afd3227c4fb790a2033f99857417061be8eb1c3c1db0cc2910f252ed0959a3cc

Analysis

max time kernel
299s
max time network
311s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
21/02/2025, 06:45

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

origin.apk
Size

11.3MB
MD5

596d77b3f736d77e31b622180d4c701f
SHA1

4c61f2273734cb7a080fe4f089440068da49d080
SHA256

8ae7b0080fbdc2caf4bedabdc09579441ba25dd0b28750a31864581ca9c2a418
SHA512

35bf77693479a8c9e2a32af1282b8fa3d05d6843ec5032f9751396f5db6e25c54f68214dfa2f5fee29910f869a0c80a0e05016d49a5534abf69816a7149d2cbe
SSDEEP

196608:z0DintMBhkRaD35nD//fi9uLKpicmIOhgYWWmDzFk5kr+lMrLAY8zYccBoB1Vqmt:jtMBK8D35T/UppicaJiFgPMr0zP1V3t

Score

6^/10

defense_evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

defense_evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.disprzs.hdfclife

Requests disabling of battery optimizations (often used to enable hiding in the background). 1 TTPs 1 IoCs

defense_evasion

User Evasion

T1628.002

description	ioc	Process
Intent action	android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS	com.disprzs.hdfclife

com.disprzs.hdfclife
1⤵
- Makes use of the framework's foreground persistence service
- Requests disabling of battery optimizations (often used to enable hiding in the background).
PID:4755

com.disprzs.hdfclife:my_process
1⤵
PID:4878

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Hide Artifacts

T1628

User Evasion

T1628.002

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7a7c925097d05822d2786f6c7844bd0a

SHA1
57429d66d22b432768ace41fe278679122aa646e

SHA256
141fbfc7c5007faf1d2d34190c4d8e6dd39c4b09cac4ca7521d09d4175e64d7b

SHA512
76d875f5742a37052d7f7121e1ce68e4de3fa8bd8df3455caab5b368241f3540c6e38bdadd93c7774ca74f26fc78525eb9786f46a12abee3975f10ffac8181cc

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ad6036f421246dd8b6b3784e2620e90c

SHA1
94dafc3333a943234cd1128d6b70630131ad34b3

SHA256
a90ed1bed21496ed5a1945872a791990bde36c89fe488917b49e9439d5e33542

SHA512
6fdaffe3da175e5532a032a5a754804d9d4f3048995ee9c3c9926d48d07badb964f4e8d6554f9a17a4147bf0bbfd1f7d78ef6f2a92436cbc24252c66d4ab952c

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2c54cdbd0b64345d3e6e020a6e002a6c

SHA1
09895936efe101598df47e54bd79bce3b764f351

SHA256
f6c271927e56b3721796139537c4f02efe0ee583760dbc71910359742967575d

SHA512
59a629812f1db10bd2a028e1ff8f890bff2ca6e87f4ec6aeeaf5695e0dd45b6b076d65f6679eef5aa20e83a832addfe56064ff063df9bcf2aeb7381fe3b24946

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
df19d413baf8e9614d3b75dd00583196

SHA1
eca177e5e65a0a2297c29a9d0182f21f15414787

SHA256
3145d196acca4c41b375b73dba35ba3a737307b8c6a6577694da52d2e13b2ed1

SHA512
486e9915f031fab857003b11deeb3c7cc7fd03f5096b612147a62285ce8c60e56b4b2ffb5ed8701b95eb7daada4f6b31819feb3b37ab8fe76d4d15866913381f

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
69c941a47739350865e6e413019a953f

SHA1
993e27987031de9f50c2967516706a879825806f

SHA256
1990e82d4e9b9a8b843872e45c3e255520e0767c7918ae1501102e866221cfa3

SHA512
4ff0a7473c762f08dacdc829dfa76c97e6df6a3f5dc55069e9775c17162722bfa2aa36bc5678f29cc6d40a9928fc77dee5230e98e53d4bcd3832c471347656e8

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3d0226eaf96577d762dee9e40e4ab2d3

SHA1
06b619a7dd678368011bd27fe19398d54fce4afc

SHA256
a70100860bf68113a096ac0755b9e25c50a76b45459e7f7e3e25660a1e887cb5

SHA512
70093c59c757d4abc22621bb2bd00ca919dcbc4991add0e4b434a958d96d575bbf500eddacd3e2658839b0ccb11d8c2755782f46adf61c0742da574e497f8986

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
7b92d599cfead646d0317c65b59d198a

SHA1
ade1459861460aaac9c3a91474d1d89f04952357

SHA256
ec2dff3c27c731ca6641c9dfa422469937f33716969020dfce26dea998363eb5

SHA512
0ca9b787e41eceb1ba908d2578f4004a8c06eb9a78ec098a508d97c8807207ea4086b7231d4753e98bcf4d6906ed8392a6f334736cce6d4321d49633603c61ea

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
f211725d8401fcee733e18fe54b36323

SHA1
204a3fa1f5bbf1bbb4fa24cb92392312dbebbd1a

SHA256
ee1d906f178ed7e7a376756ae8bef1148cc3eab90b347bfc6e16154bf997af0d

SHA512
bcac7d5a018683d01b8629103bbe752ac89b8a848717736837bfad24008cceba0681406beec2f0f0520796c10417a1a19a9ee82bb43ae3f8c781330c491fc33a

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
c6aadd6a88095f0c5a60012ac69edd3d

SHA1
924d16dadb5a1cca8ea57e851a7a3d79a3a8ca2b

SHA256
9abce6fd3035027756d0270e8c93b2955f29cee64278b0d31827ba5b90e7316f

SHA512
911647fa77c7d50eec2d758550f45690338f3ac89f114a31da00b8f0e4e8a408338397699bede47d35c8458e2a9af6fe7995c4cc60b5fbff510122e18bf77ab7

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
c5eea34f71564171e39151d118912932

SHA1
e7e19e9e1fa3b1f4bb1fb0557537547f055cdea8

SHA256
4d4d516bf051f6f3f09fcdee6bee451c0e783f234642647854a070ffb54b613a

SHA512
8be29153661f26eb1a132efcee7734daf971d3e6676be50d5a69b24819d1e9191c727885b2c533929d2b16cb0ae32031185ec92bfaa8768f4b2dacc37e9ff589

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
d67e023625635891307f59c2b00f8a7b

SHA1
6c7b48f27526395d1b18e223a714336ff0685912

SHA256
f655b2962653c57ac46dff1f72d112901a2ecda98355e0f90371d8e9408169d6

SHA512
7824c5db2d25d15d0530087e523f3b53f10ffd84c9a12455ce2b77813665fcae3dc137e410ab97f880e7cc98d0f88c1e6246b46c33b00f38e44d4998de30962a

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
5c375b6add3edc95b37fc392e21e020b

SHA1
bcf92b2ff25a9645a4d23f7de09373de64af2d3e

SHA256
43cef320920b592e097a014ef320e7f6844636ef6de02232194f5bd0748573b0

SHA512
7824616e8fdeb429b6d56d9fb507ebf38e06bcff9dbc4d5a1180674e694c4075e9561b68a6f64c337f996ee8e4db31af0f5c90cac4e568d5da984b8587657d3c

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation2075787203787829511tmp

Filesize
567B

MD5
2ea902b69de979e957f81200f4a4cc19

SHA1
5a698813054ef636442df1bcd77eded457cf74c4

SHA256
bbd683dac0e10493c87941c9a7fec7f85e787caec1e90afb109b1eecf494d67e

SHA512
f22dbbd7a3d172480d639c0c65be40628f9ca1357e62ddff1167a197f4f6136cdf01fcba856fa49c5d76509ab076dd57d4316817d55c40e2c43130b2a15673fc

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation2981099752619498883tmp

Filesize
90B

MD5
95eac34b5039bf9b4edeadc2660d1055

SHA1
b45ae2a0c5e5ecdb8b562926e2e6fe06ba571ce3

SHA256
b6a3666f6c5d0e6fa5d65e3efd3aaeeb28486846d2cede6bd64a26cc90a26184

SHA512
e7e3255b18b6d78ee6d66bc6a1c182119219b9c0e2ebe311de3b3cccb7168e08332b637e6a81464e625a2a3cc2d44a99235b060b63ade54c9f95e5324ff8a8e7

Download Submit
/data/data/com.disprzs.hdfclife/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
e160a4b153e77d6ddeb7326eef8467c9

SHA1
f1d7aed114a7626b380b447043d335e8484aa273

SHA256
4275c7a247e18c090dd210f505fddde45877d1a43e13b62326ce4d8f876cb968

SHA512
1db26dcee7a2cbf38ec0707037d8166b3f6e16f196eba3c70e6da5a0eb2ee26cbfa038193da204948bc9dcd3b0975bd7906ab7b9998fa9648ea1f8de882269e6

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb

Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
ede36dcd0f7fceb8c7ba944bb6a6b087

SHA1
12809a6766aa60020f86ff1e4b876ab6eae1ed16

SHA256
1dbe0fad1b090d65f542a80edf0d52b8085c55bd49d220f3a26e8eb88864c7f5

SHA512
a670a2af2a322530cd4910a85c23e4a6f87b77200747af4fb1154d0d7e91a0af17db3e7e3ca45b044a7fd018943417e51e826185fe8ee6e3e5dc4ee102480776

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
5c1f9b80a0a01933243aad721dc1f904

SHA1
6c064c87dd03bd63646137e01a413968387ab10c

SHA256
90a864040c6430758c26693edd83ab5d9f82b9fc7999a98e2e8944b6fc75ffbb

SHA512
128127ff5bd415056c1e721f3fadec0f066eb53f435b4a1b28cf77d28ce48cdb3ce600f6aa23a0bc5442c64b6be30c0e4a12e55e39c9a5fd6324715064f27ac8

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
a8d2653bf50236e500a3370f8da84939

SHA1
4dd3b839549221941d9edf1f49cc11e153db9dd7

SHA256
9443d7d08431e55b2e2a11f025ea58dc64952d3ef707b767931439ec093aba5d

SHA512
aa1a0733d4aeb584f9067e7ee92ffaa48309a73a5698f81af23aae3f09751e6d56444fae9fa621a83f62d639b416db4f8b12fb7324331303304fd4d4371aa769

Download Submit
/data/misc/profiles/cur/0/com.disprzs.hdfclife/primary.prof

Filesize
2KB

MD5
25d28d40a79e59e9c62d34f20fe6846c

SHA1
a0cbf4dd440a0e0b43c70be3dbea02f38ee3bcaf

SHA256
d0d2f4966488f6452931e7c209eded824879e20e118450120ff3d66b28f33d19

SHA512
ab19c08213489e817fe3ed0dede8cc9436403a30a45381bcad0525018dfaef39cf96354bb0436f44d2e53eb0e4dbc2bac567562c099e751bf069c78ebba74299

Download Submit
/data/misc/profiles/cur/0/com.disprzs.hdfclife/primary.prof

Filesize
9KB

MD5
230cadf06b181147654e84f069532ffc

SHA1
9b403cb189e18ab5dcdd65a796fadddb1400c7fc

SHA256
8ff1d7e3a43a914611c8c10b71af2a01498bc9e1ea05a711bc078a59126e7f2c

SHA512
dfaa4ee86a02837c66ed10345c36465630ebd1c0ed69bdbd80d62b1cf159a313d6df2ae10f62b9be7b9707d2941c5062311321f5a3931bb86a759e270889fe07

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads