92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
24/02/2025, 02:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker collection credential_access discovery impact persistence

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.systemservice

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4253

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Clipboard Data

T1414

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
6feef572c11042328f2ea7a5c9067f08

SHA1
a2454120a4c05e03243bba2f3e74c7002d8f7bd1

SHA256
6d2ad953114b1d5e3f4d853ae12af9e42981fa759e7db33d95b66d598481e0b2

SHA512
f07e44afcf3c8a783ed95e916308e90ff45303d31bd185fc31e14fce2197db790269429449f811d191e0ebd905ee47a7ab0d292ae98be5695cf10bd673c264d4

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
a7bcdc359c3485f0f4133f5d5763d7c3

SHA1
45e9883be7cbfaf31d71bded00c4e47552060b2b

SHA256
b6e99dbd748c405574327c86cbb4f5272d048d31024090c1575c4d0c503b13f2

SHA512
b5f5a45d87da01e0990085e3de2df6ec4d227457e5a70b770723344bd5a564db06389e38579a3d0e2c7c52203c3dfcbd43ac7b74698fd7f328fd99c08a739a6f

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
caa6a48ccba6cdcdf338e4da32963001

SHA1
deb27574c4c762a366ccf0686f8a0f3fda277792

SHA256
befce48dd7cb7c8499926d39c7af270f2e233eb60d56eb101ea3703bf5ba56d3

SHA512
4074a6851d1da9e15c255ae4c83d71cfd16a7ca87d3a54382348cf3808677ad638f137e5d42a624326d074e5a0cf46eeb85d43e6afec37e3c739d57927fa229c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
fa584421d436067fa519b3fe45432fd7

SHA1
2fcfe9c325f636be1c1269f7e06e6dc5cbeccb21

SHA256
796a6a47a79082f7c00b0db0ef90cbc245dbe73b6a0f5d291c06aff5651d7a31

SHA512
af0379507d4b3ba71efa03a29122dfbd8c96542cc1b82afbfd784a215d71c7a502d0d47b9715f68236a60c0d8d4a97bf3147fc863e029e4355b53e9071a0680f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
632501b9459c752d03967fa98028e5ef

SHA1
a510a8fce315799e574bd10fd74e0f4f02bcabec

SHA256
9df536f9d647228a15e400de3c1c0da565d53cd416a087ce6745ea24c7efdc06

SHA512
379e81266be971684d4beea8a463f30c13bea9afd0d4907b0664944f3f9132212e81c7ea8b1e5c9762ce3a7e2687bb4200f46b420ddea847802fdf416bd304ab

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c76a25c38733b24624c17f22ea5f4dc3

SHA1
1255c35ae29d7bfa0fcc4c5cd2bb1d2c7027d959

SHA256
d1d1fc4f9de2fda5cfd52244db728f57f4282cc817e0dfaae2ffc2c81b99087a

SHA512
bd146a73791f5d36f607a55c86c698aed36997790563f2136061bb76846a0b0d43082db9b7b845127da6a23a53fd1e8a69cee939b0009a6f5c2f5f7cda308987

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
835cfc7decf507cdc5e54f602e3f9699

SHA1
4a55d424cb32e766554672cb2d0b3804fc47552f

SHA256
29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

SHA512
2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
d23e951e14e1c08961a765c30dba2716

SHA1
122eb5c4e3c860aea3cc4c3a9b45b936e58c1f0c

SHA256
9dc394b1b9c13affa4bcdbc247cb2115feab0c611d87f985f9e7e99cacddb810

SHA512
4585fd2609d1bd922aa776e9f5592875c72b0a71f0cea337c933b649b2c4f2bfe9ae3cfe6dcfdd8d57d5bda6a7811ef674c1fcc782a4871774de20b80ef2fb5a

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
fc7a301dad97d90edf364652e2763817

SHA1
996df116c43f42905a3d9ad96a623ae9cfd4a758

SHA256
f108e7987bddf571c76cb8bbb660d603d29ae5a1cde1c38b867440c4e9c507f9

SHA512
7c88e059de2989f84be05bc63c9ee1f33e060114a83d6e4ecbd33d71aa033a303e796c793188df92a8fcc4c520cbe12c38d21fec2003f41c0fbf3d55a25faa38

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
3cf1dfa470cd591b509e91d151fd2a4a

SHA1
c9cfa642a417b8ee30b0cedb18f4a8d429f66733

SHA256
7177f1dde19792e4d089039a222adf16cf4cae7924a2c9c38d01a83290bcb3e8

SHA512
28c8f7635f7676c2886d55d7f918742fea0c9a7fc9c021bd87691f222209525909116e84bc2074738bcd632526d8c1eada25b88364875bd84d1ddfa0096ede00

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
91575e4f00733219e6e6bbb828635e34

SHA1
60c63666a755b2de33b40eed1a42f6194a05ad92

SHA256
9c1f428017b63622bc1b4d032c793a12dd897312e15144449dbd7d25671d2be4

SHA512
62b493a00047faf158cfe26225c2d8a237d19f08a279b627ccb2232c8dd389c886a3d4d0d296a3fa9dd6db8500baae38319ed544c3698543ce4f3710f824f965

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
5ebbf7ded283eb94e9fee8d9b2224f2c

SHA1
ce185e6dcd1de141e03be66dec1fc9668e103a0e

SHA256
396d93a26ad430c9d65e805a9022181d4390c7f4d120b909ee58d0dd489de748

SHA512
4062397e78d6e7fb4a58b366946dcd4edd11ff91c4b832e8b939d4f66ed5fb5b03e8bc1c171f9b575f1b43dfc6f487bd963ba2876851ca63c2facf2c53a9d7ed

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
a7ba40747b0f251847d06cc2f4715af7

SHA1
cd4950120d122887aa4bc32bf5d752c31958d49a

SHA256
2a7b26d079d135df93a4456eaa420846a6aaa994cff7734b33ca51b0a5d1058c

SHA512
0135054b40c3e068dad15748658e04e21dffc711ced67798b695ea3366f0be48dfba9ddbc942e782f2b7a4b9a08f402156814416c54a7360fdcd665917975429

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
73c349d6f2bd147826134ca1c57a57a9

SHA1
56d5fa1d5e5c7364e7e77041778030a2f8615e77

SHA256
27651c9feb1db80663be58acfda3429cc5f99a0e4aa9fc389685b844bb502918

SHA512
45ccd2aac312e0013e81a2b0bae4a20cb82f6f74155b1ddadaacb761c4c8a6420659b943775cf58a454cbf64bcccb9c4413938d2360523090ed3a1c4f627b685

Download Submit
/data/data/com.systemservice/files/PersistedInstallation2433864914849684981tmp

Filesize
90B

MD5
cedeedfaccb6b1a9c92ba8cac9e6542e

SHA1
eabb1bc0c717275dc1e7e7e93a335e3b6b1a60fe

SHA256
b18a6ffc275f7859d0689e2f700cf84e357b5e65cc7d3be98e3f7dd61c0efd6e

SHA512
610efde120574c036b6548ab035c7bc639ab978c66497a46e035293908eb408b9c678ad2a44543835aef8fda167ae7e9f8af401ad00cca1aaa7f322639b59b0d

Download Submit
/data/data/com.systemservice/files/PersistedInstallation6909515179547065702tmp

Filesize
556B

MD5
4e53d55682b874f6cf1fbe3bfcbfb69a

SHA1
b362590c58e42f7d84119ad15742fdb3f75be6fc

SHA256
fa4128032c00d3a0841ec25794aa7c983f65e18772044106db76753878063572

SHA512
26945e23827b2e54663f923c7f9f58dd6b6e185c078488781bdb9bb621352de192db7db515dca156617e96bbd6444753c3f6001ccb658a79bef6bc83f3b0891b

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
3KB

MD5
f3b42a92d12d92298101caaf12c1b0e8

SHA1
cb690f1193176e3d484c101b22ee210f77c39e2d

SHA256
599e4d10d658f236f411f5cb5333b2a001ef97c2483e2994cad829b8937f0c9b

SHA512
2aaf2f7be38a4bfc3856e706ee4e7901351b19efb42675e06933427cd54cff000e2aa916de9cf4c979aacb3ce1bb65f026773e6610805072a7a774ccef236ef3

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads