92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
16s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
23/02/2025, 02:26

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker collection credential_access discovery impact persistence

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.systemservice

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4264

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Clipboard Data

T1414

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
3e043a5c0b5456823fc4d1772c969031

SHA1
041bde21dba474234b3b25f82011bb21175318e2

SHA256
d7bca9cf0cb1053017ac2d239204970b0767e7e7b2c7934a1a38987cc870f086

SHA512
d51eb6c5dbab07d9e0d5ba7a584d90a0f300414a0120c8ca6aa5581fce28b4acde71b74bca969a49808fe24dc28f121f53221704ca81c8a41fbf57b4f5c2debe

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
29cbbe8172776b3d9dcbe0cca766ffde

SHA1
7aeae4bd66454cdc3c3defd0aa94bbcbf7eec0f0

SHA256
9fc0fe52470d295689c047407e377b621a6d14d0ec77c382307e200de1b479d7

SHA512
9531f65e632e6da483ca2fe3871cf80661917a832a0a05a075840038ebcd76ed251bac605c294c091ea6989d22627dfbb24167189bae9e521476da056ab2c59c

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
357a66270728487ea0d5d5dbecc409c8

SHA1
212e9982e3c6f6d1b50bdca0b5cf041cef32b91f

SHA256
3df9c320d1c340a12f59cad62e98486f0d3b7a5e41af652efb1f989ff1df3b38

SHA512
39585b48713d5857cf426db15a598ba61a5eaf7c1c94a2f8ffdc354662f2ac5f4667e92265719bbe0ab0941dd321dbffb002f413e7a0581a1e951129f4c6fa25

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
88990abb0f74665f599f4bd737395d8c

SHA1
b6490278c9add2739b5b3595862cdef9b16ecf87

SHA256
bf4a814d6da3197d5e2e07bcd605ef237615266ecb2f6fa6acdb58d9cba523ce

SHA512
54b5797db2e8973201f70280de0e1306ef84a23057979950c13bed9a278f208c6faf60e05b1184b4060a7d17b2db3c9af795b48084812c75d1a80a9235411e0e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
6fe079a0dbf36f3f4ab6310d5de07c3f

SHA1
b3bf22a4024c1808f1bc282f9c98007b613ee998

SHA256
0a67e626f70048a5ea1411649515e64f4f583345ba180aa9b7aa1501e29a2f93

SHA512
25d2ce808a02bc04e7f37cc5a3491692741cf9aeea8f14d0acb28158ce06f33717d62c9c49c60ed7dbec13f02e9bac76490d3f2a992e4006dc59bf076d9a69e2

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
08f180af90c35a258080e4b96d2b9ba8

SHA1
0dda9b5e21cfafc7b3174cfb48a4fe54e26936e4

SHA256
fc2ece1b0950f7b21c49c44b7eb06ad881fd5e8b59e11b1243dc0b9c321865f3

SHA512
6dc661522d1dcbadd7c5577eb778ebccd2ae57f91c1580945bf221895a67a723702f1751953396d3fe182fc2b0efbf916591360585c2f0f74aac1c76c0ae22f5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
835cfc7decf507cdc5e54f602e3f9699

SHA1
4a55d424cb32e766554672cb2d0b3804fc47552f

SHA256
29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

SHA512
2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
ec983f80275e60dada8a6099cc879d08

SHA1
27d66bb9ee9ad2c2356925310daeafb2f068c665

SHA256
b234d8e2a3e05e83846e3e8a449902d55fc6b2b4141ac6b411f78883e1ae5d94

SHA512
1eda13418f9c8da3a3ebabe58aa12737b406ee138612ce5e48ac882bf73fc42ed47d22482ed65811c793799c01d22ea0c1d016eb96749d3b5ebfe8d57e7f348c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
685fbddcb0ab7a66ce6ece16643b146d

SHA1
a3018a988007045fa291c8c83ee3c5fdc4d36482

SHA256
75f35ccd5cd0976e0717904226571c7fa8f2c4e939ecbebdf686528a388dcac5

SHA512
e8aab712a8b54998f3b2b25244aff3ae2d5a178cd5d1cb6ec53a4fbd17a68351259b67d23fea90ed7928ebcf6d0d5ff0741f22399c9944907d519d5e8b3e9d7b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
e97b908392853ccf4ddd458904d49b3b

SHA1
56623fa5e989002e0a9dde91500ec01f3b106b95

SHA256
61e226545344e7457797e6b95d76b886c406f322ded4a7aecfd207259ae77ddb

SHA512
b7a59d7fe6b06d4a52fb69bd0268844a53339046eedd3d92591486b9e28d716a3d4f532c1097aec313a7995a2240d24adce61002c10df9dea98cbddae44af339

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
23b97275f478e4d44b6c98067c06503e

SHA1
f0cc3a73d118dbb10cc43f7ea218835af19136fb

SHA256
adacddebd82bc4e9d5e65763fddab39b891680562717c55b6b9dc6f21d848218

SHA512
4524ba0b76436aeefbf9ec53fef53514effd3ae095401f13b56d3b9d6026bf926c239fac8bc95ae662c78262056cc48cb3ee87f22fc9c017ee5844b74f0f393d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
5a4142c009c3b54406aa8a5fb466cf2a

SHA1
bbaefac7adfa8176a2abacbdb3415780cb8d18d5

SHA256
b002e003be98fd7e79311427a07f1642b2b0ac989719e551d5bd556ba851f11b

SHA512
1b69596f4c75078483da03f0487cd9e3a3eba22af693cb464aa29b0def490c034dafe155a90f482f8d7fed9594cc380024cc8e389141ab4f993ced5aa6aa3f76

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
c9b1db4a17de6dbea6e404dc5ca9c337

SHA1
9497dcf3fb0662826df685d89f235fac63d67888

SHA256
2576f2de2f53e1ae0cdab3a36810726df1a5f4e54bf0fff15f52aa23589208e9

SHA512
07952c08077a7fa911ea4bfe2245e9dccf9b3f3da3e0ef6d12b5d1421cde5faa4cfbf4b95056f4033a0f3ad1487e98532881516ecaad1a6d06da2423ff0d0012

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
113c33a683954186169cc953abcf1587

SHA1
aa591858c0c1889f3862b8b12d9edcbea86abef4

SHA256
61dea6f81c148d8fe7b2dc539abea5b31fabfc3e7a327b61ea0defad3e2e2cff

SHA512
f285a1c8bb85fda54e22796a94fe1f633ca0104b54e68786258ce7a6106f31083c302430bfa96f91acb8214b645780123085fd83878419a5a01ff28321418ffc

Download Submit
/data/data/com.systemservice/files/PersistedInstallation5935023795522560605tmp

Filesize
554B

MD5
da75d41654afea6ee306c7526ac0e95c

SHA1
f1afa654c8bb7fe0fefe1f2cbc9fa4815745b646

SHA256
8f05d5ea81d09a69fadef2ff757b207f88c70001f89b32532693ea22f783fae4

SHA512
d0f4a8a04158c5720b8c8d7c76d39aee2b2ac75fc1c2e954e9c5762b09c27cc06edd3cd8fd783198ba689c6aea34b34e532b92bd766156a9b35ebeeafb7e7e3d

Download Submit
/data/data/com.systemservice/files/PersistedInstallation645865764764740093tmp

Filesize
90B

MD5
db6f994ac9c031f6e553a37f709adebe

SHA1
a249946761f3d6ae0a648d11cf0f0e8882cad81b

SHA256
2329c63bb9083e18c70548c2d293e7692308039d535635c30be6f3b6ff60d14b

SHA512
ed8bfadf6a76bdc482b9931937bb06a6e55af692d434dc90afc4cdb189b62b6f3bfb37932a9e046b89aaeb9af5f13e9d76199d76c13bad683500fc627aab2243

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
91f0525ab7c4cc010b2fefac819ee756

SHA1
9ab79a25e6c6b77531f76b164638bf9b54196075

SHA256
b1254404981a074a22a6f3096541eb1c4b3e8e68af4d5e09fb852bcf9ecebf3e

SHA512
930b2a91dd645419060beadf77a796aba8239d942a2ed1f3c9b36d98c4693fbf65476581938aaa7575222309b5035fce09c791059969568842faa879e87870eb

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads