afd3227c4fb790a2033f99857417061be8eb1c3c1db0cc2910f252ed0959a3cc

Resubmissions

Analysis

max time kernel
149s
max time network
153s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
21/02/2025, 05:59

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

origin.apk
Size

11.3MB
MD5

596d77b3f736d77e31b622180d4c701f
SHA1

4c61f2273734cb7a080fe4f089440068da49d080
SHA256

8ae7b0080fbdc2caf4bedabdc09579441ba25dd0b28750a31864581ca9c2a418
SHA512

35bf77693479a8c9e2a32af1282b8fa3d05d6843ec5032f9751396f5db6e25c54f68214dfa2f5fee29910f869a0c80a0e05016d49a5534abf69816a7149d2cbe
SSDEEP

196608:z0DintMBhkRaD35nD//fi9uLKpicmIOhgYWWmDzFk5kr+lMrLAY8zYccBoB1Vqmt:jtMBK8D35T/UppicaJiFgPMr0zP1V3t

Score

6^/10

defense_evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

defense_evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.disprzs.hdfclife

Requests disabling of battery optimizations (often used to enable hiding in the background). 1 TTPs 1 IoCs

defense_evasion

User Evasion

T1628.002

description	ioc	Process
Intent action	android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS	com.disprzs.hdfclife

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.disprzs.hdfclife

com.disprzs.hdfclife
1⤵
- Makes use of the framework's foreground persistence service
- Requests disabling of battery optimizations (often used to enable hiding in the background).
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4221

com.disprzs.hdfclife:my_process
1⤵
PID:4330

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Hide Artifacts

T1628

User Evasion

T1628.002

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
62ab2a000e86fb52b7b2cdfafdffcbc9

SHA1
fffe244677a1680b00dee5b80d97eb8751a8596c

SHA256
dbaf9d528e6d6d853ff05fdac74ede8e6f887ae6a7694c8e3b15145611175780

SHA512
6459bf246e3aa92c9433b183852283aa418405da65d00b979bcb7d8d379c55b9a12bd38cbfea398acc951fe4e6cacfb44b466d0278ee52513d2603c011c5178d

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
5b016bbdb5406fe6b3dbbc164b60fff1

SHA1
4fcfbb0fb48a6f3f86088b76952ccea1375e841e

SHA256
c9356378c98a305f310965e136ebdfa0432df7db055c8203987e5bb6fee82bef

SHA512
7dc7acde6c303492a02b13776c1f8a5d48e3bbc6a98267914a9fc1929d1230356f48cf3b80b7b21bfb9b906fa101dd2269412f88e936e9feb70d4a82ca387f66

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a7039ee58f72e1cc8366e8eefce9167d

SHA1
93fd4b2a1507ad103a2dc55e55ba0dd5e6ccf0b5

SHA256
2599cd16ce72b45a4028f53529eccfcc26c5c2cb0949ede5c51851045bae9ff0

SHA512
d14d731df20a8e62be1e373cfed5c7a588d7b063927fc0c8d2a0125ea67addceb87f0fa3b2d1ce70b9a1c36c91924949c911a3076f6e13f75efd89ea1bbf64e4

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d6f5e596139df819373f4e07e415c192

SHA1
59cf4ca83b0a76f1918c904d839635d1312ebd58

SHA256
6f8687c20343df3ce81a17ca1205358c68860d42b4766a76b32e027ad5415690

SHA512
d5a934868fe611b544d660c3664911070a8ffa6a39d96c42539759b3c16e5e81890eeb3efcd882a55d9f45c043f3fc685048dfdede5ab6d4e526a02d752592c7

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2e77dcd05acdceec366d93275dad30c0

SHA1
fd29150b74de0601589856de9ee17308efcccf98

SHA256
953910f1400f96563ca455fb89060ece3f0d4423ed3d1c2b2960463df3b5566c

SHA512
da742e8589de919ef58ff99ad179fa79a00c1e922fb46382cf3989f14741df0f28969c72c81964cf22f915033ba468ffdf5dc3ac678215a8785433241dbb6436

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3b405ae8b5fe61aff6cb91468461e130

SHA1
592ec0cbe066a04019f98dbae40d3e3cfe1f8c7d

SHA256
1f0467b6593b7b4449ff2dcd0cb51554c47693d3258a7549dc830c136a089b9b

SHA512
16570fe8bdc19990a798fdd84c7bd90c2ae3c668217385151ad372d5fd8540b6299d7c166598c6e68919592ef41c106c2502774cb7af80415d90b07a9d1bc927

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
fb3125dce89292ec76c8d2d644cfccef

SHA1
2c4b0900620c478eb310f8324ad72740012833dc

SHA256
e4f3e5f0d54c893819b3015c1bd96023b502f92488fad62b40b05f8f213138f1

SHA512
54b380ccf0304b8fc8840209931507ec8e07a21b57fe03c63e38e1b9efb4308a794e5a03548f9e13732b75cea469f2fcadf08009dd8a560c0219cc6f5e625816

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
30eae0925d72da907f6c3366771352b3

SHA1
67d71d8a052ca1bba30f9ed1810b56ec5eb86e71

SHA256
dc76f422481ccfff73814ebb0e234486764e05fcda51a52530df0221f83cac83

SHA512
998b9e1dce45f477da973b0cd9c3b68839354d424df0bd1a969f1437c086571d65d08807032b7eeee4be29b2e1df4ace90e802dff64472f73fa907d359c6c579

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
7f9020fa7c2f66c344b7f3901594c574

SHA1
d4fb4dcc37f9114244947066cd61db3d7c896f4c

SHA256
76e1ff5c341671e4c82029c218f3cc6d20adeb75f331e345c743c4c902c9e3ce

SHA512
8b5ed9ff42aae16716d2d0d313e138e5d49817211983abfeccb534d5aa5d1b47c5b1ff2425c58d17297c8382fa271160375428eee0fae4a88d6c5834250c64b7

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
aa43c5fa1b010fe76c779ec19f992d4d

SHA1
0af2625606e6ea7956f631ac004b86bcfe2ac835

SHA256
6688d97731eb1761d3f3da06d4b44e2eca28a3188b61ac1cfa9bf4b32489591c

SHA512
fcbc0966c25f12b5ea6d2076c3463c3f5e93ccb3a5925351b402414f19993d270fc450b454d9b59f56019c81ebe00420cae0142c74f4cf14346f0bfc2aa8ce47

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
d174cdd88dfb535668771fc502c4b98e

SHA1
a4539e1761e03b089b697a25a22cd656c9a9ccd8

SHA256
8d77e2982f80bc7fd82baa2f3f39e5511ece02eca71e79cbebdd9537b59c8bd2

SHA512
610136138c72e87b206a009490ee15346d3533174f99798858e5b4be0ebdcddeb4bf0325bdf6534e434dfe087afe82f8a3c16a6ec42815fe1d12e284929e88b9

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
c526ac0d6344315b2f779ea800189e25

SHA1
26f24659a5929815e2edf9d76afd95ba45585293

SHA256
7d61c5ec1c0494cf1d242c819eee4f5662d362d03f8ed63516ab72b5b5423fcc

SHA512
43771b4ae6a362229c9e74cab923a090aacbaf3f1b824dcae6f6e36de6edc02e9e43a8f93731e0fadc0e7e1cb6bb0ac8d9206334fc66a8b34c0861b1a6cd0285

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
86e7a58e689d0a6ff03eb8860b16dfb2

SHA1
a8b0eab9ca76a87b58446893004c556ad3e556bc

SHA256
89f4df7e76dc70135aed93d38d4d818e5424f0c0b2f2053c52f8972ce52affac

SHA512
e2d4f02bdfadbdd7f636d77be8094ea841eac8c72f822728e8da2fb516973e2cbadac3b7374fc100be8f9d49fdc51bf0943259ef305e010113c110d7a3be560f

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation3211733195449001226tmp

Filesize
570B

MD5
f51e48de21955c28a19dcec18e8bc672

SHA1
7981286dbb32c00cbddb8773c44f223e1b907f09

SHA256
15a6e16cccbd0a5df52358fc0aec251ba04f2d762549799baaf2e587a763a5b0

SHA512
92d894fdb8254892234527feae4cd4a81fc62b9acf6babefe019c2c5933f06ed5d55e597fc6f89721574a4c1acd3f29645f4bff6c91edaeb6f4bbb6b7a826d64

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation7411331637929550467tmp

Filesize
90B

MD5
87589b47fff6db3d94e8f4e408c65e60

SHA1
bbf1f99109bc10b35a0287bb0d641481fb5242c8

SHA256
1856211ae24596617f626744bda5834c46dbc6cf13b3a3b3c7cae2dde0e4f1c3

SHA512
d6857d08f218f9bac351e02eca4a18ea3b5ca65d9033f40a69c4ee0e27ca04681b44bb1ab277b8674bceae887716c7c014b32de2e75d7e000f7736ef71f94798

Download Submit
/data/data/com.disprzs.hdfclife/files/profileInstalled

Filesize
24B

MD5
45daf2d79db1b297a892549bf48c7f14

SHA1
92bf16b270c6bd83201bfdb7879134286809c90d

SHA256
5dd4abcd27627d057b44e3c3448343a5af1a7fec3162e1e08f0861f351ad8d75

SHA512
b8588b74e6b58f1b7521360e4f7574a7f29f6bb8ecb625b6364a5ed596928fa4230cca4372c95b99293da9d8227db11d0ba0b43a3b54d05f8b8ef3dbfa24d780

Download Submit
/data/data/com.disprzs.hdfclife/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
8e47f065fc012c223d7913cec032024c

SHA1
316ef5bbcd5d45c69bedd99b433f6183105d6860

SHA256
dc0ae71d4c544384c3f02d4f01d9da25b1390dc882202d9979b62176f948c7f1

SHA512
1824e56290c5335acac13c94dd4aa88d5d9e97646d786223e1fd711a0baac2a5c16f04da25a1d8af0b51cc353fd5059f36996918ef65e51d202027f24217ae50

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
c1cad804a1f60be35f6eb5dbdcfc16ab

SHA1
36bc7436735ee04999cbaea2a2e87716a2e7f610

SHA256
129fe3c24fafe86573600d9ac235e32a9158e84d509f093d594364a87befc89d

SHA512
88812caec8f0d9980af20adb4eb82eec54395e423788ae2d69a3ccff6a66465d3dd956cd83852f523b73e3e4d436e513a292e3284bc0420480466a53c4ab254d

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
18d3ffc5715e7bef1adba5042a1fefaf

SHA1
353e3dffaf5a0312ac5e2c2d7c9a58327d63e1d3

SHA256
4a5e1c6bf35b88d48821be9c30a2bea0702ae0e2ee5c05a3676c5c391cf7e94c

SHA512
8b13ab5bc82818f813c3bdd42408dfb26274127802124d821d2e5a1c2eb59da20d58a9e4b6f744ceab9febc40f46ee9ee048a35ac73ea7cf2c691482d0b86266

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
a65d00748d19cf26ae02603658e0695f

SHA1
7abba4ff55a4454647f29236d0baa1b0266214f6

SHA256
3fdc8fa00751844a1f911d20285fce33272111e2e7fbff5714945adb4b539fa9

SHA512
c01709352385f520d8c486c09969d0caaafdb1cc2a6bab7d59f77ff85bd9e99bd661c0694f2446eb68dedbc8c6737e401b05dd0fa5cea3fa67afbfe57518d070

Download Submit
/data/misc/profiles/cur/0/com.disprzs.hdfclife/primary.prof

Filesize
2KB

MD5
25d28d40a79e59e9c62d34f20fe6846c

SHA1
a0cbf4dd440a0e0b43c70be3dbea02f38ee3bcaf

SHA256
d0d2f4966488f6452931e7c209eded824879e20e118450120ff3d66b28f33d19

SHA512
ab19c08213489e817fe3ed0dede8cc9436403a30a45381bcad0525018dfaef39cf96354bb0436f44d2e53eb0e4dbc2bac567562c099e751bf069c78ebba74299

Download Submit
/data/misc/profiles/cur/0/com.disprzs.hdfclife/primary.prof

Filesize
10KB

MD5
1f72e5077ad5290e66e125e247973db1

SHA1
8542d1a8ffbf60a1d734955c63780b099a084b40

SHA256
7138ad32635af79fb51db16b8005b46aa6d03337ac6b15ec8f97bfab9f8bae67

SHA512
63a7a6ab35cbd5b93b5602e817c05fe7cea17fc3dc232311728004e9dbcbf108871c2d85ea4147f74e7cc288d7e71f29a1cf6053d6dbf405e22ed2bb26999955

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads