Analysis
-
max time kernel
140s -
max time network
137s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
-
submitted
07-01-2025 11:19
General
-
Target
base.apk
-
Size
3.5MB
-
MD5
d3dc0e8a0db31899df2a09e95041cd5a
-
SHA1
2e946eb2cdf0fe428b57dc72f20d0cbe23980a4f
-
SHA256
1c15920c729c30cb9fc758e7993515a006e2b86829a1136c5b2d875ae3a4e3e8
-
SHA512
157d0ddb9a88a518fdae71f10b3269cf9a3f245ae2b4727f932f777d49aa08e75ac9efda211433e2af86fb3a9deb91c35938d4b8cfe420f5c1bb4aaac32689a1
-
SSDEEP
98304:G1y8VlJ8Y7H8/jRRb4A1RtZLrqOfLDcjzg:Ky8V38eH8PbptZL3zDc/g
Malware Config
Signatures
-
Checks known Qemu pipes. 1 TTPs 4 IoCs
Checks for known pipes used by the Android emulator to communicate with the host.
-
Makes use of the framework's Accessibility service 4 TTPs 2 IoCs
Retrieves information displayed on the phone screen using AccessibilityService.
-
Queries information about running processes on the device 1 TTPs 2 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs
Application may abuse the framework's foreground service to continue running in the foreground.
-
Reads information about phone network operator. 1 TTPs
-
Schedules tasks to execute at a specified time 1 TTPs 1 IoCs
Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.
Processes
-
com.example.mysoul1⤵
- Checks known Qemu pipes.
- Queries information about running processes on the device
-
com.example.mysoul1⤵
- Checks known Qemu pipes.
- Makes use of the framework's Accessibility service
- Queries information about running processes on the device
- Makes use of the framework's foreground persistence service
- Schedules tasks to execute at a specified time
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
MD5640e3a359a2ce2dc2b38f32103d0ddad
SHA129ee94d7a2379d36711260b123018a0d324d1d65
SHA256e46ee30b8f4d76dd82a41b141f0152b9d4de6391baba5a421445e123af4ef34c
SHA5123c29404879e2e5c06edf9bddc2588015e851548e9560dc56baff768eb2246133a7f951a0bb0527d78957541f0ecf70c8d90b39abc53b10e8847280a727a91ec4
-
Filesize
3KB
MD54fda6fad17e9ef88f897241f321659ea
SHA1b4a647fa4adb9794847ebb6a653e314eec2f1919
SHA2566355a77e4491e9180c5553bf17a0e56d7a334fbc96074af1af376d41a9bab888
SHA51255b2b0a3b5b8fd6f934524870f4c481086b0cb1fda24c84329a843ed54e7fa15d03477cf8ea2ab71406a056f94931be5ff4318b32033dcbbfd759aa42e4cf112
-
Filesize
4KB
MD511374f3401e6e6c3727d69a0add7f819
SHA1735eacb25ad4bc087d56142a7349282d6f3d70ab
SHA256c3a61f4aa50b93c4471e9558bb22c988ff28c5a03d4edbbe048b5ab2bce1dbb4
SHA51269f7223d0128d1dd26e8ee0f8b4f3263e5896a63321df4bcf297cb0ff1af6d180888077773cf89baf8e756f659ad1e44c5bd425bbc6ae8141c6f7f2aa9986904
-
Filesize
3KB
MD5432d55defccbe71fb41cc62fade92e10
SHA18ec97d80caffb4b1fd2eaa7280a42797cfc3d1bd
SHA2568d794ae5892ec5f1b3e3f1c0552cc58532eaa4c921eb4420957b5b9d8276be2a
SHA512b765049b29f2b6f9e4ae65275190155c669f4b9442c0d564cddfdf909fdc6c110c8374e7c529fc7d693911d72b2498f282100c082ac0d0f9edae47033bed6f3b
-
Filesize
3KB
MD5ba8a91fcd5090f977a9cef8b69d74c4e
SHA13bcd775b4d8faec0e46af3ed2def7765e3d5e11b
SHA256894fd3e3600abcb56df4e5aca901741bd9337cf851d6df1c6941c30365ac5cb1
SHA5128f7011ef3d09b1d60cec10c3692320d562783d27371140c743de3fe072ea001448e221763599011a6252df5bd7953555ae3e177959471569e59257426f16366f
-
Filesize
5KB
MD5ce147da4e1058d0251b79ab34fef8c9c
SHA1b8df0c40eaf201c0ab5f322fd4a89a985c1d0618
SHA2564c5699a85a51d3950e7b067600495fc61082e3a4ec2a7e18b3bdb6fe6c82d3d0
SHA5126dde2b085d18340daa38be4908c22c0cce04c6615b30d216c591fbaeda7dd2b08d15c4717d552d80b9aef83ef26a9fef9b727cace604cd528b71bc40e9b0cd2d
-
Filesize
6KB
MD5f075b48093aef67c34ad551121156950
SHA19a069734e4c30fc44d75bc4a896091c822af2350
SHA2565596e6460cbda748965e898e1b34f036d26889d0a22d5ac6d6bf44a05d38f72a
SHA512103e06b4020e0789fc23069be15964048e27626c59fb40d0ab7b4317f58908b2a6c0425a4d061f896a82e7b26afe99cbf1e2fed50bce4ce91a5acb0a289474d5
-
Filesize
3KB
MD582b8ff572b408c1b2c4917c32c4b438b
SHA1ffd66a043d3258c907ea41ee364158b1a71451af
SHA256de09e1ce11982f78e15f8816179029f5120b4b050063cd7c035bcb630883b3a0
SHA5122a470cc60a6224c563235d760aa54cca77b14caccbad9b580685be289e13253ca36c5053a759f526fe04a73babb32ec2713b05b1dc46afbdf66cd6b6a80a0233
-
Filesize
4KB
MD561ff11b0ddcf0292d22cd8dd27b4b1e3
SHA1c7ddfe72b92207e7e4afde422158fb335780e582
SHA256b8f48372c899dc8e1ed06d29559429c9e75090bb2925fb8b310fc0ba4a35b089
SHA512a78190319a32c09c87bc124226123607a116c990ad35ff26ff971fb44470c14492866d7eb825b84ba0af4a52ec2e5c22a8c23079c6f4d5f41db73bd903bb0153
-
Filesize
4KB
MD5afb56e0518e6483857ca83025194d484
SHA1604bf9db8313357c58e2dc1c594a2fdfa971f880
SHA25669ffaf407d5ed09e0e262f8e5b7c9bdb9c35a633c27d0d9f9a8ebfbb4a147778
SHA512a6fa9f0d35051434137a7654bf7cbee16aa285fbd042cea576269b20a5708a80694a82c782837d63ee6a9a110015ef5e75a49407b38cda06e7f416dff49909c0
-
Filesize
3KB
MD5f14b694bf73f41f556fce0f7c1c7aba2
SHA18c962cf2e1c507273ba388ed8c1b2db8ea743f0c
SHA2561e87d280011f87f19e1269b74aa82b6885b38f847286635cfa921a1aee863df4
SHA512e0b7a75835db5930c41700f1ee70690820f0039a192b8cad39205afda441facc8cd492db46207b6edeba1a9efcf486642ddfb90640e30a6790dfe4eca0893a7b
-
Filesize
3KB
MD53205099fe676ded66dc1752f1bd244d7
SHA10f39e9fabc5cc42ce4d6cc2f5197efa0c01449db
SHA256e4270fdabe9da0fef6d8c254e1b41857e08ea46ac568478efca632588b0256e3
SHA5122d397591eeee018795021b89b67938e8c8b9a580a3c5443ed2159e0719892855d926bc85526e3c8c766c9dc352df1ce963312ee315ef5eea9ec3d43ace3c4bb5
-
Filesize
3KB
MD5e96000f78015cfc5cb311a5d55ea903d
SHA19aba1d2cf4404c118fb81d8c28eb5dbae3afc72e
SHA256a19bedeb70fceeddedd0b071067f304b9da5d97e5412316312dfb7599e10981a
SHA512d352b08a55504411086a741d04713c934ad54b2253e0fe54ac7c4cc0830693bb70db5644eb20d1ccebbd9199702b13a501a3d0aad9db9ea57424db77449893ef
-
Filesize
4KB
MD532ac1770820500ee1677993404dcd7f0
SHA13fbf82185713648f5cbba35a4d8e3b41b876caf6
SHA25693fcaa60d9267a33e50c9fd9c44ed3303cd5987daf15b387ab4bf956a8c6b0be
SHA512914d206b72552cc17587d3f60c602e6bbd5e285f668dc72abcfb8d3b0d992b16964d4fa4fca0bb9ed51a8c9d975fe39c1414141f8bb56b694b637ee072e66404
-
Filesize
4KB
MD5089d720ca4a4609d1bbe78cd1522a690
SHA1f4449ba78f13b4f75b9da4c55286a3f7e90a4237
SHA25623c31d9925151e141e001c71766f5965c52ba4ca1c1bd082c41b6ea38c308f84
SHA5127fa49c6fa5d9653b22e9b08f75f68f894ec335c78273950ce2f186b54e0c47667e9de605ceb9c5b93f23fe04cf0d59a3a26ee8eaebc86a9cee4b9558fcbc7b17
-
Filesize
6KB
MD5f074b0757ba8a9f90269f49a563be662
SHA17ba07c6be010f6c802fd0da961263d4e490392ff
SHA256298e182a7304ff2c6706c20122efa5753b5fa02bcb50131d750a4d3b9bdebba0
SHA512ce807faa4a451d97771112a9d32e47ba020d44618eddda009cd35b5bbcfbe31a767aeeebb90b7a131b4abc782c24b462b19f3667f34eed5b9d2c36612048c2c8
-
Filesize
3KB
MD526dc5030784cdeb1fe62f5bd935affc4
SHA1634906f3892ac9c1e3c31b26a82a03ae5adaa3ed
SHA256379c021bce16218f35c96f1c9b6306376e67b5aca9684d5b0931fa2e31105014
SHA512e9fba48ea3a6b66c2c3a0c9514f3ccffd0fde77d7937de2c4797104f8e1b051afa515b12b7d6d5b3b4952b6502c2526f6ee16fda2eb9b91b433668b695bea709
-
Filesize
3KB
MD53a1196e350fda1f7303f8a12defed7ef
SHA1872778a398c24ae7bf8ae3901b211ef8c7988fcf
SHA256d56628f27dabf4c48f9e1017ad068786624bc742cdf7a3f6f9401f3811ad6e3a
SHA512d675f18d600845dca66f2b34a39abb8bb607c10c85747a95e04ca43225b5f223f41b5eb2096f3b7e23a008aa3cacbdcfa0010d7a31c611a8ee2c84b8dec734d7
-
Filesize
4KB
MD5968fc0589e584445415d464bbdef70c1
SHA173f25c387d7df784ae9629a9d71dc850482402e4
SHA256da48f32c6cdad63aa141aa02260042f17ba48e6ba0fc86bc47e24537ed663683
SHA51257260346866f2148288868f08eaf3dc05f7c9a6294d6eab4940e5deb428a3173ac6b246b755788dc74ab6a22675fe19d026194fb4fff7061922043feae6c4f7a
-
Filesize
4KB
MD5bf5c526542440d3f932b9f8ca30777dd
SHA1b485a9ecadbfb15cb19a75fa6874f06732458ab1
SHA256327ac20924f2dcbed1ef1a5ee1a20e532b26ed55221720f8e39115df48f20fb9
SHA512309148ea8446545e0d81873315b4d866ae4d326513e08cc9557159ae7c974bfdd8bfdb7d83e4f180f253f8b9756013897d26ef34279d389523332e988ced3eb5
-
Filesize
3KB
MD5f94499b21887da5005957df04797bf74
SHA1cfb812b13a811b00da3dd4bdff250f5cba00d2a4
SHA256e85a56506e1b64160941488a1b68cf594a367d6f8d0db7aefa7ec67c803c75ee
SHA512ad56a3b53d668f6c4909712f22495118aaf061d44ba7b09569ea0092cfe083a1002df3424e660652bc140385fbaed859e103637522e8ae53a47d5eea196601d5
-
Filesize
16KB
MD592f4fccd58415db0e92162a51e719449
SHA115f497fd30d342607967aa873c78865d9472c5f0
SHA2560be3961d25c265074fe92a0e0f18bd6b59f7fce478a964b156cfb6573dff3c04
SHA512606cad27d1ffb6d5e4c03ca5049cded29430665937c94f05f1b755694338639d69715025e55707275278d40ac54cc41ef6765211cf376db6a79427726c9b0aea
-
Filesize
4KB
MD57e858c4054eb00fcddc653a04e5cd1c6
SHA12e056bf31a8d78df136f02a62afeeca77f4faccf
SHA2569010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad
SHA512d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb
-
Filesize
512B
MD5b12f8243f7cf3b18d670d75a462915f6
SHA175c7a4a3036470df93d8f91c9cd2a6a50c7efcb9
SHA256a5b46555d27b66e86464049b38c0bd2a719d1d383290de896fd37365176a267e
SHA5121232410deb75e486e73a0246fdcefc29122d33ee33c4176792aef5a00fac2ad4d6bdcb8ac5151625b414d137683cafa5fbfe329ad666c43d8fd7ec739be0e8eb
-
Filesize
40KB
MD5f2fdb59f2eb823c4f5e959f970973f1c
SHA17f8ca86abaa2e464904cbe5817074f5a2f80e56c
SHA256904b998afb4fbeb90be14a01c9456374a18087a057a9ea159b3d7573eae331d8
SHA5127e726c9a4a64b7433262bece27d98d16266cf35f63f0e80fa18ba7c641658398e3fef68677ffab2f57cabd0f4f6448109ed8ad355c304e0a12857c687a6ff3f0
-
Filesize
32KB
MD5d64eb0a6e1c35d0f8b22385712b89208
SHA1d6832b68db64cac938de4929d96b89c4325d175d
SHA256a0eb790d0b0ba4607f4fdc90f1bbd8854c8579fbe75e9f75d840fb1fc38f3ee2
SHA5128afaabb9fc29d0f592a24714d8429e358423121ad2865d0abb831a5d6730d37e701c6aee60da15874ee7951ef1f05b8b21903902053e4e3c354a74c7683594a5
-
Filesize
108KB
MD5d6f7af83307b7af280a0fb57c49aae72
SHA1c7a10ebe9bcb4d7c21d5dbcf1b409d7d18053988
SHA25694ab0a0fdd97940017def837fb1be5c48dc5a8cb9c034c66dad41a13bd9df379
SHA512da842bc95955a15ec7725f2cf1c15d2bb26b6d49053fc9d5d6ca7b762deb0f9c58b389c7d25f8e19f60f4e23739b83d68fc44d3c9e12b0ba45b673d537ed96e9