16a1157a52d06932ce0f7af9c8725ed8a549aa2ed28edf04650c076608b6bb29

Analysis

max time kernel
149s
max time network
157s
platform
android-13_x64
resource
android-33-x64-arm64-20240910-en
resource tags

arch:arm64arch:x64arch:x86image:android-33-x64-arm64-20240910-enlocale:en-usos:android-13-x64system
submitted
21/02/2025, 06:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

origin.apk
Size

11.3MB
MD5

596d77b3f736d77e31b622180d4c701f
SHA1

4c61f2273734cb7a080fe4f089440068da49d080
SHA256

8ae7b0080fbdc2caf4bedabdc09579441ba25dd0b28750a31864581ca9c2a418
SHA512

35bf77693479a8c9e2a32af1282b8fa3d05d6843ec5032f9751396f5db6e25c54f68214dfa2f5fee29910f869a0c80a0e05016d49a5534abf69816a7149d2cbe
SSDEEP

196608:z0DintMBhkRaD35nD//fi9uLKpicmIOhgYWWmDzFk5kr+lMrLAY8zYccBoB1Vqmt:jtMBK8D35T/UppicaJiFgPMr0zP1V3t

Score

6^/10

defense_evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

defense_evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.disprzs.hdfclife

Requests disabling of battery optimizations (often used to enable hiding in the background). 1 TTPs 1 IoCs

defense_evasion

User Evasion

T1628.002

description	ioc	Process
Intent action	android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS	com.disprzs.hdfclife

com.disprzs.hdfclife
1⤵
- Makes use of the framework's foreground persistence service
- Requests disabling of battery optimizations (often used to enable hiding in the background).
PID:4504

com.disprzs.hdfclife:my_process
1⤵
PID:4571

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Hide Artifacts

T1628

User Evasion

T1628.002

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
50875ac9e1780611395c1cba8ed73a74

SHA1
e6dccc07c34f8d501fe8edb85a7fd2f8e6e37067

SHA256
a92d545f4aa9eb90c6d969eef85f2d84a2cb8c84d0f778d5722d7a4a77154109

SHA512
7b4e41a60856d266453f5dccbc7cba049974319c43533c85448f7edc6a9078996f6ac6cc43ffaf127c645f0f95eb1554e7b96459fc591a75c644b21ed499f3ff

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
22018b1e6d383f4c28a18ab08bfe8ebb

SHA1
05d147b89a2bda8a67d2daa0f0c6950aaed971d9

SHA256
50fe28ee848c0a4e94d65e61d9fd3c3cacf4f18c8b1cf96681a8ef35cb941074

SHA512
92c4b5d5ef4d699b7c0bf87e1dbf0d39d28c925f7105b767522c8b161db3aa0ea37a933f1533b0f91d4dd2bbe742cc49474f363fc1e92c926db8864a87822c0d

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
0bc3b6a0cdef12c568ca9798ed26860e

SHA1
16fcf2f37297d82933ed02162da1d70331d70026

SHA256
3c216a30d13a2120652a173409a20eb4e49679201dd98d26c0b17e1dca6a248e

SHA512
761a91835e60af912b5aabb5117ff702f76757689d17e1dbbafdf1075c2cbae4ccffc2e794c328dd87c6d9d88a3138f0bbcd51e65892a6dfe0075926dcccb931

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
59268219f14bedd657acb3fe07421464

SHA1
0c89ed7152a6f1068cd35a0681712fe596d3d880

SHA256
cee4e3920de8fa117c1e6b5cd343082c1f35b653f3ffadf0353f320f8b930b12

SHA512
e75d8a2859a6e5d4c6d89742c4f5d69454c786ac98db86bf5301a7105d8e303c158e00b278692b1874bacafa5bf84add4b23e59841d7ab05e8b66f3a9b1aaf9c

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
30d69b725234ccb7ade4214346687799

SHA1
602ce026b4d955951ec2674afbb0afeb463c90e7

SHA256
a9afd660030162e080aff81b57082b276a76316e7216ee522fc4948e0f9bc140

SHA512
ec60016046539d38c79e5bc97886696e32f1998d406d2c842a7144852a8d4388c8ac52b5a3fbd379a85a7f6859c1bcace2d0d02d799bf8585362893235b33c4c

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
895aeeaa0df4674a3b2f5a4b443999db

SHA1
a39212f2dd255170a61b8fdd318ca8cfa6e4ddd4

SHA256
97ec88d167c43b7343ba335c39fd9b9c7ad59c10d9da83c24e0a0ead02429f98

SHA512
b9c5487dddca4404211425001ac74cd388b2b76ce79def27c54316c0a84b261403347b65747834cca0d1ffeb67cfb6d80467f1e29f5344af32bec1a4dd5f0acd

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
fcf5f56d0477803f6c197e225a0e30c4

SHA1
b2a6f36bd9615b3a6911fbe0c79d5e0ef75ca521

SHA256
bdf978b635c5ece0ffc816cff4d6a61e37c5c685378df9315cc4c869098385a8

SHA512
546c065e9f01884a1c43ba6054b94cf861d103c1b7128619273bbe854ac9ac77bee9d658a0144e45289d69a1dcf1d1ca27734a19e66f67d11408292dc1f29e33

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
cac9df650bb64171dfd92913467d236e

SHA1
76dfd1f85747fc23e7b6345c95705b89ea06e32e

SHA256
b25c1924b9a6aeb996c54413245fc367bbd59e4db0d3eaecde334886da63b268

SHA512
15ee9f02eef3499416dd62ca767d822bebbe983eb1edc0df0bf4a674131747f6d60f30aecc1dc2f867738cf29ce0d8c2a894c61c03ccd38b0551a1b0b28432b3

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
76017907cc5e9ba5146167d50fdefe74

SHA1
ede418cd6f2d9ac8b418a1735cfb5b7180660ac2

SHA256
487a6c6886b645a4125609a16b943cf97c3a81b532babe9d5c392ccc5e96fdd2

SHA512
78672cc1ea3cfd91dcbbf21d0c745cb3c5babd29db64d34edd111fbd1012150afc32e47faf9bf9502a38aee4bbd576ae4e129c8457dd5a30fbcf8bc1ef83d0ad

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
06175eb7be241a8acd0eeb0f17bdf4f4

SHA1
2d54ed01a96dc55ba1b71c1649828a8a39b9696b

SHA256
c22f3c1da9333b63115051e0adb11b4c56a9c6f797e6cfc4b87b7ec0447c75cc

SHA512
c506d7d2fc7be0e21e877a5ae0c8f2d02e039aa6cd8e292590d3a5015e104cea43f194f4109829693da00acaaf506a3263e1bda13ba0ec2e9bc2fd276489efcf

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
717510169bda41de21f876891bc5d070

SHA1
ac6da7a32ac01134265c5e6d2317bdfc2d699cea

SHA256
1b3308bf5a9ff6119cf4631f9efc2fc1ada65a47b4166446b42be36f69982a38

SHA512
c029f753dbe184add8ae9b427a521b837713f2592455da6e426bf227ced828d5f38d37b48ac6b76a7f7b043e2017e5a2e84f13bcf30498a8ffecfbc58cceffe8

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
1bb8f295fd444ac8d4455ba87eafd35e

SHA1
ff7cb90ed3824d0e614ec1ba7d17948a832f62f2

SHA256
79e0510155ebf5cb52c6c798e8e69fe1fa10056a54ccac08a79a7372e8711bf9

SHA512
74a86875e2688e252b37a8036ccd54d6fc63119a4b18a83b7590a1c012641f0d72241fa7c0ab14e1ae8771322ef9fc68167a7cd61c407b8f2ef260eed79f30ca

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation4794349477065128303tmp

Filesize
90B

MD5
ff220f58507fd14bcec6b2218d11d342

SHA1
e747e3ba532b67f4dd37c73e4b54deafbf50df53

SHA256
5a6923981aaf41dbf0c54773683bcfa7e675927a238828185fad7e19c843e2b5

SHA512
92c7a0bcc18ce6f1bfbac65c69e86ee7a6ba2c2d4ac6fecab663157fa2675e396ae56a30d0a29850fb4d9cacd6694bc730f1a8a8d6f20556db3fba2ca4667a7c

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation975382487036528292tmp

Filesize
569B

MD5
6a36880b1a37294f6b2c18a021331c0d

SHA1
a441f11ab95f39a451769ef806fb63a535cada44

SHA256
60e8614498bb948a3cda593978419f817f5683b406d32d9b7b456986e9a58b24

SHA512
0c9c2a944a8292925a6072061edb1a3be48bca57faceff663b797d14649c2588727f5f6603c057886a32a3cf8802359ab5d6ba38760877560de0ac4a6c111466

Download Submit
/data/data/com.disprzs.hdfclife/files/profileInstalled

Filesize
24B

MD5
144ca332837d0f05d3c9922d46d13e91

SHA1
e00ffbf5ce132acac020744071f8a8741364b78a

SHA256
c3e3a62e3c7cddc96d3ad2ca5c8231afd0dc290e5d2578d167984d4316fed341

SHA512
ae9471f9ea2b70f5b15a33542ced746ee11275f358ba041a6bd88f7b893112d67472b7897b090ddf9ae1fe5fcba038ac6c94ff1569080790563b3653b54597e1

Download Submit
/data/data/com.disprzs.hdfclife/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
c3cfc8319145545a038b76fa3b117d7b

SHA1
f7436947ed2654d75c755b9fa998578da1d93781

SHA256
17cb573f92c05e0f7960fdde13200eac542df77d255dc1b6f3fa8e35b485c7dd

SHA512
e25e4658ac988c3b37df0857502223e899c488da382e1f8507a56798dfd7712976b55423d897d910f48187e366f6079519570afb9d4b492faf3c18c4186e58cd

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb

Filesize
4KB

MD5
0eb157e1a86d4d00aa601dd2f6ff3ee3

SHA1
fee434f784e73cc7916322e949f727caf8363102

SHA256
b9a8194b71a046e8c0eb30995827b582b4bea834f630a5df2483b778a7d7d8a4

SHA512
b9b79b8c3af8a3f140df230fd89e95206358ba50ff214e7323a2dbbe2937b795f970e588302ffd5d721318bd597ce0a27af26d6cdb07f45569c30209845082a8

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
23a7e3573e07700c052fd1af3a17314a

SHA1
ea6f7ef6f4699acc777e4b180f7fcbd1df950805

SHA256
6dbdede9dae11d288ac9ca2c345e5460ca7d5a6fdb62db5324b2a78c07c8b80f

SHA512
e99f3188e3139a9479881cf0620e74cd13ec77eab2033483b357c49cc13c5faafbf077c079c34bc096deedd306b106b6e24b6cb56a70135a3934f28a8f248d87

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
10917a0d09fca10e8a043847d2cdcc27

SHA1
bae1a2458f6e75d56490d60e2a7a2c41f3f3eb24

SHA256
301121017e0f8ad57a52fe66d733d76d7615c6eea6dc0a9cd43060cb624f38d5

SHA512
cbd245887b0e471b0d03ce7f0ab96598d4fedf8b125f9afb4eeca948cf1917c1840b82afb4a9a641b5e38f4de5b355fcbb17f2e3eed17751698747d86078a689

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
cd184895dd57761edd8b35709924d07b

SHA1
b3c8136982808d5ed4e007bbeb271e2fc83640c9

SHA256
be03b734046746eb7653e9e116c49bad6a6ada42c4d563c6df869f5019f23067

SHA512
705bef483e0c3d595b01ef339cd50787b6a9098aa7d479c45739fac938bf6a85dd478134466a034bc725b2ad50e0f185d85c5c1aaec54ca89c67ff4fb60d62d8

Download Submit
/data/misc/profiles/cur/0/com.disprzs.hdfclife/primary.prof

Filesize
2KB

MD5
ece06bd6e2c0545839a53ff322ca7391

SHA1
5bdd05677aef2b528b07af2e6bb160f933e57845

SHA256
48d0d71fffacba39c9039674d4c34103618b40c2e8dc3b3391cd67019f0583d2

SHA512
61169d69de1dbc7013843de803cfed5099e61ced49662549711113757ed33fca5826a2e5d1f37481b8935c4a74232b6abdd3d221b7e399c76e458e73342e4d02

Download Submit
/data/misc/profiles/cur/0/com.disprzs.hdfclife/primary.prof

Filesize
9KB

MD5
e8cd05545751b96e6d827e37ebd076ae

SHA1
584e2bf6716040a2e2c4022e500190257d057997

SHA256
a9ff48da30f66f3cd618ea262189acf89fd1c37c6315bf15526e401c1a35c8b6

SHA512
830a96e997981a3ab3948ba04e399b086f9be87f90791703f5d19f1e9a348de4a4f49ec9cd4a64ddba6236b37f5134a532a788f6213329e4f227304ba21805f6

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads