154781a45b95926d

Download Submit
/data/data/com.systemservice/files/PersistedInstallation793304967043024568tmp

Filesize
556B

MD5
fbb6ea93d8facfd233852d336fab7dba

SHA1
9c3ae5fd78d1d7edb23a3072b366e67f9666cf4d

SHA256
2d463a272ee5ee6743eff5a68b4d19d3138b6dd935eaa3313425745ec3f640cf

SHA512
d402528ce0298f2171bc28e4d702c4de715d6b304457b9b282fbaf943c9fbb02e427856fa7203f9019872c09a467a73b8baa8105a4a7391ae4b24c58c9b5e742

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
dc0dcd71224e0ba056232c51833ab1d9

SHA1
0c0f0eab3c929569d784692da36dcb3f11401343

SHA256
3eaa5daca28163fdfcc8b96fe7b794c0f8eb22d874e6eec645f34f782aa1de22

SHA512
75052bd8be1679e0fb383817cb922ed53b5611f1fe6854276cb063a37910ea6402230eb149c7466835160c1ba831878dcb82c64e4cd36c034a2ddcb8ed8066e0

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads