afd3227c4fb790a2033f99857417061be8eb1c3c1db0cc2910f252ed0959a3cc

Analysis

max time kernel
150s
max time network
155s
platform
android-13_x64
resource
android-33-x64-arm64-20240910-en
resource tags

arch:arm64arch:x64arch:x86image:android-33-x64-arm64-20240910-enlocale:en-usos:android-13-x64system
submitted
22/02/2025, 05:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

origin.apk
Size

11.3MB
MD5

596d77b3f736d77e31b622180d4c701f
SHA1

4c61f2273734cb7a080fe4f089440068da49d080
SHA256

8ae7b0080fbdc2caf4bedabdc09579441ba25dd0b28750a31864581ca9c2a418
SHA512

35bf77693479a8c9e2a32af1282b8fa3d05d6843ec5032f9751396f5db6e25c54f68214dfa2f5fee29910f869a0c80a0e05016d49a5534abf69816a7149d2cbe
SSDEEP

196608:z0DintMBhkRaD35nD//fi9uLKpicmIOhgYWWmDzFk5kr+lMrLAY8zYccBoB1Vqmt:jtMBK8D35T/UppicaJiFgPMr0zP1V3t

Score

6^/10

defense_evasion persistence

Malware Config

Signatures

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

defense_evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.disprzs.hdfclife

Requests disabling of battery optimizations (often used to enable hiding in the background). 1 TTPs 1 IoCs

defense_evasion

User Evasion

T1628.002

description	ioc	Process
Intent action	android.settings.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS	com.disprzs.hdfclife

com.disprzs.hdfclife
1⤵
- Makes use of the framework's foreground persistence service
- Requests disabling of battery optimizations (often used to enable hiding in the background).
PID:4509

com.disprzs.hdfclife:my_process
1⤵
PID:4579

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Hide Artifacts

T1628

User Evasion

T1628.002

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
bfa4f5aeef0e9db2c74313005ccfd62a

SHA1
007183e262b8ebe4629b6af1eb8f4aa009f8668a

SHA256
7ad9dfa7280704fa5ee9ec9a6ecee5defe88d67bb752c6584613e3ce43f53e5c

SHA512
f6a722ba8314343dbb14390c308a724205456557d06aaaa8fc68779c247a4ef66d1bd48f2944cd35cc7066dd479b1d731968a9f9344014145fa7b6e874d36f50

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a0b564358be39175d719b52416d6eb53

SHA1
44ba1b6efbf089eb403381a3c403ed5fe7beafa6

SHA256
3915751e89da95b3d25d49d6e041ec14d6575da23ef5b5b0a2a72dec210b3dd6

SHA512
862f90f03d892bc8549e0d23ac0b0054cca3f2eca9a1e5d68331e7b549a7b987586c9b25c1cf1922323eaf88e0379ef18e33c7fb0935297b7a51c3e301297a87

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
bd06d550dc5c99e0dc4fe05001eba311

SHA1
b68309d85b9ea0eadf809805dae26500e75f05f1

SHA256
86573d38717083697ce76c83a459902544b03e06e3b4814a4f334b56e3caf085

SHA512
5daa481524d023bd04080fbd30317301fe60b0efa4926b5b9ace37462354c41bd929293eaccea9d4cfc17bad1af2a2ef1ff226e854f9de35c8d79fd656eed90d

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3865c145b88ea0c488dcf2ba955203a1

SHA1
fc57e3aabe20d36bb03a70bce5d59efdd1e712d0

SHA256
79677919ec7e8927c40256accf6a9c5e0f4573ac9c9c489a08c76da870d7d877

SHA512
171acb84c8091945c1393f6c1bbc8ae3cfe003c71393b639393d4df179e8c6e12a82e96d59370c8147618f9dc6694fc5bf6fb8e019e470e86404bf7598e5c58d

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
30d69b725234ccb7ade4214346687799

SHA1
602ce026b4d955951ec2674afbb0afeb463c90e7

SHA256
a9afd660030162e080aff81b57082b276a76316e7216ee522fc4948e0f9bc140

SHA512
ec60016046539d38c79e5bc97886696e32f1998d406d2c842a7144852a8d4388c8ac52b5a3fbd379a85a7f6859c1bcace2d0d02d799bf8585362893235b33c4c

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f9fa7b2098ead29014ff9eca734cb2da

SHA1
88859b60beaea0a9fdcfb85ba957cbecb7cffba4

SHA256
54e8e4e322e28f2dd4b426e30b82045f2a91fbec05002ff8d8e1dde9f67a8f87

SHA512
92e975c7ab1dbf3d196e05dde67d70185f8ad8fc2f60fa37c82ddbd3569c67f2ee14daafbee303e1a786d38f385a36daf0d461999894d6ba840d118658ac8da3

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
851581db5bc763ac82032c66577dc390

SHA1
4d60015c58f1908e89bd59030cf6ff57c580080e

SHA256
3fcacd3531a4c62754bc782ea618bc8417f4c7d7e786a545da4e759ac545e387

SHA512
0fd8947763a7ce68c6634c241db6b3e643bc725eeb46a03483544fd9673fdd187db252c492d8643a6711522f78eba80ffc602e4ac54ab064b5ca1e580a5e84dc

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0140a0fd48d78660301e1f94eb21bae6

SHA1
bf49798db03b5d2e4060eba292a40d8df150a4d2

SHA256
f9e4843f0c475e605d5b17b0f01e7f29dfe0496b84331b2f5dcfdc3ff733cfbb

SHA512
32dac77a5191b68579788a6eb2cc48fbfbcd3fbd87df7e5d81e5e6ff3842044b94f3206df3d561c80aee4447f196c2407aab4394794755e60a8de371605c673d

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e8c20440f4ff3e287de043a937fdddb2

SHA1
cbe25bd47071f54ca20d52fdce44e0c78c9f5ce9

SHA256
a9c4896c0580c3159d79932586b937577e9f9c00cca5e09b57f6c0073dfb5335

SHA512
c88fec1c70d870aba414aae67dd6335cd45c89056c2b0f094c49b05fe34cd31bcd125de26f5cf5e02a5bd7b2e74b9054dc666313ae0880c14353a83e1f115bee

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
a539fa7cedb23e518775f91978bdca8a

SHA1
bb31fb4a94ca427ae45d5f06213970bd1a11fc28

SHA256
a2b876d29109bf6b851eda45e8c26a194c5b4f7a8c9978a784b16f5f0941bb3f

SHA512
57bd006b7914550db98cf6943f795cca6a5735ab8aa5aba386e90646c4db0e315d69d937ba7f3c69dd6dac13c0f7516219efcd6512fa709c64e14670834303dc

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
a4a398f9ec053475b239a660dae905bb

SHA1
56137532278e8218ba82a66d9efcfd548436ed4b

SHA256
e8d7c4e54938fdc8d150e550927013e0d47d05252f7d38a60446527ee8b0a2ab

SHA512
2458a96e6e81a367cd695a1144c4523262752ce7f22590f5ae2ab361e7b2dc71b36c0394cc540928e0d3bdde68b8549d5aa342f439f71d5c24a399b597215c35

Download Submit
/data/data/com.disprzs.hdfclife/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
1b5bb8f251737c19b55cf19e9cae4a2c

SHA1
89ae475baaf78b016bc0fe8a98863810a6b8ec2f

SHA256
d6210bdc2ed61716ca34044ec899eb483183c18ccf537ed1181161a69360065f

SHA512
6ee248425e53471d9d0206156a712c87ddded6f76e9b832ec0048f5ce0dbc47136efadc54d89b78c9ef4b27c1d9315663bc754cbe374c2376af1e4b61d94ce37

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation2413659427793250466tmp

Filesize
566B

MD5
1ba3b4b6777fdf667555d3d444ae2e86

SHA1
53e89f7e439191a62d133088a79a1ca96d47bdb7

SHA256
dd18cda4d7e49b1a2e4951bdb2882b4f223081664ecb7ba823820648c58f5a5c

SHA512
acab3d1145cdec76c38c622e10caded18dba5742f30e159f6f2a776aad046aa9f9d0352c95bf3097ed4444f55f33bf0a6463022105b0ca777d54acf196bd821b

Download Submit
/data/data/com.disprzs.hdfclife/files/PersistedInstallation4452901161313868775tmp

Filesize
90B

MD5
fb2628e17209293469c0ee17841f454c

SHA1
6645d2bc1d4619dc79108d4bac85609f08f48d0f

SHA256
2c9560cfdc8b1be86c3b8dc9619d13d0465b4b8bd65916794a27fb2c3bc091f7

SHA512
b9d44a0c420054b0af11e87f519b134df4ea6ee44a72ee85c4384b904bdf07be5ee6be993c01d5e41c1a63ae4abd6f0e0e1ee2e2a785ff986ee1f1a7c7ede166

Download Submit
/data/data/com.disprzs.hdfclife/files/profileInstalled

Filesize
24B

MD5
e81691132fcd458a972edf83d9e86bad

SHA1
4d7f645c7ecd37ff805ea19828537101893aa390

SHA256
e2c2eb23948b163c6c530c6ed0b4e2e85756af4ebfcb1fb14c6d7a89dabc2c20

SHA512
289d8c9c8f87a405502479b92c5a242d3b3399d5f5c38f4af8fd3722ef827972d29f9272de5650ecb303569a3e636a08ea0d74714499119f66d0432065346aff

Download Submit
/data/data/com.disprzs.hdfclife/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
2903236aa0be7c72d4e14e088a972812

SHA1
3bd98e765c0db2ff65cf72b31a270c3fda7df4a3

SHA256
3f97c17d3e5ce8f406cc49eeb96b9b773aa8358dceabd64a088f40315c9ae884

SHA512
ce919422d0205308a91f222637852738a9fdc13e9602375323f824a3c696a3cbbefd705b3169ca3a4e60f6f597078dcb4b021e5248d4823ac1d362010c9885f5

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb

Filesize
4KB

MD5
0eb157e1a86d4d00aa601dd2f6ff3ee3

SHA1
fee434f784e73cc7916322e949f727caf8363102

SHA256
b9a8194b71a046e8c0eb30995827b582b4bea834f630a5df2483b778a7d7d8a4

SHA512
b9b79b8c3af8a3f140df230fd89e95206358ba50ff214e7323a2dbbe2937b795f970e588302ffd5d721318bd597ce0a27af26d6cdb07f45569c30209845082a8

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
554d4338764d9062e7f6aeb40fa4f115

SHA1
ae23308d0799718876ecc21f23b83ffe11aaeb31

SHA256
ef76c5fff7bf61c4429b3ff6bed77c20ca7f32385e5198bb97bc5527a86b4253

SHA512
c61a49daec52cd50ec2b4c62fbcce03f58d631a2524eea0e9ae5f36b37f546c8473cfd17e8c33fe8ed37bb521c473ee55f4bfe4868d6714e2d9498bb13bf2279

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
b6693a67c79a0275a8c7bca27cdedbd4

SHA1
b28d4e900d8e3aa1adbf90cf8d6e50cfeb0fd514

SHA256
4ebc10dd56c176bb34fa51ff82e68725d409dfaa2cb511272b360c9111ef6e98

SHA512
7d55605939f2e8028d604295d414d2bf7bc2c38b0665880d643a5dc42774680a0066db6bacc4c2fa1e97c070b07ab1da68f9361c1ab5dd4fb16693d3b24f53ec

Download Submit
/data/data/com.disprzs.hdfclife/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
c0e03687c6f09cc877c4f802b23e10fe

SHA1
06f682a07441a812318ce89553b55b69b34e31ba

SHA256
055dc04144d1dc859d6ef581f2dff375c09fdb1702c34b4a5b5b49609909b446

SHA512
b05ec1a0633e5815fa1e819b53a6c6efa07f8273e7193fb66fbb8b269e8666365fe138bb47d0854adf2292aef2d9f93989363665d4920094c53b7a56b323ab31

Download Submit
/data/misc/profiles/cur/0/com.disprzs.hdfclife/primary.prof

Filesize
2KB

MD5
ece06bd6e2c0545839a53ff322ca7391

SHA1
5bdd05677aef2b528b07af2e6bb160f933e57845

SHA256
48d0d71fffacba39c9039674d4c34103618b40c2e8dc3b3391cd67019f0583d2

SHA512
61169d69de1dbc7013843de803cfed5099e61ced49662549711113757ed33fca5826a2e5d1f37481b8935c4a74232b6abdd3d221b7e399c76e458e73342e4d02

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads