92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
13s
max time network
150s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
29/01/2025, 02:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5048

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
5a20ae834bc3dd6dee6fade7a02c5eb8

SHA1
a4bf8fdd96d812c5f233e5775c5bb155a76a09de

SHA256
0e8fee7124116caeba77e88581bc997807025ba32b2e18228afb4c5ec5238874

SHA512
420ca308e21d1f6efd75421e3400c882420e18f2dfe0774a4c03e510a68c423a6a49b62ee15f809a3708568a30aa09306b62350d083bb3f690369cb389141c87

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
717e8df61b84140007df0252dc9faf0c

SHA1
45f52caab82b8abf5d163a6e60c224967341eea1

SHA256
d0a116ca917566c866a44b489f049ca23b3c46c50b6c83edaab97c8332d65245

SHA512
9923ae0595d6df2ce1316c91b1ec77c129b87080a537855060a4a8146d0ba1213588440d6b8ade3e3b985579db6d34a8db47a47d501537a716c0262bb92e1c5d

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
f141671d634a2933b96e6178d9041d2a

SHA1
e1b0b78b8fc811e2fd9a967ade5171d8c33e14cd

SHA256
c578babacbbdd4d7fe8d9687df602f3685079222ef0f61063d2c44a9e6120019

SHA512
60a3e61ec8d082f282abfa5e485586b0bb4ec188c99819ff3993e4ed4d355b476e0b369a2697fa4c59aac4eddb62fccae12e9d531890add54d8f6f82a71f2497

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
932a64fb60ad5b437e204971409a3432

SHA1
7a61534231c35f488d670b896d9085cd47dbee49

SHA256
44aa0143abea876e2b2322f0f4b607b18c981feb5bb6e439b5f8e260b73ab065

SHA512
3b4b3a58f727ed53dec08d5f03b45c700b0022c7a1807a97a162db97544f26d97458068fe19f9b2acb3d91bfb82e1e113efb9728c116b62ab30adaa5ed95d6ce

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ec35bdcd1efe56844bbf709213b5dc7e

SHA1
e17916a03ab42f7cf4153baa3ae79cd4a83b61ec

SHA256
f07d9351ced32cef53225dcd8534201b43253b6a665606e2d2188a283fa505a6

SHA512
3b3c7a54ea81ad0979982a1e9a43e2cfe17011b3aea34169884f84e3bda701c9fc1e01938d96d2b53e7ee0456dedfeec100f8559c517483fbc40b922e06eb21e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
fc52cb5ce575946a965815e3b2f0d0ea

SHA1
f4c96b5c3bb6e06fed805a09a685e89357af8ec0

SHA256
37eccc8ed420c8a4c9f94e300eaecd7900b1f75eceeb7fee982551e5d865db91

SHA512
7516b561b3bdb0af72c4e394f44c4e6f780bad37f9f50f9bb8556e78569d07ebc2e7fc1f2bdbe332c6e025408ed0e9891d495b29fd1cd57afea67321b7cad195

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
02a18e8bd421e89322605e42f546c1ed

SHA1
2b0e6f520c61e8a5c5c16604392263e96a87da41

SHA256
c467597367e4163ca2e766cb7238e281929f093646985dcd84b3a12548b2a70f

SHA512
5c99a9b99c0c59c27fcc260ba89ab175bb983bf456d170cd72884eecb281edc85b785efd0c2b72bb2cff5eb47022f16d89640c91905ff1898b7c1876d5fdede9

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3008cc26551ea4dfc03990b9760acd1d

SHA1
933f475c148989cfdf5d5fc5d8fa7a580130f3c1

SHA256
5adcd4548406182e2d0aeebeaf7c68890b0ab1e3119a66da42e776ebcef727e0

SHA512
b13608e12ebac80f211bbcc672b4cbfb6ad61a2b6c9571fc49dcf01cb8acd85dcec39d428fd0cc702141b64a837d650f53498efb9647df01b619198a4ef33e10

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
820d9799b4dac400f3e6c04060bae4a9

SHA1
df8b7d358f1f5840223d17ae709175aec0f3038f

SHA256
cf51ba74e55c961688f9d055d3077334f58b141977dfef0dc647efcec7e8594f

SHA512
26c722ad2aa5770604fdf65e8b66e5036d5c04681f33270fdddc09c3477f7393379dbfae7518f0697dea221706318d5a5ce5aa3185d569519cd75793caa8e55c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
6cd907659e194b02806955f3ed0b9c24

SHA1
1720577fd3bd9e72c02134b154ee5639e21fe9df

SHA256
13edc3c956c9893f8102e0ec95483b31bca759318d144f921735c11f7575b674

SHA512
46c85efc39e96cab623635eb6a00478818f27eb7892f30cbf50a20d7d1fb91e89c5e66085be68188b05804e66591642f5af4a3b867ebc52df276557fbd59f35e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
2d1adeb276ac85af9f16a03f297dda91

SHA1
8363271f092d56190893d68b8eddd9773d28c886

SHA256
af56268d6587c47a23bf8d000af1e44d68f9481730cc7a30097bcb35feeddca1

SHA512
1bc5ce1b2d2581d9669b649f035c1738c85ff0ebe74b7007bf1c9e3246d2d4f424b9382199834c0a6b1602c694893acb368cc0b255d428a59e6ed704b84a4664

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e4a4e4c95f4909637a90f0755bd8de19

SHA1
a606bc877058cced1ca1ed7c525f57e8f39742e7

SHA256
d818fb6067a6703073aed77a98eda32dd5d30d26aff6180d4871a84a2090654a

SHA512
15a84238f6fe99e00d0cd445e7daa6f18ee1761f02b81f5d3f87a5e8be45711017d18c5ae069522beaeebb6a1137b663a07349a7a07c3b3c824bffd6c255cba8

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
447832ccac8d2adcb975414ec2e08af7

SHA1
d704663de5609ca3f92983dcd59ad34e9989a1b7

SHA256
ad74b9497096c57d081c3814192215e1f43d4983c91db77c6f43cdf5fc2979aa

SHA512
95036004a5bb86d315e3d2dcef54d3f526899c8da846987726d931b3f0c24e586516625d884760d78eda53955f93d4727187e0d3e2a547e53989cc077b09f506

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
fcf37d94ee0e6ab9d38610712c8d668a

SHA1
7445036fcaa1024a7a3115e66caa6fd5c7ac3c72

SHA256
565d724e9bd722d863d7405ed91d75c0c30055019e08ed466975432e8e275a00

SHA512
dbea9bd3fe6791a1deeb36c0a0564f78c53f53c8b3af5b69d804b57f2b8cd798085690d90cd813c29552821f0c9ce012878ae17eb4d647c2d5033a7583a9b367

Download Submit
/data/data/com.systemservice/files/PersistedInstallation1833971037550580630tmp

Filesize
557B

MD5
450da8957b9911c5c8b60446294929f4

SHA1
21400e842ac1109f3e23fd956eafef9cda1fabe6

SHA256
a3567d6f4b2e58a53f94d4f830cdc1f3bc45dc391245239220d8a9875fb216e1

SHA512
265d6cf81e8feab77b62f3d1ae2478be050ecf2dc61715e74c5671fc496f1d4299e36679c3b33324b33498b63509c17fdad15b141b88def0ae3cfbea36c55170

Download Submit
/data/data/com.systemservice/files/PersistedInstallation6036834767221164283tmp

Filesize
90B

MD5
11b79859990491695418e70ba9693d03

SHA1
f2fba62ef79173fd1ed2f830d38bfc7a308ca474

SHA256
4178281a8e975380fcb24fa1e7c862d03156b617ed2c93b23c34db7b5fc26fb5

SHA512
3e0db24cf5c921f89740ca47c54b8dd1286f1a69e177b5a03e41a33c0ff913b3b74f12d294809d54431069416c43fe4d3dcafc020aa96c5e89fb7a4db2fc3599

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
94a90dceb5d0f22163c82c476870bcfe

SHA1
bbf2060f46b3566b1e7555d029456cf911c838bf

SHA256
5edb11ee0ccdcae313110224d40f20eeac5662b8cef73bdaa3952352cff24dac

SHA512
3479d902e8d073471e3ed547e023e9dad23cfd658b2b5f5a83e4bcc80b1d800a413ca30f3c6c1e776c6651b74a5d9fff39d76e2e37dcdd2303de886abbb8ad0d

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads