9dd601fca2436a82a61453216060c0e0b0e4e8fd6c134ddc5d70db70c214f254

Analysis

max time kernel
149s
max time network
155s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
21/02/2025, 07:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

485fab3ac27b6fd3ca570c7732bf31f1.apk
Size

7.0MB
MD5

485fab3ac27b6fd3ca570c7732bf31f1
SHA1

22d587aa9ddb607d7491af1caaaa52788e53b455
SHA256

9dd601fca2436a82a61453216060c0e0b0e4e8fd6c134ddc5d70db70c214f254
SHA512

3aa4bcff7cb046b36faae0eb26d9e6f5660dc42557f6b62ee1c89cdbc577bc18baeb6ba0551a8f810253b5943b7eecf7251d5b217061bbf54267f4339f8ea936
SSDEEP

196608:sB72QXdCqiiHp8pxGqvTyAGIieF6RoE4LLolMqq:U7xdCqhHp3qvTyOieF6K1L0Mn

Score

4^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.nekki.vector

com.nekki.vector
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4962

com.nekki.vector:my_process
1⤵
PID:5046

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.nekki.vector/files/profileInstalled

Filesize
24B

MD5
98e8973e548c9103e32085c7d019fedc

SHA1
365fe107544a4bcf2555a3c271e3734755fded2b

SHA256
438b545f8331bd97910b15a57db98f43ea6bf942a41d70951772e8add08d4a62

SHA512
94afa8b67aa589f542eb9611fb47fed6456c4744020e3ff066ac32cf18128a7a52ed0c8e4b5d5dcbda33e30ae27d82ea0eecbf12bb50cefef9f116fe1b08cea7

Download Submit
/data/data/com.nekki.vector/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
99736533085f47cc7e67e926e2504172

SHA1
d05bdf23f897e22412d607170b711badac5ad27d

SHA256
bb2544ef6cbe652a33b6fc327d1134be823b76b19048de4a629690a9c6adf4ef

SHA512
3675da9923d74e83a0bce1b4558f3909e89bce1c89d2ee16f039ba9e3cd118f8c5e92fbf044c36b38327b0191c8a67b56c1e0d104694289e78859a5382a93721

Download Submit
/data/data/com.nekki.vector/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.nekki.vector/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
71c973255823b2978864b2735a2a314f

SHA1
dd4a2ec832b284a2da1dc1de28d0e450d28712a2

SHA256
52872dbe5bed204d368aabdd62d2be6eed7aecf3d3ca624f4758e8eb20dd5f75

SHA512
cf14a7a0c029b690420ac6e621fd2874e4eb99e11a3c678f25393cb5c7749f99ac992a169e396e7aab8aeb2f3d143b82e42c96f8d3fa3c3a9b7189ac3a469aec

Download Submit
/data/data/com.nekki.vector/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.nekki.vector/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
924b823680c1b7296782f45d0b0a9a8d

SHA1
92876a327c50289ea6f9fa1ff36187ee0ec44b97

SHA256
685d5d489c697042d3066e91105df21eb4975cdd144d98bddca93b07a8cfa796

SHA512
7b22eaa6ffa3292fb9d50462a618201742ca7e94e23bf7a468486d9562c047d21cbcde18cef04cd4c07f938a68ad47e45907dc3a1ffbf445f17b6a8e613f8717

Download Submit
/data/data/com.nekki.vector/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
5272ae79570e99d62b947520794d6a5c

SHA1
244728484f5e1471c5d1ead3ccbd35df7faeb592

SHA256
1d8f527ff4d57ed28482d618838cfaf001c8a9b9d4dc856dd66c3af754d9c9bd

SHA512
2409f95b7817ef5b31c7aa2ac3b2b8d6116bf81b58842003522f773055c977781270cfb6b89c322df7c31562c65f7a21102e2fe8c0d4e00220e3f28e43a6422d

Download Submit
/data/misc/profiles/cur/0/com.nekki.vector/primary.prof

Filesize
2KB

MD5
d14d3739c3da97a35ba6cad06e738b6f

SHA1
f6cad3d865a7cd304258696208e9b7f7f433884b

SHA256
48f45a96b587bf5dfd6033832a1c3d601988027a1a9373ed70479babe8b223e6

SHA512
20ac6960896b1936cda459059e00966af0342cbaaf03eb353fef9f5e6de7d93ac92dd0f7bab61431f9eec1fd475fd5bd173e7b7174b8c18a65f04ee2d01af79b

Download Submit
/data/misc/profiles/cur/0/com.nekki.vector/primary.prof

Filesize
6KB

MD5
9989f4c605bb1dc3a18653ebd28c3f3a

SHA1
d5ff3ab8a710ad1a8238513d00b482e9d7993743

SHA256
391df6706ea0e748dec1bceed43c624fbf1cd079ecb2b0dd7182a321f157746d

SHA512
294a26bbf5a40bbae7125357fb48d241b5b7a70461e37a2bdd5d081c26c95a0ce3370e2c44871cf9f44913f581eea34a73af3fc4a37460451e10ba7e37dab303

Download Submit