afd3227c4fb790a2033f99857417061be8eb1c3c1db0cc2910f252ed0959a3cc

Analysis

max time kernel
149s
max time network
154s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
22/02/2025, 05:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

origin.apk
Size

11.3MB
MD5

596d77b3f736d77e31b622180d4c701f
SHA1

4c61f2273734cb7a080fe4f089440068da49d080
SHA256

8ae7b0080fbdc2caf4bedabdc09579441ba25dd0b28750a31864581ca9c2a418
SHA512

35bf77693479a8c9e2a32af1282b8fa3d05d6843ec5032f9751396f5db6e25c54f68214dfa2f5fee29910f869a0c80a0e05016d49a5534abf69816a7149d2cbe
SSDEEP

196608:z0DintMBhkRaD35nD//fi9uLKpicmIOhgYWWmDzFk5kr+lMrLAY8zYccBoB1Vqmt:jtMBK8D35T/UppicaJiFgPMr0zP1V3t

Score

6^/10

defense_evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

defense_evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.disprzs.hdfclife

Requests disabling of battery optimizations (often used to enable hiding in the background). 1 TTPs 1 IoCs

defense_evasion

User Evasion

T1628.002

description	ioc	Process
Intent action	android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS	com.disprzs.hdfclife

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.disprzs.hdfclife

com.disprzs.hdfclife
1⤵
- Makes use of the framework's foreground persistence service
- Requests disabling of battery optimizations (often used to enable hiding in the background).
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4220

com.disprzs.hdfclife:my_process
1⤵
PID:4294

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Hide Artifacts

T1628

User Evasion

T1628.002

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
e34b7d7209e00b4b703d93547df397ed

SHA1
4cb913e38b71b45039fb22458395ba92d3dbcbc2

SHA256
66ba1da237b436d1e47f975a5d279202696f8385531611477a388634df17f2b4

SHA512
e18f3f6c5ae4530fa725716921a53535fd6593360c4c007351fcf643fdc0bcf63a3828f8f6f3a872f6ca9f804a2d556bd6fd092e056fea13db04227e93d19a4e

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2e4d820f9ddeb6ef104aa56d537488b1

SHA1
82ceddeff97e4bb6b08613c236a65af0033f05a1

SHA256
f8c0366fe96c9c3e81a3d96a4e52274e996e35f49c901f7afe8c9311562addb5

SHA512
c34f006769884aadfde63e91c7fe40af62ae761da0ea1e8802d62eb7f34503203eb2b05d086b386a56faf3527df019ccfa3d3242aa270d4db0ee6b304f092190

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
ce99fc30d5aefe48f442e08706b85e51

SHA1
77b72fcbd41f39f07d581f7b7ae71b52aa40ec9b

SHA256
bafb78bb9c12256f83d53f403f244b18bd9ba129ed0758df66d4effcb3049bd6

SHA512
586290282cdc3dc5a42f64be7b80afd40bb11aec07555c254f8fa4927883006be0ee8a9aa4959d89e93e4d9f8da934b503eb9bfd9eadec07724826995b7e4510

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
1de2ea0278a974ca254d0bcdd57e1dd0

SHA1
433ac9974631183ee57dac093bb8af1cd0044352

SHA256
52041519e0f538ad79ba4536d42c3d8f2e549551f24f9a2efe3d1a979dcd4589

SHA512
b52c019af81ae3fc25fae2f47e7bbb95ebe5c6b9f0e7fd8501c90419f427f8604591d8fb19eb6f9af9aeef6111b18f408f62e9ec2a639e063d708f758160ec57

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2e77dcd05acdceec366d93275dad30c0

SHA1
fd29150b74de0601589856de9ee17308efcccf98

SHA256
953910f1400f96563ca455fb89060ece3f0d4423ed3d1c2b2960463df3b5566c

SHA512
da742e8589de919ef58ff99ad179fa79a00c1e922fb46382cf3989f14741df0f28969c72c81964cf22f915033ba468ffdf5dc3ac678215a8785433241dbb6436

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
00334691fb5c51a7320d69fdbef13dff

SHA1
b905df0587b5d3ef10874c434909336a8a01883f

SHA256
f7abe9445ab0302a28b8d4599a66955be582ec19ada3edaa70c161842dd34acc

SHA512
d0d16a1af24cdf5128f4f53d1b046168b93c0b8d0bb16c90eb219231b9537ce866ac2f9a6ea24ce73a90e4c50ebea84850bac5c2d53a008125bcb0276f967f29

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
c15db5a7033ef3ba98b985cd927a7ac6

SHA1
6ddfc922463123e11c6ef2c98963facefa6f5415

SHA256
98a9fc090d024c343afe2ddbcca9a774a96f4e51fd6a851437f3eb26a30c5336

SHA512
107ef2f35e0f7347ff386df90272352b32ba064675bc58cbc53fde05dd68e15eb94c3c957a13fc13a6b8aaccb54a9b7a0a4da762ae7d744312c0165a201fabbe

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
d5957d8849eca4b5fe52169f8b85e572

SHA1
a784d86bd3751418b4ff7133a491b7eb7dc182e0

SHA256
02a32893c406cc9de34ca445b9fc940d0a9e90f304c1baa29100d9f3d50af21d

SHA512
cf1d16459892ddc561413ac5b04c7026f7de27576a0416bf41995de4e10569c973df4c68545fc8d3eb412e85d134a61272918db7f1a94e846376c0b95e43590a

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
fdc499550a0779fe341a31bcf7822761

SHA1
71905db46873c16a607350817d63946db2c4d36f

SHA256
14f5491504486dc770b53e9e6ff9e0f201c35f2c6f994af553b5c06d4c33793e

SHA512
5aa8ce74487c6044801b534ea3c280219baace6294e7516843aec05a6daedde714478268ba77db4756839db8f4ac4f481318f10c69d5e8b3a116825ad39f20bb

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
14593281d845b2a6b4c66f2bfc39a66f

SHA1
089b2907ea54983822e22d3f3d9e8f1603fa8052

SHA256
3f260e5c8713eccff49033ef468b9aea90ed5983607e515cc27f9d932d4124d1

SHA512
aebe2279309fb461b0a362093fa0ca662eb9afc67556abcb48cf36f9b42c488094472a8c1d6418c782b3ab9cefe10ba8309448ac466e6ea139a15464a91dd2af

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
667de0a9f39d580a8e46d1ad2825cda8

SHA1
e916001f17f419f912b1e0436ae448c2323dd939

SHA256
21cf365a20dea2332eafc2cd650be326a5e7b67f2c959fbde7758d5f920ede2e

SHA512
7b4567fcb718ad15cefb5eec17d9ea246f70bd4cbbb7e42a9e5bbad13eca8f046433b2f0f3606aacfa82d092db8b21ba4050c8ec6ac6ebfb4b72c2fd5cd4b75e

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
b48375179464349366b83eaead96db1f

SHA1
51a2fcb1844d4293fc01d794fc6823dc3f77822d

SHA256
45bc442a871abd8ab83e0ccea635058bcde1cecf2bc35f0dc04b877f1d3fd201

SHA512
4ff65e6228695979b378db036d749d2c0726ea2a9bafc965bd8170db1bd757ff8f82928e8bc0e39a40bc664c7dc99bc56596858db3adf09f396cc42bfff40fe8

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
357886a15ddac8d58a549900b939578e

SHA1
949fd5366252aa91c753ce14d25a11a0e5752acd

SHA256
caa93f482a055567c8ebe7473b189ed545fc181acd10d7987c85b9f2445be0ac

SHA512
0aa07b8efe7587dd9e51d6d36179b209b6d80f92a7c2d74e65dde148a87332f741f9b281069cdafc66c5b43f587876caa5d0c690486481fd0686c618868b46c4

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation3726339928126019449tmp

Filesize
566B

MD5
16bdabbc9f6b2be4ff9266219f165ee0

SHA1
64a14b27e0b2a753befe68aa6926394eaf38619f

SHA256
c8e0bba39b6a7a4e54e59771c8069419fead1bb1ebd181ff737e93d68dd70624

SHA512
d36693baeb888d5b1748fb849e38f8d70410a8a923fc89485fcadae7b83d0f83bbbeaf846cc2d54f2f4584067a150689eb6eca2f3aafd81b9d7a3bc91b7a8e6e

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation4644589304643540844tmp

Filesize
90B

MD5
3bfa49ef832865362ed73f903586520c

SHA1
90b4563e8b972efa5c8a95648a3107fa4fc3bc2b

SHA256
731de4693abcd2b88f4bb2be33ff67299e46a68ba1e239d0a393c2d8a2cc3aab

SHA512
0afafc3dea2c878dc79b4a10fca37c056478286694f69d1cc43be57421d6dd618a1f9595bd6d01176e261004a7b7902a10b7063f0a5c5c5cc4109cb028ed2e4f

Download Submit
/data/data/com.disprzs.hdfclife/files/profileInstalled

Filesize
24B

MD5
1bf6792d045434332b80093edfad978e

SHA1
27daaa9e012d8827a84266cb61e36c3cc7aa68a1

SHA256
6968381dc55d39a0f7a3e0fd3a9974d33a58ceab5084dbbd076b0c49ca254e48

SHA512
02a8527e20cbb8e66beb357dc41684a714163bc8e3bed907bee055a150d5a6c213f80c1f369fb518ce43be1e318711b48fb6a806b8505620140fe9f0e2e0dff3

Download Submit
/data/data/com.disprzs.hdfclife/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
84fe3b44753b0548dab2a4d0cbcf62b2

SHA1
cadd14818083b56e85650f91a2970404b66c9a87

SHA256
1d53e79f413ac0c8112c2d10b09b1c5c1e0a08d42bd22dcbbf09bfba3989d59a

SHA512
61054c2693a9faef4f8959c018991a32f5b9c963821a78f7595126ddd566b9aae8734e80ffdac7196675ad7c2ff6e6661f84390010eb7b1da9a88385991e3568

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
37152e172109dfadcd8cf427c20df4e8

SHA1
49996f04762d6ad0bec2a86bab524311000df3a4

SHA256
3189ca5c0ab992a683c9ee5df4251234a210cb310897d0bab0be79c18f6851c4

SHA512
38a13622f33a421a4e77b8413db6a89272a5bcc8e3df206cae188a4a1ee2f737a9060404ee865ad25174c1284066bcb38a494ed3aa2b5c20ea4bf20e8f4d9d6e

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
8f348350f771c54264171db0c5f52786

SHA1
70942bf0181dfd8d8cd51a01c0020ba342034341

SHA256
2e7b52dc59acd03ce6d8dae4fd0e6cda16e257ea2a5a48c5adc9b73db1ed758a

SHA512
8c46dbc2b62fdf6bba6dae2c8091ee791785da6ea86a42d94b3cd8afe786b814016caae5127121a6a719cf8d42e93b1b23a698b1e2fcd8521b1980b4e159465c

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
69009745e4a13eff4b664fe1faa378a8

SHA1
a4d5286c37193bbec15245f6cc95ece2efe7993a

SHA256
8f17b23d5d63339b16e6793fed18cdc229ac337acd2671650bc9de98e4162b8e

SHA512
f09f6c522470f14db75df9e6c22bd42a7449bd5636639e011e2cb3acca1bb888c5c3227e2e9ab5f7c93805fc945276c032f235fd480ab834045a087b3c1ad000

Download Submit
/data/misc/profiles/cur/0/com.disprzs.hdfclife/primary.prof

Filesize
2KB

MD5
25d28d40a79e59e9c62d34f20fe6846c

SHA1
a0cbf4dd440a0e0b43c70be3dbea02f38ee3bcaf

SHA256
d0d2f4966488f6452931e7c209eded824879e20e118450120ff3d66b28f33d19

SHA512
ab19c08213489e817fe3ed0dede8cc9436403a30a45381bcad0525018dfaef39cf96354bb0436f44d2e53eb0e4dbc2bac567562c099e751bf069c78ebba74299

Download Submit
/data/misc/profiles/cur/0/com.disprzs.hdfclife/primary.prof

Filesize
9KB

MD5
c11e62f674d2f8c0a209c6616e143b73

SHA1
24a8db6c3ac776b95ff9b7641ed57f9d80c94f18

SHA256
64db0d617fe6313a2b6fd8f28aa1565eaaf9138401949053d82e5b884682e900

SHA512
592290fae717c58507ce8ebab45482804f2a14681ce45886f289f82eb58fb04a23d4ac7345ea67feaef25e58eca121b9a24b1710cfbe974d8679ef7fcbb8b732

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads