16a1157a52d06932ce0f7af9c8725ed8a549aa2ed28edf04650c076608b6bb29

Analysis

max time kernel
76s
max time network
87s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
21/02/2025, 06:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

origin.apk
Size

11.3MB
MD5

596d77b3f736d77e31b622180d4c701f
SHA1

4c61f2273734cb7a080fe4f089440068da49d080
SHA256

8ae7b0080fbdc2caf4bedabdc09579441ba25dd0b28750a31864581ca9c2a418
SHA512

35bf77693479a8c9e2a32af1282b8fa3d05d6843ec5032f9751396f5db6e25c54f68214dfa2f5fee29910f869a0c80a0e05016d49a5534abf69816a7149d2cbe
SSDEEP

196608:z0DintMBhkRaD35nD//fi9uLKpicmIOhgYWWmDzFk5kr+lMrLAY8zYccBoB1Vqmt:jtMBK8D35T/UppicaJiFgPMr0zP1V3t

Score

6^/10

defense_evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

defense_evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.disprzs.hdfclife

Requests disabling of battery optimizations (often used to enable hiding in the background). 1 TTPs 1 IoCs

defense_evasion

User Evasion

T1628.002

description	ioc	Process
Intent action	android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS	com.disprzs.hdfclife

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.disprzs.hdfclife

com.disprzs.hdfclife
1⤵
- Makes use of the framework's foreground persistence service
- Requests disabling of battery optimizations (often used to enable hiding in the background).
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4264

com.disprzs.hdfclife:my_process
1⤵
PID:4334

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Hide Artifacts

T1628

User Evasion

T1628.002

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ddde8741cb62e38befb3eb398d9d5b8c

SHA1
d64bda9a0b95c91753a2e04601f84379b0db1e2d

SHA256
24cc517bc92d843cca79160ec21ec4fc9ade23351ade366fb2f73d3070404e84

SHA512
b29f4bf003f457679cdaf2745c68a4ee39ff5054588a973d00fc0eec9ce035e0b0383fb54dca86dc56ea569ccc29019b181e521e2fdb731df5f93ed719407e3c

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b0a9d9f80b2c20ed71378b30876e9b2a

SHA1
ed3c12eaea737e73afdb753e174344e45fbb2723

SHA256
add6d6629dd629052f943f7a6453f4ea818691bd805f4026a1f63a52cfea8adb

SHA512
3da1996a0eeb0f77bd511fb97d9ddb32a9fffcdd2f03655e3215edc2006ae8ebec722f5710091fe5fa9411a697cebc1354b275bb57187e1fffa2140b2272d2ee

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7855e2c30ecdd70153220f99ef2811ca

SHA1
131a524cff149c94831bfd5632bee39420d6d6f3

SHA256
65aeb42823791903a5ff3a66a8e582ba07634782f5be3f59a006bf4d651db250

SHA512
583a50429cc464c778aa986ed81b1838b59bae5082cb0b05ec54e3a3413432b48b9de85fd894a9fc96d02446e073e4ea795dbd41c715f253888ef61f965daedf

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f905bb7f783343465d58424f2138a107

SHA1
de5343b51c249806de99f73eee146eb8bdf8a724

SHA256
0a9aa7d7ada866f81b9786f2dc52d36e46d5a3c827f1ff55515a5c0f55fa5de3

SHA512
125f446e5ad7e55b74491d1c70060ed26c5f301d87b6fbf23bc2ec2b13153aa8c1a2c55bdb9599d0c055323003de9e5d66af3ad127c969057a44c7c5336209c4

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2e77dcd05acdceec366d93275dad30c0

SHA1
fd29150b74de0601589856de9ee17308efcccf98

SHA256
953910f1400f96563ca455fb89060ece3f0d4423ed3d1c2b2960463df3b5566c

SHA512
da742e8589de919ef58ff99ad179fa79a00c1e922fb46382cf3989f14741df0f28969c72c81964cf22f915033ba468ffdf5dc3ac678215a8785433241dbb6436

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
20a2445eda01a37628601145d31aad9f

SHA1
8e900d81c932af02efbfb55e3a8e25f6700a349e

SHA256
580a44a14b7af93f5b3b091e479f2a0f1e5e2c29ba8ac3cb302442e9345db190

SHA512
f2e5fc404c60d9ffcaff2ff1257754f14786b6986bcfd447c4a3da6c165be7c05d0d1a325086b93f018e74b685ab47b849cab4a835560c1097e983b3f58d8970

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
9bf7342695d4e9fd8a022e96dc710b06

SHA1
b3cfbb42ed67e9a35a68abc9de70e46275caf736

SHA256
05f8654efc8e8746a464dc64c42bcac4abe80058931312df61aa369a8684cc7e

SHA512
5945e2204625a1eff19802aa081bfbe15df28a1a58053dcff98b1024c2fb43463b14b976d33c045584008f2dcd6f16ada2c36a213e30016da4014f68cf04f3a3

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
2e0e2de14cb424c78433dd77d665534c

SHA1
3bceed2dce083cfc774d1ede87772ce098273c7e

SHA256
ef61bc95c1f2dc2422ff098b9d149ba156e68fe4fb9e2e0b2ff77126ad6ebdee

SHA512
896a4edb1e719f5c6233f48e9db199c0200f448d17a9c63048bc496c56c414600eb5a3a05ce67b69a20276bb5ed4a9ee112a85c960f4c9ef0c7107964bb4ff33

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
dc71c70be0fbcd2333d6f8f22d3b6b41

SHA1
e3ffc61223295cc1dbbe5099d22ad78e814a6d90

SHA256
9ef943684a875c2f1f1b8779aac17593205c9bb30a3f8de975e0267665bd2e97

SHA512
5730a86c54700ed525327ac6864c89f2e4dd1370b50e1c4282b17d4b137b29abfb6e3913732389a717f0ca65cb5ff81ff4a773af6f9a9692ce311cace70e8490

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
4f099bfb9f343e5eae6b41fec5abbcdd

SHA1
1ad6dd6388cfa18252fdd0b1b0d5f40d950aa075

SHA256
5d5f9e3a1cce7e22db9f358e571828fa67713e8130155006453b5c5483731188

SHA512
0f4df7a5aae277ea7e06a456d8a2709446a94516ec5f4625a421747dc123e98d90ad062d1e56adad3e97774abc3445b8727b64193f04c2079dd831ccf38f99d1

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
d1e808429182ec540659a4f19069a569

SHA1
1658b76779a42c2ca4da70b3a94fa92f65e5e4f3

SHA256
bc158c14ee6b765543be3f599f0e58967f275df314c061879dc4d362c2c1a485

SHA512
dadc5cfe486639d6171f68f3f2807f764ea79bc81cbfe7bc303798a63e26460c2adc1ac06a05bcd3c6ed2cab5ff72aa3537809e99259a1d8752b3eca9c4f540e

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
4dedac33fee4b3ce5c955176feaea227

SHA1
ac897e66e149c43ba6c940023d41573cbf393050

SHA256
680e0fb6398d2ab7bf13d28a9008946fe351388ae0fd89aa2fd12366e86f6781

SHA512
5fc650a6ca07b457c77718d291f7335b321409b4147eba50890e01723058cb574abb4fa042197cd820f7fbf25227ba0c9cecb810ce2505e7373e81effe9a3703

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
368e30d7b4b06a2b0aba420927ce648b

SHA1
c46569b0ab4d22bdd5ef8f69baec80c6e3fee7ff

SHA256
1dead6416ca013ad0fdbc948564bc38cf3dc5f4b7f7e56f59f485cfca1dda981

SHA512
1d54a6428b64ea5ff93d6a339a18adcfa52fc3aaa04d9f409519c291024ef88a0735798c34a9c101f92fc40c773199218cb411b7562e5a212a52bc8417599c33

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation1302602684825381631tmp

Filesize
567B

MD5
d0b37b99cb00cdb42d26f115258416c2

SHA1
3c0264e70c3023f3c524d622ab3ff290445e4ae0

SHA256
254eba8acd1d22647da8264f87e8b7cc6c0d8884b0dfc92a6ce3705dcebec418

SHA512
8e785fd47196565c5627d4705a1f04309c8b53a87df58dd1f85640742c32265f9f1c9dd45d453bda24e4c9cd475eee1cde2254791a95f42b269adae2d5f7c5b9

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation5144076790205977998tmp

Filesize
90B

MD5
e176a87471b76ee7ba210f41dcceb969

SHA1
7b69584b7eb10fc1c90a2955a032c6f46c85c35b

SHA256
a96c53afb25580f21e5ede0bf2eb97e568640ed10e9bd5061e6098adca25efc2

SHA512
9abb5eb049220678a6a26aa042fc19158fd7e76a58fd573bfcc53146023b9962dab7341835ee588cdaf10c3d4e5e74dd39bc5bb928de1648143dc7aa9e5990d9

Download Submit
/data/data/com.disprzs.hdfclife/files/profileInstalled

Filesize
24B

MD5
cf933f79fdc47f16cde030c88cbff667

SHA1
a2c97c6b04b2c7d291d399be138be70b0ca354af

SHA256
1a037fcc40698975a0c8ceccd6b3e4c6d73d13def0171ca86e1223dad5406cd2

SHA512
cfe03f6a1121d97530c29b4e0ce71388f630d40991cf7646a3386640706ef694d08f405c57495833f20c81c4eadc5663f9b2609c89e10bcff1090c1cba55053e

Download Submit
/data/data/com.disprzs.hdfclife/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
a64c554e8968187f2d2720ede5c55b25

SHA1
621d0c11e16bf4d204bba63737c483fc5cefa32d

SHA256
a6817817b77470159428a055a96a0e02476de2297676b7ce60d271f7a34ce970

SHA512
4742b87b04275d0883a2c0190dcb704928dcc2f571b9bbe2e4ea396d213517ef76589ebfe3828ed943a011095055d6317d5f288a337a792eb4a8c9eb7825ed4a

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
87a1e38de81a64387d2017b836792961

SHA1
f3bb7a7a6672084aa5b1409affebf52ffc0eb396

SHA256
a237271944ec2f6c0f6e34321a4c7216a34821a2a2206cf3372c7ae24ba88fdd

SHA512
ae5c990cfcf2d2bf672e6974385a22e205c7c3f53cd17c9183958b02798882e5728c4d8bb31ff46ff90cf90075b147d6350d844b960b5e36b48b5be5edfad350

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
0fd2ecb360e8b2786c405b4ac489f510

SHA1
d0f423d19e8cef788282d78d097cfe9130669ce3

SHA256
c7c21a5c351ff9c40e49380f221ee7faea9599bf2b339c6d1583b3bb96f33625

SHA512
edb6a8e6cc8627f598b7f871d686c5a3e51d45066400839b7936578c0416c0c632f434b7c738a21ddf371135e7adb17719a36273b396c1fe8153012ac796b3b9

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
8ebd8a97dbbfca875428a4206b625465

SHA1
13104dcc794ac00371b03d5fced355094d66a0e2

SHA256
d3bd86fbff2b9385f31956c4d201039669583bb53bb8d2afcb740f6a7b9a2b0c

SHA512
b21a8a4a27e2dc4b0ba6af093087f7ecce0f5731c1a932de45d8f3c94a48851422656b897bb18b41213bcc83202af6365dbb03754d6403de278d769c52894e1e

Download Submit
/data/misc/profiles/cur/0/com.disprzs.hdfclife/primary.prof

Filesize
2KB

MD5
25d28d40a79e59e9c62d34f20fe6846c

SHA1
a0cbf4dd440a0e0b43c70be3dbea02f38ee3bcaf

SHA256
d0d2f4966488f6452931e7c209eded824879e20e118450120ff3d66b28f33d19

SHA512
ab19c08213489e817fe3ed0dede8cc9436403a30a45381bcad0525018dfaef39cf96354bb0436f44d2e53eb0e4dbc2bac567562c099e751bf069c78ebba74299

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads