92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
13s
max time network
150s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
12-02-2025 02:39

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5065

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
1874e23990400f03b7f0ca9cf238ec01

SHA1
926010554c54c48932442ace172badd5be0f2b04

SHA256
a46f4d07ed9ad899ae0d29030d291884b39a5047b7721e00f5895c2394fb7981

SHA512
ee28168c91768f68d2b673b8b0c642c0fe219bfde047b42442c807694970a0d60f68f8440227726abc8b62605d1f56b086f4a69c2da03278e3cc4dbafda9c54f

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
95b2e7c12abbf4dd251ef6c7e40c9ebe

SHA1
9681533f7a58e362299ac2b2891bb72d709c2e0c

SHA256
fa850c93bccc73bc0e5def1e638111bdba4e3b441ee04f72b1189de9923755c3

SHA512
71fd61b4230cd5f8a606a2efb7478b8d1bb33b667f3b8ae8cb635437f321b2a9ae2c85cd4548c9cedf087c67a6a6c01e9d451fd64db347bf8483b9d38dfda94b

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
65c476a4fa73e84412c32395a66d2fa3

SHA1
a19994ce063bbe00705cb7d588527fedf619a758

SHA256
b25a57d1b938d476d66c1d427618f12202e4349a4fa27a1179dfb942adf3763f

SHA512
0a0cfa9af6679986533aba12a4dfb608a4818ce818fe8b69e97f81e41f86e7716263b7c03493441c1250f02e3ddb4c398cc8d95c93e7a9bff2d7e108703bd7ee

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
358e92f451abb3ddb0d0859b8547c725

SHA1
994831fc71b7c35e903b053096fa957ede975f58

SHA256
ef968d2e0496e38f43cedd8b10d6151b87072a80f5756a5729503886a3c801c6

SHA512
1b385f454d93ca9aca7777dd29ade5afc034456895c55ecc273dc68b0302aad62bd4613e3be43ea4bb6d04b350b5eb15afcd7912f5ca5a6a34a79a8a7abc6f92

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
bdbe12fd1c990054778ef82fe1867fb1

SHA1
0ad0157785faceb81c700b725c8c4bb5def6e2ba

SHA256
b3346805ac41aafeed236fd78b489bf342950778d3e283332301f2ec65c23472

SHA512
99bf042021f6936691449c2f1b5b96841e16daa80c5d888edc09ccd89a1f88fa004a9dac69d3cb4b4bf0f3ddc66354733b19bc76dcb22377072fe5248dd2e133

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
9063b236875be3cc6da0d021dcdfc5e4

SHA1
9d0c81a285cd69866120aac22d1f405db07cd826

SHA256
da1ecf4777de1191d0e84165a51f64002e67c474fe060cad48ee69c3cd071cc0

SHA512
b6cee859db1f74c0f7414839e1170bca4f601436cb7c9efdd608a981b178b650cf8bc66146ae07803752c4622e4725c19117e7614c5a58e4b7c205607ad2a4ba

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f3ededabb8a7776b02580aede231dee2

SHA1
02178f082c102b9453f6880ed118fe21c308228d

SHA256
71d26df0abd4533b7c128b0f62c5916dd1d3834510742448e18cab955c20bde2

SHA512
804b2176ceb85419390397359f75b7b35a1cb782da5d24b72fd504a9f8263033b38e15fbfc9a96501424156c1eaa994bddb4b07702412cb53eaf1ff4939e97c0

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
76baae16351f2f54ab65299b2358c114

SHA1
60989e62a2212ee0863baae5ed1c23f2cad00e51

SHA256
b529578cb9da9f2ab5554a16e1fd83c99105f676b17256e9874e44a9a06eeef9

SHA512
9795a4b40026a3d1572d3cb4615aafe642a2517b7fb7bcf737f50e1ffc8675e48e5b9bbb38dc163520d0c2692a27de9b3de7fe2cf5fda2646548c8fff6fecf2d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
a4b57a48d8e9f6dbdd3e7c3d86f44526

SHA1
b0b93feccc55e5d10e65454a4a347221a80bdcf1

SHA256
f00d972ac9781572fafc895e973e899379a9c0ed36ec38f9a4ea101f63c2d76a

SHA512
f5fcb73574938513b7dcd16c934fdbdf5c0c94a751fd92c426e747404bc3df093f3bc5abf02f214fbc538ceb50b7c271a80bae44b184557ca04ac76bb6e69241

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
edcec30a7beb0f561787d66c5b995b47

SHA1
1668b7c0be43492c48425970477551d7e710e846

SHA256
0acea999e19c5fc7505ea157dcfe4612fe8938297e17a6bb9bb450a913e17f99

SHA512
1329eaf1e52254b94f6f5158393878b1018005eab355c6ff9c9affbe7c66e92533f97f4bc8352da9e81fcb027e56255f7a4461c2d05b0614fa53c4867381044d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
177abbb56d540ab5e4d12f0f5343f092

SHA1
d2f464fc6071ae332dbaac301e895f5bf9a45cdd

SHA256
ab763be18558f8b9cb1181ea9b10bdc8ddd4bd78a49cd34d713fb5c514a70d5f

SHA512
851e0303e088d6500619d996c07fcac5805cfbca249a2df591d2b33ca3781bd7e0974e53b3675ab1c254749a0e791c6d33a07c4db72a71eb053246dd0473c798

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0bba762e40e5b47d7ea761208c8120e1

SHA1
f8d4b9b5d7bb75489e0779f873fe0c100db8575d

SHA256
02b1d4034a63c39fea083d03e5a1129d4b6a5ab04857bf2226391fe4fe7a1b3d

SHA512
f9c491e9e0c6a58042e58b44454e67a1055e992b3952f1c0353801ed647f89cb765fb86e6a6e5f77fba9648d405d5d65fe6a5548fc35dda116c36ace557d12b7

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
5eea5b6b3c2a7092817fcfef3cb81616

SHA1
409e18be11f4c334264af3fb61a6fba1ad18c635

SHA256
8c10211cc97823abdb002fb3ccf8902fd56c416001cadda78de3c33afd33fe65

SHA512
ce3a9a36d667394a413f465edd261c15f69b8bdff82180a1ffd4395fc16c2c3e7f9dcbbd22129cc898cffac26ae84dbc70b3d71dd7488f49c6e7d63e0513a037

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7da19848dceda9effae5bae9fdc8717c

SHA1
3643af02d81b5e635516a925323ec18c4d475405

SHA256
3d76e2de9a9ef3074aaf8a99d4a1ebf7f2587d43dbfd6c37231e51815e4703ce

SHA512
721dac8040d656ab2b30ed1b31a73690bb12664c74dc892d5cb1f03e74babbce494f66524c6a7640c680bcaef541f50091c2181f5e51c1379df54108b18b48c0

Download Submit
/data/data/com.systemservice/files/PersistedInstallation125985848645709449tmp

Filesize
555B

MD5
01469f241f50f254d946483b94691a88

SHA1
3953ffa4d0e1831356c8e374695914cbf07c51ae

SHA256
5f61c73c7ca921623e3c4a63b63ab383b4834ec5279ae4d21b88473146b3619f

SHA512
f8d1f9abcf80d31bf5bdd0ae670ed6f0afc392cc3e27d91cc724113eb5aef1779c66f8700c1a23520470d48397a031d8399f9798e601da2dbba9faf253b86e57

Download Submit
/data/data/com.systemservice/files/PersistedInstallation8531868720924631865tmp

Filesize
90B

MD5
1ebe6b7d59cd8134406d4fbcbbe16c43

SHA1
a749d94cecff17f8f22df1903ddadcb04503200c

SHA256
bf74067f6b389c648b5755da6b51bc2b4d6990dad456985d03c6482e4afdb391

SHA512
8f131462af3fac984695391a537a9d119ce3d92689f0043207135fabfc56c16b85699b7721ee20cc535a1f981d9abe24e7490724ef29761bd53d71e3c525d836

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
67884a02361aa00196ee608047914498

SHA1
2f33aff87a61811ca3b4d6c4d581fc2a08f672d7

SHA256
300db1af4347a0565a7de08bd45862d30a9a126717dc462ebd6cef9d0b5640ef

SHA512
378f589b6dce7c35906c618e13df39b0c0ef1419a0327c8c60a3f5daf861fa5859d1a9fd5a5f23d866f5be998ddfcad570f2b5c0cab4e4dca7e684f6101ee775

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads