92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
16/02/2025, 02:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker collection credential_access discovery impact persistence

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.systemservice

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4258

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Clipboard Data

T1414

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
63d7306e1e8221f7955793805655c711

SHA1
7fad024b0bd50f021083a2bf5d52fcb5ecbd0b73

SHA256
19fa0b08c7b01e1c75e98035faf0ea13c8ab380f318930d948c41432b46295f4

SHA512
ec21f63fd5aab3007a47b7eb6e0ddb61e116c881816ab77ca1547f273291d3c7ee2042cbff20ee299237f4eb08ba89ee45bdc06d08eabe3e237a5c0271384f37

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
a3c77deaced54d1bd31e1e54c334c691

SHA1
3180f4a94b65080bb4ad983d6a0a77b33e93ea13

SHA256
4d0eb852bd492e1d23437b8aac8c3c76494b2b823a9e72307e9d927a8b9be096

SHA512
73d715554219a39cd1ee453ee87d2d551a535b9759d1cd63ac609af34ca356ea90f0b604e872d8d85e95d78121ef1efc6be7c1d97701138f891c829dfcd871bc

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
54cb64f107e95e74fe2db96789736c06

SHA1
898ca4f9aaf889fe6e81f36ca145c5119b9a895d

SHA256
7b99a30d4551035904fec10e35aa13d3c575a132a897fe6c0b8b87b6544c0ee8

SHA512
d668ecb6ec595ed34b71bdbac6f83df5d00007fdf70128b2ed346e721fc529e316ef58cd88c5e03de6716cba0cb1824484bc1301122f4aab13a1c8cffac8a322

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
1807a13845859aeec36c1582cec485c6

SHA1
8af191abacd9f41c4f8ade25787df4a6304d73a6

SHA256
3bceba781a14f8eec62ec56e07632cc400c2d1d5a61d578524d98b82797faba7

SHA512
cc49c71466a0deccf7690f16d21218fbb48f8eec3186490021c70d5e63cffd2e4cfdc12a4c260c106ef9c5814538fc0041eb080cf670c6097b6352cfc00fa2b3

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
bed016496620e199393aa4f4c2ba0269

SHA1
6b29ff0953c5d1c34de83ce2f9742502761b2f02

SHA256
112068fb1edc5e8780b40c0ce1bbe1c0fcc48ddfe6a3f324e3d8bea4e03c59ea

SHA512
d7c9ad25d513e43f4fc45489afb1c6cca8a0d33f4fbe103d1475c08100dc56a8126df8b140a1059fc9dd7ff3dfb6f0a913f544492d80ee828a2311d2376a168a

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e69fe0a0c6248379a3e0ebb01edd5163

SHA1
69b681310d6e4b0c50fae894aee8c80fb65f4e46

SHA256
5bb8b86f6732835bcae895e896b5cd4e5a4bc6bd5411d733e4ac5138f0f7ffd8

SHA512
c23f339cdd9e78d05a0ab409649d1222d8e779c7e88f001c8af8a46d5ea33fad5121d02b4a42519f65224c4f5bdf18afa271307acf30f3c277e37843e9c53ba3

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
835cfc7decf507cdc5e54f602e3f9699

SHA1
4a55d424cb32e766554672cb2d0b3804fc47552f

SHA256
29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

SHA512
2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
ed8000ee92a61d48c4c188d6b9d9d139

SHA1
462ee9fb38c1e75c6a7d859582b81ff7f80a568d

SHA256
d7fff408d9b7a4cbc164d163c8712158db7f08f89f1aa6984d8154b96fabf994

SHA512
c1bd210f3739232a0351fb27174cb6bd09f53f8218e903829b0b1a2128bbb079e77d2e529656c80b0277afb83a8f37439a43fb717f796f403cadf132a46797e9

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
067f8be8bd5d90b69f23cf223e1aa411

SHA1
676ce12208f834b31abffb86a588c7ab8d86d5a2

SHA256
52076c575b0e96ea3bcbeb8a187820486bda810fd9f9b44f6026ab8623f52151

SHA512
a5785326ba076825e70437e1e4f2225cd59b0baf47594f4a003764cc5524bb50e84ef62d8aa14195fbcb19117aa4e483fb375b2b5acc08158bce5e1ffb45b698

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
d87dfa5b76a050997640b47f145a743e

SHA1
b99e75463a961c1c8c024da00c5f93dde8c711bc

SHA256
07f69af3be5782d72d8d9f08457319b17aa0e656a0d70d68269c2e92d818fe3c

SHA512
fc03944236119399b63dc9e8ab20ef3bbb2b2388ea1938afcebb76ef73c129f2677bcfc7d7a8efc09258074a930af1ae2e619422a3a625e08cd8529e28b969f2

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
d5da5771957c073e5550640a8937e677

SHA1
deed1e890704099c39065bdd56011df67128df07

SHA256
b5fec68fee614bbfc1663d10928d52e9104ed967f0dbf0051061b7d036bc8137

SHA512
994fffca60ac22d342985c248e20aa015ed97734884e806f5e49ffa6f28febadea8e9f92cfa36080b1450ad3798a499dc85188c7f0b05fecf202b0b530ffd0ce

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
553f5a63c29184232ab8a525030e620b

SHA1
3b6d080b3b304a659a4c68d96f400925a39ea0d6

SHA256
7d3675081b3523036a2e71bdb79bb09fd97214f727fe982a876b16aabe2dd3da

SHA512
20f62176a7bc024079a5d201833a8dbb46002597003963660bd6e2870ac5f8f4f1253939aa68a1d3ef9042fd8af1fd592acd3d7b1fb679f3e84c98aa52b2d652

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
541c06b80c1677c2f8c76708008c7b30

SHA1
47f0beb09c01f95adc3d94b0ff0178762568696c

SHA256
7dfc87b60eb9e41a2c9c3812dd84f620b155645445723582543cd471850e0de8

SHA512
2e98105f71cb1e16d2d676b0314ffdf181d56f6c1e2a92d362a3e42dbb725fa855f0619459b4dad6a8ac6b88ec248ddcdb9cd0f66c732815181e4eb92d14aaa4

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
aa8ab81d56524f00f277df553048c5e1

SHA1
62d0cd1cb129fc6f589c6e3f51b6771c221c06fd

SHA256
09283cc30abeffa5188845e84429bdff8ec1f2b3dbe99b7b856bf262fa477bd8

SHA512
6a221bec0a214ae35686d1e60b73c6312a1a8ed20129ef25fef2f5277fbc862930cf4c8bee88e2569373ff05ff560dc9302ba92a1f72ce216bed995769acf081

Download Submit
/data/data/com.systemservice/files/PersistedInstallation6043910686098883488tmp

Filesize
557B

MD5
82bffa2803a53367804a1a10f357c0e1

SHA1
661f1d75bda70b93e34856fe284413aaee3faea2

SHA256
07c2ae824b2813d49ade352838e53747a81279d4135cedbe4963cd9f74b47fc8

SHA512
712dcbea3f12344380cd0154d62e4e2fafe2048469705deb06eccf2b0837a27e1d1ebd6b0addb53a1db8cf2ab3c2833cfa4b348489d0e60c9d6f357b12d76dff

Download Submit
/data/data/com.systemservice/files/PersistedInstallation8716266730817672045tmp

Filesize
90B

MD5
1946315152f44697b0ec5f6201e4cb95

SHA1
56c22b837de33515a63f92e2980ee113e0b0ce6d

SHA256
d6bc76e374d221378e46b73760859cddf5ea6b77a8e4e02e44ecb17f4d925a67

SHA512
0112184c55fcd264b44bef0cdea7b47ebc8305f74f4a1f818e218a3ce1470f84db14456976d8069bcce51b359e8bcb70054932201f1d48daa317c592fefbffb9

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
31d7b4adcd50337acce3e5b8034bdaf6

SHA1
587f9d69cb61df1b61f61cf5ea2ca442b825529d

SHA256
d3d6acf4d464e604b260b683d833be0dd6d138268eadee830a26aef4234195aa

SHA512
51777d7d489d4835361997204b96b02d1a11edaee3b320ead5816f8adb53a615a524d10a2f8162a9381b672b8c535bc5b605b78c6df93e7c36d57a73be853dd7

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads