e264716e2dea5bb8f5e5025733ad381bb8a4c52b8665595c252b9f00bd89fffa | Triage

Analysis

max time kernel
149s
max time network
150s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
14-01-2025 03:15

Sharing

Report Analysis Logs

General

Target

e264716e2dea5bb8f5e5025733ad381bb8a4c52b8665595c252b9f00bd89fffa.apk
Size

356KB
MD5

f02ef205d1dfe584d49963f13db0b378
SHA1

5183ac9dc202cd8101c3bf35f97537f00892cd9c
SHA256

e264716e2dea5bb8f5e5025733ad381bb8a4c52b8665595c252b9f00bd89fffa
SHA512

290f931528469eb05d5bdc3e38a5d2950dc648af9aa04863c84417d34dd801a1bf63bb7aeebc6442e9933b79ea7b4f4136da37b98a11b9d029f2b87fbeb4877d
SSDEEP

6144:tcV+p3EVCRxQeEJLTZGcKWk6iazMHMDUeZB3M33oD+WfzhlOhoYAf1:tcVS3EVqPlR6i0Ci3jM34D9zN

Score

7^/10

collection impact privilege_escalation

Malware Config

Signatures

Reads the contacts stored on the device. 1 TTPs 1 IoCs

Contact List

description	ioc	Process
URI accessed for read	content://com.android.contacts/data/phones	com.elite

Tries to add a device administrator. 2 TTPs 1 IoCs

privilege_escalation impact

Device Administrator Permissions

Account Access Removal

description	ioc	Process
Intent action	android.app.action.ADD_DEVICE_ADMIN	com.elite

com.elite
1⤵
- Reads the contacts stored on the device.
- Tries to add a device administrator.
PID:4210

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Device Administrator Permissions

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Protected User Data

Contact List

Command and Control

Exfiltration

Impact

Account Access Removal

Replay Monitor

Loading Replay Monitor...

Downloads