92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
16s
max time network
156s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
06-02-2025 02:40

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5061

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
2468e1af03fb729c6e097acf90b0b62b

SHA1
7a8920e2094d137220f30fcc42ba1191adcaddc3

SHA256
ce8c115f4237e46426e82b519fa70b994194b0d314d3f3fdcf0ae9fd68bc3609

SHA512
1d5480647f5a5168f1b7125a4ee5673bef2ab133b6e310795dbff7f79b4360ee3aef0a9a315ac3a887aad79914d1708f4bdae58b2e8ee951143169cfae94a82e

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
734cdcb6d54705146a38e9c30f91879c

SHA1
058a5a3dc9b24eed11fb6a00608e7857b87622b3

SHA256
b194b22cd431ddc313938644c8059602d81d89ebb10bd7c85444208632e87161

SHA512
b83ce0778dc1e25afc1526f69ff46f64309eda3fe9d143de4a332c164270228b519a01218de2ccbcc57645a66ef29ceb4cc18f97ccc00f183c8a644d908a9f82

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
06649d01dbe9957d1a666323c7994270

SHA1
603f32984c8c54e98ed50ffc6cace2ba78ea1d52

SHA256
7b6af3c08aa63fbb828146bfcd2b8ed011ed41094721b35eff5de416502169bb

SHA512
35b658899aa45b837e5aca632c5feb44a694926cc67e15c2f91241c31a8dcbb49f3783523c74109d6d95d57133cdb9f7bc8db66a14a43c9418169d7fe07e2e34

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
55237e58f9230e68ebf7850294fe8352

SHA1
9a906e009411b1bf86576d3b0b3bc9c59b66f3d8

SHA256
5ef36d2c8d62f0b811f4828f86f618f9b524e65ca44bff4350fbf7c78ecf43d4

SHA512
fce64be0a51bee78d9b148e6388c90a70e0ab191d50f747e38ad0a90590a999dc8c1add0a9e616e41d6d649f20fa58c7d734f34fa76ad18930da0e85921119f2

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c44620205a368d76e07fd5cbd867f9e9

SHA1
20a5aec7b3565c48a01e475a620ac5d3392dc87d

SHA256
a22d2103a59c2c363b5638fc3dbb49a971c0e18846c40162c411029039b79871

SHA512
a55b1ed452fbeea397d03ccd7d5047cf4a4e59e15edef9cd3afd78168d2877461dae1c6d9453f0bed4fd060da29a2fe7ad0b9339274647e907f2cbd6fda1c0fe

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7a40160f7e7a40cdbcbbbb98311e35e5

SHA1
9d05864f7c2cce401931eaded8d58bb57fcac58d

SHA256
bc9ea935b352dc19726ea0e330e76bcfdf57f2244a805edc59067d96052f1ea8

SHA512
3c8369b600fcb7a976ccc1d87d89c39dfc2e9b785c0ab57d8af06ea516ec48b45d6ee846caeb3dafad237ec1d8ce313051e444558fb9e318c73506a03939f4a3

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8a669cc550ce470254b471f60c37171f

SHA1
5af04e1bfc73700c91b34428f425057d1e973d78

SHA256
1480d6e5b76ca129aa12568d9e3a2b988bd6c49f5bc12f34c598204c462889e8

SHA512
9169e9f813b0c51bd002af6bfc05661f3933039486611426c7cc77959215fc77edf23ab0d286dc87ba1704c42a648e2f69d65cf29929ac0b6c0ff124a186ba06

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
1eb0ca401f47d145908209f7335f1769

SHA1
12ec9205b968f8cefcb0ad4f92fc44cc53946f7c

SHA256
46213414ae311c7701a41f15d4af75470fc75bca3a19d89a3aaa67e13a8ca256

SHA512
c65fd9ba8e2ef3f662eee6af42167a4baf1f347979348f103fd634d0a7f774ec42e91718c188a4d4155a4b7e27fde8ed0c948c7ea6299e0e0a2a48285502666a

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
9078fa3be9a03e1517d107c7bdc445a9

SHA1
fb87cdfaf3eaa3948550ce000560c8d95f3caddc

SHA256
64c4ff0d45a943e6ea2046ee62f36e76f676ec795852e1774d4f651921f9f8bd

SHA512
c4f180db02cc64870c9b0c0c8d78491a3da5b613d90003cbcaac3857c30e05e4961a70fb65849977cec1f9c8e0c001c62ff803c95791f06dbaf069e8074bc502

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
c6d089e379f307e608177ac6c91d1679

SHA1
1189566f031e690701463ea44f497d06088e354d

SHA256
7e2deb9428fd553f9a150f87269df07366146a1ddd8fd459d802965e45edc375

SHA512
61597a7b1a3c097548f880838900c4322d18a31c5b5337c9795f55173c8c2baee812654246f3ee8d81e22c5f47e4dab09710cefb7d610f1b6dedfbab2743bb14

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
124442e8a3fdc89e814a2c28245c1c1c

SHA1
38c1ee57c72ee43cd3c8181f3d94a11ec96b004f

SHA256
1b6beceb81db6df7dce4b79614d9744636247c7c189159a06647c1250901941d

SHA512
2f79508a24a06ca7df5ae0c5694dee14ac4022dd7dcced29a7814832121bd668220f9f0614dc3cf13d8ff67442bf81be7a00e05a52827482a02530090f98c868

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
5a492d6ff79e56863b898e6f2acff639

SHA1
a690c35e219cc19b28180f3556346944f8213b87

SHA256
f69d7302632839b44277a71c784a75f901f2010e491531e11c57571e468e727d

SHA512
5cd222d6f44566ec47a537f6431f0ba0d23f94523b47bafe75e32f2cdf573c155e5a70b425d653c267934c1ec0b9bdc62d6b30383467853790fc760007edda21

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ebc11320dec5d47c05c32f6bff2a3031

SHA1
47d69318f5772e7851c8306929b8e210ef5f467b

SHA256
89e19568a7db206f489d94580436e918ca0f9f31e4c876e67a7e1fc88ac847bc

SHA512
ad18bbbc3d09a0bff7cd56ac5d8b02fd34f3b95f75c4cb5ab688a5cb1fcfeafd1d7d4b91ceb3b1e6cb3486ee244e670741e49c4e3ebbbf83ca841ca76fb5932b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
199cc998bfdb9c516bbc02aaa263a2ae

SHA1
4dd09f56497b077af095b5d8a253524e7ad796e7

SHA256
c7d7ce566ef2205ba88eda9b47972ce2c5fdde5679f03a949b5ff846e4ecea87

SHA512
fa4d2cee47411965b5b056f4cfad8ba2ad4bc723d30ae4f687fada931ada6d598eae9069db34a02af6bc694672d610ff75ebf35d744bba0c4b81fd793735a617

Download Submit
/data/data/com.systemservice/files/PersistedInstallation3657193914464814992tmp

Filesize
556B

MD5
38e605d491bdbb0984f73906c30fb693

SHA1
eacb25e6bc9b0e870900553197e60dfafafdc7d9

SHA256
42713616efe409299b37c9c3209060b42a8e499765e53723e2a284d4f01298e7

SHA512
1ac95fe4d8922ef71c4368dd553f402965cedc40d5000cf50e1811fb0bc5485fc5f1925d3cf52a4756d922bbcf0024d58fdb5b9e08d57549a1d968f536ad1002

Download Submit
/data/data/com.systemservice/files/PersistedInstallation9056491117161600178tmp

Filesize
90B

MD5
1b1afe146cdf8aedbb635cbddbaed7be

SHA1
eedcc6c6401fa5ef9f20ff71bc74fdc9d7b95fdc

SHA256
061afe9061c9e2cd5fbf3de82fdbcd72e639fb5c24173b2374debef95f0a82a9

SHA512
42a6e09029527d398a2556d3793c3c674277436c7e5478cacb5b6a117b636ab3be4b48dca4486bc18f674b7bab95e9071e3470b3897b2cbeb7fbac8c069b5991

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
4101b16c8872031243852f604311225b

SHA1
b8b2fefbfe0f26e7c1293883e5c24a32bc1140d0

SHA256
ac2e45f6a543bc5922ad1d4651555125508527d0c2713f00de2b7959b98744a2

SHA512
8c20f877b0f78d0cd8846274b3a52f14404d556b8bf2e0c63ca7b6d7a6321ca43ec2750ce2bfae5a60c24d5c9c2180ac048c62d242701d8760fc8164c425a9b1

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads