92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
157s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
20/02/2025, 02:41

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4962

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
08b296d7d534c43e5cf82f2dd09d29ae

SHA1
9dde798da9c7e527b13a93cf62ec66f36f638fc6

SHA256
dd9e00de4fd559ecb3c3cbc6c87e2cbf4a7bb1ab947ecfff34479a86e5f5f348

SHA512
86751723fe278e6b0cfbfbca0be008912c480b863793432a346fef91bb90178d7647a1c09c1f33fc4254fb578eaf2e29d64a5e60a1e6b74a503e06ea1afa276b

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
1fccc4cbe6ebe7c0cae2fb4653c2ddc4

SHA1
530652bf95de086d35b4334861bef620f65682f3

SHA256
7a83e0d809d1f9e611921eeefac7782c98569ef309eca3d1518509749b0c3b84

SHA512
a66080093da8f6be9d85155988427f95ef8876ee45d063fe32f63eca656fa0b2938315efd37c0b1584182098232a87206bf9079c162a64e02c7f607feb596052

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
7146fa09a1d100d1f7b25ff34c070608

SHA1
ceef47b9f71d3bd580cc5e4b3c808cf3333c6f46

SHA256
c085b209bc0f60474546a2d46b9b838bdea8f4f137fa982ea8b275169f9f718a

SHA512
8cd86bdec415c6d90c2e280072bcb832a3c5277f1824eddb78d51a68dfd0674f5f93a8edcd1d456094ccfef824eaa17bfeaa0830e8f4e28960957a0e3ccedce9

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
47e5a67cbf69af1a6eea16d6165870c8

SHA1
dc20763f635ad0e4ef43e245defb0c65215d975e

SHA256
1514e6be89673c318e9d9f20c3380ac4301977027776b5e18bebaae7247b02d2

SHA512
7dbbab3ad6acafda778d1141a5563ce3205d9a1a7617bf1eda4532e24f8cd3941c4ed381fb3090a5fe37cc9b2192f6bfe16a69b16542c4b4a4e193bcb665cf10

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f1b636bd65376e7fafe5bcb50b3d6251

SHA1
1457030863b031f854c6952749a1bf4222f63b4b

SHA256
62e01f32e6bac96cf1debebc45c062b2bac2167aac8fd7a8bab1dcd14a2a206f

SHA512
4b7751da126b547fe7e534d1e514bdd5f25e653bd69d8bcfdc421cfdb87e018db8c4cea8b7fb91cc91f86e96be446d34ca05a16a31c0fb967729c0c86b84c96b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e4204e0984906acc0206f3f07c59189b

SHA1
c8c27f00fcf6a893f409beb7adc0854a472e0e07

SHA256
65a2ea8108a5b7f0913d1068ded5cced872bc4067ef67a61b48242118c0a1dab

SHA512
381a5f340c58914317f3ed59f45bbaa5a8bb97fdeab00cad0063595c950f929757b0dfcf0df52bb0c93cfb4d7d00249b66e3eb110fc765bbdb44338efc08818d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
9d6a87c3408173948b6309ff8c6752a6

SHA1
bf3994fed597d231b0479ab24a8d7131f9a55b98

SHA256
445f9774ac978f9b36f5c1723e35939b6b331d81b686002f8acf612afb72be02

SHA512
a7ea7f9434154dd93a8ff2711d95c5f5a282e91674fa21bfba8507b1af41ca7cf7f281353cce255c83b3d6ec2a1cb3b61fb8fbce50e000a8f3338a9adf61f683

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
474f3d889cc2052cfe5c00c4f8391f18

SHA1
2c86c3099d33b03d05f843d78ef453a5c71cf7b0

SHA256
6d70cfa98973e6e0189207c946928bbc7666b4a02edb834c679c89df92c677fa

SHA512
8a47f5901f56ffbc7de968dfa5640b0770bf57ffbbacd3ddd6fa9fd96abdd39ceb37d0ed6fe5f06ff623a35789d12e4bfb4396fca3192a1811d1ccbd33540af9

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
c83d0d16aa2480f56f958397edd52cf9

SHA1
55fd6d68812eeeb811cd8f9dce79d4ef5a673212

SHA256
611f3e8a4fa7e47fef4497b7fd5040d348e952a39e85efe26d5dab4134896956

SHA512
da92102fc35a27b417f00968f8c0884c5df36d09efe8652ceb9eb2a08323614fd1c4ceddb8430c52d85c2fa308f5f7d2b00602a74178b9f532817a24687fb68c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7f5ac6404d99f94ab8575767a56bad1f

SHA1
060a9bf1f605d1dc6b7e4fa7ef51d4e406dc614f

SHA256
8cde03e2781266676a45877181bd13c017433cee958dc52e572a3c880e94c178

SHA512
4209b47d09cf29fb1da443e6ea619ac5e28249d67a2b63833056c12a62847f00edf67dd413e97f493f62a97cbd273708b9ff52b7bd61f617631b49d3adf04286

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
b9c108cd4ddd79d372fca70054218204

SHA1
c6d711770277b4438f3222695ff9a67d47c32ae6

SHA256
daaf60f5447c5cf071d0c8cecaf7bba000aae3592c83f139dcc52ddd2916405c

SHA512
81b4457a5d07365959c0fa4f11490fed8b7fce94d1126e7b1d5b6fbf6491c03b02d075b1acdba07436af9b73cb1210ea31246bb9f8bb0413e7710d516b22b6eb

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
5df5e86159388f5aeeec848e17866a45

SHA1
a8d63915405f3380d693fc6f17464fbf65bc0067

SHA256
0a7613843e6f51aaadd65f6e9be7dc07c681b3f076605c7f18a2e7eec393480f

SHA512
28e45a80fb5ea5bb2fd2862e2182b3417b3a4c5e529da9d7b94e1189f25b7367d4cad3b4e317370a760c867c4d3f4bbe1ff96530775b43017b99ecfd452c60a0

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
2738d974fc9f5ac1ed1499cc05ac236e

SHA1
e57cc15c00ae3e4664bac6e3edff71ae6dc60d19

SHA256
d135f99855d477146373ae909922588d1d1509964fe4c29eebb12c7b92d76e0f

SHA512
d7c1144c095ad913d29ea1b8c9d2fcc0bd32b53553b20f423928d80a96db89efb6a79809280c85e11c8f379d1589ddfd81d693074851e8186bb08ce81bf7bc94

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
36b20aefb29c4030e3ddff4d6c129420

SHA1
2a18dd4dc22c727bf96d9abd409913078848cb08

SHA256
a1d69b6ddcfa69f0f02435c5b0712175ed22454ec4a12f400bdaf00792a613d1

SHA512
2e33f4f7601fbc8d3f9fddf081e2b1234a9302018b9896d9780e3893887a2a4e9042e44eed740d2bec33bb33c8d0e73a1fbc5ab0ecd27404bbd2d9dbb806cf19

Download Submit
/data/data/com.systemservice/files/PersistedInstallation3072062331860839171tmp

Filesize
90B

MD5
661abb2ea9fc10c162ca46848da5ab00

SHA1
b1bd40e4a9757debfa4e1aa272482f2cf6a282cd

SHA256
e9e6c67a7ea0e349deccc825dc5102316e04a2567dcccca8500d11f71c0ce428

SHA512
9aa65cde7a48fd2f8ed89b7f6be435a905afaeb6bf3cb6e41596465db61ad8d3edc82512a08a63f57f6c26f97932f5fdd8c3721cfe6d968e45d33747983adb69

Download Submit
/data/data/com.systemservice/files/PersistedInstallation688630564035963310tmp

Filesize
555B

MD5
6071bc4fe122d24d90d16577d5465f0d

SHA1
4e7ef63af8412a6a52363bec5acde398d1e93abd

SHA256
2cfc7c6329f9873ac40adabd03053478367e8d49ca5172e43921a9e5c3ba026a

SHA512
cd1ede9cf07f97ff683d0d999d757168f708400c7077d5c095e7a54ed165ac05479bcd169db74039ccb2aa655ec70397aa1367104251558c8651f041ceba9159

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
01d40b6d786d3990ba6872e8a5f1d591

SHA1
122a7ebabfb3fe07f304951667e1425934360012

SHA256
218e2c79cbc43972defb5f710a004cc1caa35436704abee07348704f79ebfbb4

SHA512
ec0081c5669660e9c7b13cd87fccf50910e5ebc9d40d18b8605ebf687fa3eb4a501fc4ae6eb36ed78d5f5766b309d34ec2dd12071de0e298d241dffa10acafcd

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads