92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
13s
max time network
151s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
31-01-2025 02:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5245

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
249abb5118022019486f8605a0c4ae0e

SHA1
8db2b3ae3a5c359570507d263196c473610f914e

SHA256
a6bf74c9d24e11b7c2e414231baf8a5dc1c8dc887bcd6dadf4cddbe8f4b5b4cb

SHA512
a1e585151a44359485e9e2d8f52233f48991b84d9049db8226c683c6dfeed8896181a3e014307a22edc84d2ba99ca894295c4576b6d375243f147e51058f6a44

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
acdad0d0f819c2d78b6a436e644617ec

SHA1
a58e394e431beb434a50d13fbd756164dc2d9fbc

SHA256
432695757fc6bb9189c5705c04bfcb9867b60ec7f1b1df50d7ad2344d9fe5f2f

SHA512
bd31944d1cc59e50edf329df78066c40421a87ea36f172fbc12a55320a287e6ba06d21e382d671b07cde27913e830887c53bbb90b99fd2f0f63ad492da3d80f0

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
76a6260f16a6e5d36f5ade6c6a1616c3

SHA1
97bda7c557343ec40940038a8b49d1ae1716fb2f

SHA256
6788a803172ff9c764478bb26814984577069310a4c9a9af47785e90eff403e3

SHA512
6efa1f72a96e8cd13fe4929a00b4fb710a44e94303300068a33d801d7ed3398bb255ec83f5d55023def226914fbf08ca05d0d9e76fecc3236cccddbba1eac6eb

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
46226bdfe0132379df82d8296209971e

SHA1
3efc60b1baafc836c72ff7a81d7bb8ff03eadc25

SHA256
3fa366e7c95afb46436a062b8f4467ae4d2f2fb28e08e72b754124afbe33375a

SHA512
0c65e465a6a556dc323e4fcb0ed231d6ac9e12f89d43a096349f7c40a661ecc1cda16c060f68c0f37894ecf670b4cce8bbb1f7316904ff0730d55a3522ac762a

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8ca3397bcd6be7e31bc72ccfd4397c17

SHA1
11abbcfeed469bbfd982c35b68ae83935ac2bed7

SHA256
7759afa33327b185d044ca0d9e20965e69211970bc6f14e8f90a2ef159ca43b5

SHA512
9dd5b80e607599872e0bb963e31e24ba320feab7fd768a73afb55d1caedabd759598f695d3c2f89c4ab6dcc25ecfbe108121271554905c141050a07de3e03fde

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
4c1793805f0037cdd6b15cc4e4e8a0a8

SHA1
d16ca5289ab76f01feaa172de470f26ba33843d0

SHA256
cafa100e1033091866bd8ba7f0a34950ddb2d56cae034f18c6c0e6ad5ed647ff

SHA512
3805cce289c5d23ae9212cac20494ca8cccb1b51431367b91a8fe2629ce93753bc22027d1e4cbebb873fb0b2f4be8f65bd1435a5222b05f70954ed5650b1714a

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
755315c9b019de113c6e7c34ca41befe

SHA1
e52a1e770dd9efb262b065e26eb0d43d6dd89fa7

SHA256
623dd2cdb18d575ba519d7bcee168423226c941f0e72aa59de4249b8203c6e58

SHA512
d9e681641a338e1b63a219b017c80ea9b9beee92c6ec7ba4c6710f9408732218ebad8a59577fc2fc6fbac529c92033940b0c3b444793a719354b1360155d9040

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
113f04574242dff52e5536df49078ebd

SHA1
96b3b639baf910b5ba9e6dec91690af66233ccba

SHA256
ca897f0622616b659cdd6bbec7650f673f3413c16dca30d2715be3fe74beadc3

SHA512
ed6fdeb162a26d458403f10f6ad12e899476371553e92b3522668132d953502c444b9a0cb1516a6ab23e9f44b7f8fc9d3db5d7200e87a6b6e43a408cb661b0d1

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
abf8aea4f1c8c16c9300ef2913292ab8

SHA1
7152842b9fb2274a46c4a8a83c771c4c5248753b

SHA256
41516081dc5a04c0074de087278bf29ac010044a12e6810659d4d2414eca1d60

SHA512
91a0b525f986f9f5a3da8342243e71e5f4f094e70df8c3b1df0ee8b46d557a95d9e76604b498e140dad4da5d2f2af2b9dc562edcd18727b3df3f56cba2c3813c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e2e31948cf309502174e469c3367c7a2

SHA1
7de347cc8cf392e5f53274259a3a447a27cca0d6

SHA256
cb29b27510451cd3f8f8adc1e02a5a60ec09d7aa7e3d29787e8ce3764314c9bb

SHA512
2ec0de2bc637a51c538da55e568a86bf9453d4eae0f73de8d725d9f7ff59b3377f570419344828e338bc608bdd3e2eb332af8961fcda1f5dbcd0f1d398676047

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
3b4170ba23cf9372e62038e7324bfb5e

SHA1
a8935bafd433cc9f7d0ae5b6e35612ae749f4140

SHA256
313e3dbc09e4da0baf8f0e73b51ed3ba8e9ca35eb3418f0e28ced5225c9ef59a

SHA512
65e05a7c9227069361d9884c67d84293320740c733c236ce39592235bfad8ac7a6de315c23adc35e0a3c3e719398c4b73e59c9344316834d63ea038a0897a761

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
2f4817ac52983999b19a9bec46750bf4

SHA1
53726d514f8a6009be03b87e133e64dc15863b03

SHA256
bc419266436c3dbf02db25958c28b3b5174af837778e17c75d08b8ad96f761ee

SHA512
3af3c9371341096368ab6874a6a8cebce8d293ab328a9d6ba3f3c82b76732a1e54f2f9a3413411c0a55238755782ad9425e86e55eb42de788d2bf1affdc7a119

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e2e3da9b30a173244c07a100310e5365

SHA1
651c8663490e2e8b2a1a6c4c7f90a79be728fa42

SHA256
6d5aae9dfed1050166dece309d88e3cc7b072bd4790eb793ecdd0000b73c98fc

SHA512
7a548ed8ba28a75f19c4598aca4986014cf065f55eb5a76a86c047dfcc9ee91382135f2f6dd04207a3ca1b1a4dbc21c2459abe46c4f8aeffd176440815002cac

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
623402cfccdb35fd742dc78d791b7bb5

SHA1
f4b09447a888ab46262b992dfa697ae524ce171b

SHA256
5ac6a5218bb8f44135068d6b1ec4f79ba6408a3e1808fe08ed26a2c99fdbf315

SHA512
e52e25cec3c3c866b70a6290d656d87f4115e351fc316d6ace3fe620ee6ba5012e3cfea197fd83d2f60c9e45e2df4fd8c248c1c3924f4421e6a83d33a98bec73

Download Submit
/data/data/com.systemservice/files/PersistedInstallation4978147574917536923tmp

Filesize
557B

MD5
8beaa933589dc99e2723291e70225609

SHA1
4a74cdd3e00ccb80ad89993bf811627a3feafa54

SHA256
efe09df9bfbd9cebfd8d9d404980850228a756994f0e005f7e68f72eca4233c0

SHA512
00ee63c78ee5c3e50c5b4d7dbc2f6976ab07a42e5e6bf9422baf99f473debcdffb525600dbbbfbf51b7580f048e420077158ec800774fc304ff86611a1f16f74

Download Submit
/data/data/com.systemservice/files/PersistedInstallation947455642544008381tmp

Filesize
90B

MD5
2d686f81de2e74a7c977bdaa559a87ef

SHA1
6f47a9cf28faeac941be6f2c05956a62985c9622

SHA256
3cbb94d266d06ef5549880867ee9c527e67ca19c2342d8b467d3f1d39d2fb5fb

SHA512
1e70d40093a9002c2bd346abbbea3f8787a161994f01fdbc07c731ef319328f947016403e2b98fdaa10f220d1c9074786f4e1e12c9ef13277c22b733f1bc4989

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
5ac79cd91f376698e23546fb5c62dc7d

SHA1
d920816d9ca70f29140b3074857fe41cfd833609

SHA256
65212746de568db62993c8ff71e6f18a286cf0a7bfafd460d4746c4065c6f81f

SHA512
097e6a7179fb0eb21a2fc853c07c8036c9a54c888ee41f9636745fd716205abe62586112d88c9561050da3997a76edf9ecd05726522aeda81d59ebe805c8d1a6

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads