92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
23-01-2025 02:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker collection credential_access discovery impact persistence

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.systemservice

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4253

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Clipboard Data

T1414

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
3dabfa6f07ff2947a32e8b79c443ddd2

SHA1
45ceb5f2786923e3d628e84678dc0aee09bcb1d0

SHA256
bf3d134d73ff7be6897031c8312828538b719431967549857ce1b6be364446d8

SHA512
5eea65c1bede73656474d0eab48d647e2f568427cf2ba23580db46cf39481245ca60a31c471938d21c12c9b1cb97c160b084f8c81e5d755636702125e794f95b

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
ede57277afda456c1fe466afa473a3f1

SHA1
70b4aa4852311afc9b82e653fbb02180bfdf4f54

SHA256
8d3e90988780289810a3c771773b824d1687dc9a578e75940d3e95639fd7cfaa

SHA512
eeb48dbb33b3d87c08ac3a0b3a47e825e9fd7c6b29ebc15bd80a043a0f1bd83d6462e1e45f781eceae2d96608dbf860ec9b5a62f8002cdbec92114034f0e312a

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
df43d28694934aebb192f133c9d65e9a

SHA1
592ea2a1de6ff144560ac7a4ec6b84867e7b71ed

SHA256
17416d9ac37f69a6e1b343e08533617677ede7e727ebb3b3cddd4eeed6ce5f9d

SHA512
baa08e7abd91fc0c2f60faf4a8a32d9a16d957ac2ef5983964877023acef8ba01fd6d6b09b397db6af34942eb6b1d7e2d388cddd9b0a3c48690858cd97d29651

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
255af44d56575cbc33c18f0cb752887d

SHA1
20a744c04b7319860ecb546b2b23d8c2cadb31b3

SHA256
2adee33532d96f4fd9f8d002733a6474e56f7db0ec8d0de16a8ebd83abc7d969

SHA512
0181eed9b18c8f587930769b67d932b7771fe0cc63c98c7d2e65ec49ed6a4565aef0b2823e44f5d3958d642b128a0aa2d00b73241ee4f7fdb75bac2652c8131a

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
9838c33f1c558c8b9dacef34f5419a94

SHA1
c06dfccecf4c5630dee4520cb858fb97d9057d42

SHA256
2d446682b90dd9276c722dea4d087728769d261bfed54ffd8488f8f47c46702a

SHA512
b168f92cfabf8fdf63c6a345465aaa3f94a58a18b4ac493b030ceb57238ec78be85e4c39a5b4a6996a35a80b6af99a0d07df6c5656e99ac66d2743902db5b6c1

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0fe85957d9c26e154f6c6ceca1dd3973

SHA1
6755ad4494f6a6b2ca5bb7d627a12e6681101007

SHA256
a836fc72a84a4711b239cd27b90b4c35bc1eca03be6c979750c4ca9a59866c40

SHA512
4aee585fce136240df68ec6a6bcbf317a8af5df921622f710676dd62395fec3a42e8206a30435f3df762aa97283537d11636de985681b946e58ec02b313e294b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
835cfc7decf507cdc5e54f602e3f9699

SHA1
4a55d424cb32e766554672cb2d0b3804fc47552f

SHA256
29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

SHA512
2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
6e5e8ab4404fedbdf27808684b17f6e5

SHA1
9c5dc0d53f96fb375f5283a1dfb0365960cae477

SHA256
fed2aa3750342a43a15bda5b0ce420220f8a52d9ca519f8b6eded693c72d5351

SHA512
5f48bcf86986a79c9a67687dee5625c03b82cbd223abd69ae6d8929a2fec186202fd3d159ea55b4adf5d92083838664af0a074ba1e68148892bc18cdf25b1b88

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
51e74ce9fad7c1ab649f7ca362f82e32

SHA1
5fbece6c8feb7fa8d97b51fcf9b6ffc327d92193

SHA256
4aa4d21a3b71726e3bd860f36e661d875fc56a92cd8e248fbf0606fc21be1a06

SHA512
4cf61cf36349e5c965f9cf183215215b459d7c5a0a6d7d920c6e70cb87719bf16b9a33fb8951e8b22988edbeea5ed507f3354fd4e9d25093165cce5080054a27

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
bbe986c776e176a0ae58348ff7d53199

SHA1
c26a4979951e8d283f08fc504d5e92ea5b49f950

SHA256
2a76239d1e037c3c1014959e5cb2b33ea8cd1a2edb3226f8648b4f63eccba42d

SHA512
f4e4e7c476e8247469d7506e53b7d6c973a14265eeb5c323f095aa9c147d55b82b03deae6657f75a936c007d81653a46eb457b397bc540e107d3bd21ed989321

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
fe8e11fbd04b8e60f002d05107ad0b61

SHA1
8967bfbcac2d98bb4db484a51d719a6f737d9594

SHA256
cdb9b111de0b34d8748a92933497bcf1c14d47954f5f8e8d22563b683f538633

SHA512
28b00d220a7904561a41c47244a71bef3f13a2de9ad627aae745de224e396fe0a46922bcc7d90dda05bbbc223b40414a96ce689a71d572a6e031616b38c086cd

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
bd93aa6e4d3ead53190ce50c903a9e3b

SHA1
44b6675ebb735ae03e3d452c2139a699c776479a

SHA256
f946183d619278d7ced01b9ab0f05d79564cb4cc480e4773e0ddc550b737155d

SHA512
9a2283a4a3a0e662f0576dfec5d4999733226b90d47f670a14174c2a34f19859d53263371c97dd2c7815afd9f4abf65aa8f8ef5fb2e2e8705ff49194a90a5985

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
4425f58aaf6ceffdc253100cf20b1a74

SHA1
21e7cb0bede47758f478ea7f3cc79d404ffda7ef

SHA256
5f4b0c22e44662fd2da49101d6e98dfff7162d0e08ed0db5572e72b635876e1d

SHA512
0b3617e9edc96973a6c4602799532d43af979f3b8138c6d721b3c1bf62fac413c4a8a8df48930cb6649673473d4819a3f0925e9863d4430d7b219b4734d65235

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
aee733b6496843efe58b88352627bfd5

SHA1
3730d5cf141fc13abf4af2c03570b36564652f14

SHA256
1911d5a410a3d4d01f8f03de19f652f1860314e81819aec49b3803ee951f47e1

SHA512
188c626325aee7f4a502db99a5b0431f3dc7f9310e2cf5af9a3f2a2c9f36f8a062ac94fb5a00f87cbc189b8d07ebf08298d10d66f0c984aac3648f83e39e4f58

Download Submit
/data/data/com.systemservice/files/PersistedInstallation2560514247529506073tmp

Filesize
554B

MD5
e2a586585cf5b287f519661403f7062c

SHA1
099e94e92ce5053f702016b3ec97ae3b0ff2b73c

SHA256
2b44629e320d948ccdc9b24c0a5e988df3f9cec8e9700ad82388513ed5319b4c

SHA512
7a04c605aad05acffead7d2f0231699fe0896215a55383c9f787fe3565bf099989ef731903eec4ed86e2dff8cd58073ac7b3540ae8859bc4ccd0f97f104e006a

Download Submit
/data/data/com.systemservice/files/PersistedInstallation4402692569600683073tmp

Filesize
90B

MD5
a5ca21b1187a5194758ec97f23f0a609

SHA1
e7706148ed8f4470fdf47b2195c0894a180e2b1e

SHA256
aaab64da3f36ea4418dd970802281e70c3b5a2734a541f1d087a3022015a920a

SHA512
b7a42aad2cca596e1f93dacc0d48cf33643a4578935fcbb5aee70b7742b73cd8fd6b8de3fd5d9017f1e2c75ef645dd78105f68251566c9ed41dcdaedb9b7ce2f

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
dbdb63b53893fbbd276de309d98a0cff

SHA1
70bbe591b7f1a9f0ffae00d5a77c1fd8aff7662b

SHA256
4abdda5749943b7e6400544892d2ee0f25ba4a9a76272d79cf29379e45da2c9c

SHA512
6be166ee20d90bb00610d4337c19bfd7dc8a9e135f687a096bbbdbb21aa13da8223713d81a980dd43f3b02646f8c78f8a3fd261ad2b8775e91aec69b787fd6e2

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads