Analysis
-
max time kernel
23s -
max time network
44s -
platform
android_x64 -
resource
android-33-x64-arm64-20240624-es -
resource tags
-
submitted
27-01-2025 00:25
General
-
Target
com-mod-tasker-mod-apk-v6-4-9-beta-5405.apk
-
Size
40.1MB
-
MD5
a3e67dd6627319f1bf57f22d47bd779e
-
SHA1
785d513dc4be4cfa90f41ad18e6935ffe8d5a2e3
-
SHA256
d14247ea058ba1c1e625370d00dcfc41afd69275065be576abb008936dc87db2
-
SHA512
7fe2023bebbaef5fc57001430f20483b127480b9342d7edf0866b08f65eb10e6b046f782e312cf6e73fd04324be311b74d80f2eb39c95a375c9293b66d1324ff
-
SSDEEP
786432:clLgf64/Szm6qRr8PwCQ7I+j7P3AAUsYi2IRSPzOdmdljlVWgXijsIJe:clgd/SSCPoD7PQALX2I4Pzsmd4gSI8e
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Acquires the wake lock 1 IoCs
-
Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs
Application may abuse the framework's foreground service to continue running in the foreground.
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
-
Checks CPU information 2 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
-
net.dinglisch.android.taskerm1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Makes use of the framework's foreground persistence service
- Uses Crypto APIs (Might try to encrypt user data)
- Checks CPU information
- Checks memory information
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
24B
MD5f1405df5601c0a1e47cbb91f1104326c
SHA106dcdb6bd4c156164e4cbd3721f3168c144c44f0
SHA25645ff702bb30491e119378dd1d6547c93b13e566cb0b1de6605dede6523ed5dd0
SHA512f16c3539c222d81fb41fa92f12be6cfd8e63adab797e004f718459ee0c377b73b08e3ed54390c6e51c8d90e60e26ed3a3ee0328401805666658ef29b8c490611
-
Filesize
8B
MD546434bd4afb8b950c6ce0d922550af77
SHA1809c78c751ee14915ca14b5df15621806c18aff8
SHA256f6218eb8f358869c3549b28755796b3b2d6bc1c6d7692b32e0c67c6559ac0536
SHA51216a72b3693188dbab74d294406c253806073fd6e8928a68f4c5f47d5f02c36da75a6e7ffe1794966bfb3a312e7a78a93b334928a34df5a8fe59743de5c1b2bcb
-
Filesize
4KB
MD50eb157e1a86d4d00aa601dd2f6ff3ee3
SHA1fee434f784e73cc7916322e949f727caf8363102
SHA256b9a8194b71a046e8c0eb30995827b582b4bea834f630a5df2483b778a7d7d8a4
SHA512b9b79b8c3af8a3f140df230fd89e95206358ba50ff214e7323a2dbbe2937b795f970e588302ffd5d721318bd597ce0a27af26d6cdb07f45569c30209845082a8
-
Filesize
512B
MD52fac84ebdaef0162cda3bce257544ca4
SHA197faed7a44cbda72113fc24f81f3fe8fa013945b
SHA256916466916edcf05af4e1b4516b65a086e92f1a5d5a545906cc3f1e76fe720c4a
SHA5126547f9a5e3c9e0eabe5d04bec528b87eb05f5777de982fc73a99eba6f79a6a4aee70963f563049cf3bd2d7e314bae37790024d3fa17711cc12bffbc069a3446b
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
16KB
MD59cd5f91ff343bf37256eda56690fcf27
SHA14957caebf67ddc94f194db6cf2ead9e6aa0670ca
SHA25664bba0b87074a05a3507292420dde3b78f04e4ed42dc386954f227e231ee2b14
SHA512a440b2407bfec1489bda533e542be7379f0e649375889be53e38d23e51ae40c3eba6411a95cfb728a5fcee6fafa83a054d437c54681189e26edfd278808add37
-
Filesize
108KB
MD55c76fc51746e5241a1d58a2d7b95bbb9
SHA1c8647645ad667f78af42bc49273d25583eac1140
SHA2564cdbaa7f6959c8195c64d2784fe3975c65e6aaeb62e145e4889d83be4cb32d67
SHA5124a2887367b5993c9f342f53177fcfdde4f1412aafcd8707b780a3827fbe9e7f9d7458123d2264b7f17d51cbd3c94e4fac58bfaf2fedaa5deadfa9aa9249d99a9
-
Filesize
11KB
MD5da2c5334699fa6016ba49c38c720a8a5
SHA15b617c042589476942ba34071ac64ca4bb49cb69
SHA2560f4a6ee9886575dc39216c9ed28cb7bff859a2bf8b976aea6bf5efbbd45f4557
SHA5123fc90cf7ba0a8a998f9f5fdfa77939cf7df4df14ffe7ecadcffa04aecc9d58890d2b617d756ed9f9cd113f59f47ffa9b4bf31287352e66cf5dfb926a5601d47a