92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
17s
max time network
156s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
28/02/2025, 02:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker discovery persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5066

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
631190738e594c9b072e788b0582fbb5

SHA1
50028111c2edc74e7db6e3721a6faf5995305ab7

SHA256
6a8ff9ab81c0da70b5c820170d9ebbdf2b7b856615a800baebdf2c58a2fb701f

SHA512
7c5d935cc20ab2b14071b7e435da896ef1af45fb92bb0ae29caa7433542c83012016dc1a936065e2e48f906d785727e3da5b1d5cd8559c794e58d324de0b44da

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
a245678a1c2876d2f0757e2eac1300ab

SHA1
250e5cdbe9f24505678f0fc1a47f1a4a5b6b9291

SHA256
30160446abed6174b234c3d88694839d89dc132ab12cad85a6498b9fae151f6a

SHA512
3b18ff85415f4a1d01a1554d2c9ef3abd557075a0c00ea73b0a23ff67f899e4194851bb5e5a5b9dc25673198e3baffaa5becec10a1ef8263ee7a2487a01c91c3

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
794638d1d78d39f93870a2977f056cbc

SHA1
717418abade15741dfeaa3dc2a64fc149dbda439

SHA256
91d784d714dc94c3b6a8504f2119a0415ba4ddafc25bb71ab66029dcf469193e

SHA512
95b27f781960ad8da42a2c6f04151fbd0ac9c435918e358ff39472d728d2519abb126662d5baee49b85d7accfe11cf68a196b2188d15e8926f2ff79491022e31

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
4b6d3683efa096a3f87f8da468f0fe76

SHA1
2bfaebf5aced370e58bd504b2dc4213df5fc024d

SHA256
0930db5c785825edc58b98e0d841661f11c8733abf0b5a6347a9f2c19cd01e6a

SHA512
73feff80328c986374c1b1b053e1fd8ab7e8290a00b2e57ee3c77e97786818dac5a8e5682d6df9c8576c09b79d56f5929ba7c7153a47a4979e66bde924f17f47

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7373ec700d371692ec1ef8e39ef5cd5f

SHA1
95d32b771acba48db5030c2787588850a98cf618

SHA256
ade6b6dd3870371d362f4b033b82c6fd0c6c1d57495785fdc90e74fce21ca6ca

SHA512
8a2443e714643fe53a6818a803487fded91907f77c348860cd912981ba466f8b393c9df58b90d502f18679bcf47c182026ea1930b0f319ac699c65535bfb2661

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
9ebe0e39ee5d53e23946cd5340cab66f

SHA1
20bb63e0c824c281d36924a1fbaa3b42751b8544

SHA256
ab3dec50dd1e4d506fb8cfc8e3a7d715e3e8429ba798cad262fc6e436902c1cb

SHA512
cd4b053058e95d80c9b5cff853270b0ec8342c8f90dcaea4a0cf152a46510ca86c5b26c3c85925651faf862a95cc2a4bef5cf60db2516173fab18f19c6f89fb6

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
903a49309f0461dbe2eccba3d427b87f

SHA1
9329b1a4f3c0e7df467014f09e384a85c12ce211

SHA256
c29a7970b176f772f6255b607af9516d89bae9179c0c667a6805d9bcda42c9e9

SHA512
782f7ab05ebab04450406b583a858e62f196920d1cc263aac8c2e942337b94e24e67c013346d3d8c08f0f5a00c35e3a78046e32881d40d1f20334dd9d4ecde62

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
6bfdedba361a3fbbecb633fa59482bca

SHA1
7616ec4d08c1f87465ceaa0f2a7039a82cdd40a9

SHA256
0157a01284460b83e69431bb141e6da7df765a5e701ab4dfb482107adc02c9cd

SHA512
b09f4d1bb5da5dc35a17f633522d3b627853911df8649849d86d8f208ab97ecd514c0de335f3dff64730ae2536431eefcf11de72a4ce531c924636046df08c59

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f871ff700510a56a54fdd56bc41b7541

SHA1
481548c8bc3254a00f497140278597b915460c48

SHA256
ab18f3bb605f3cbedaffc75b2d5a03fe21ab82179d268331ea907bdcd32c23fa

SHA512
12e3d348199566e137f02b63e4c8b4c722aa086128c0f1cea883d512075b8573d40d889d2b4452d9e3d9c02f523716da9775d93750c242a1a2d9e62f50f60fc5

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
fc3440b988554e324e99648eae9b7f24

SHA1
7a9c271391599fda4ec6e42823a9ac71de0b3546

SHA256
176f00fa8207b561d39e7fea40126a3960ef72ebea132b50ece43db9fc522872

SHA512
3e22bc5391dcb0a2ae52c3e362ea79a0042cc83af0511141609cdce739223b594c7495aa59ca22160a69ee96e57bf05e99b61d78c66fee131d5ec13f6b95db75

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
b4f3c0516a41f9a886c5fdd48bea3604

SHA1
10ec70ee20aadde21d8c8b2737faf111e0002e06

SHA256
26df7e44d892dad2640a7158c25fb0882aad606d4e7be4146f045afd4ab5406f

SHA512
4fefb19908f1cc73a1d528547e8ba43964fe83d21a9ca40bf00efba2e98a19b54776258c5a159724decd60c15b6dc221bb2510bb4b55ec6102b3f378e0ff648f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
5f5fcf6143438ad73d64509e79d7dda4

SHA1
9ec4556be216c2c966d6d80de3631438237423d4

SHA256
01eaf95a1bff5233b1fe53587339022f928c35370865dd890d257b8228198417

SHA512
1ff499224ce6c9548b0ab1b9b2db4976b6fa3163a82d9d25743ce234d01da83bd5f4809285af4aab3a1d0ac004ac5afd96ee4333bec510926f62b93b21462c04

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
40ac46d0a43a272d899c9903001e444e

SHA1
d120789701b29c1df7f7a842ca683dac54cea677

SHA256
4a8362bc8cd1437cbc2dcd154e93c37631c41571882e191170d80ce1cfa56700

SHA512
83a3ccf81c5faf5aa4287bb2637a6276f0ede1955ba5c893579fc260ee1a6738fae5816a22235cc53e26be838868fc5aeb662836c03319650999d422d178eded

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
aefebed8c15ee02347c302a5a0e50cdd

SHA1
2fd0ceef8409eeac6b0733ab19371f82ff342341

SHA256
efa0db8b313a359fe2d8eb0f1a6c8c24726afafbceb7aecdd0e04889a30ee0b4

SHA512
53d42436cb03918c2dbf9029d1076efc1dd83a3de6c8f151c3e74fdbaa3f8549144343b5aabd04d8564f0e53b4c130411167dac7085e6bebc36610ef3762d21b

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
130c0ed4627e5b18ca7ed68961e48490

SHA1
a0da23a668836e91073dc234ebba03a296bc586a

SHA256
fd1ef7d0a705cb285d626bfaa345e54eef18c4cb38883638d1eb66d9141e303c

SHA512
978b4c488bac88d496197f7dde4866313843711cd4a5ab63e30b6296fe60a2f42b2769932f9e313c8a20e5cc976ab1f8e4d4548cb500238eb94cae6f543ac252

Download Submit
/data/data/com.systemservice/files/PersistedInstallation4749430844483194839tmp

Filesize
557B

MD5
25ad2b1df04a491d4b3fdb61fbb15669

SHA1
a0b82a7cd0905975eaa05d98b4b54bc13feee67c

SHA256
c485d695aca58a2ef8f4110646732bab13d9973dcc9f86c0387a72542aadec86

SHA512
d9559cc0c6069330c06b872abe88ea97e4c85a6816b384978b219705133d4252b8e2bea35dcff30fe11dc70144c738bc32ae6fc3366e698cfb0fa75ac9e996e7

Download Submit
/data/data/com.systemservice/files/PersistedInstallation8885088504160700464tmp

Filesize
90B

MD5
9dee0350565fe8d78ccf720a8091d583

SHA1
76afff7ad81bef80c87247aba1ef8a8780ae51a5

SHA256
ea63682672daeb243a3402394aaf3cdabc93eb76ab4b66c89ebd5c7949c9bdc1

SHA512
ff258ac727980451e20ed8ffebf2421fdb35b23f8b563b8338da80e41658fe0da1045c3e67eb8106658331b6c0c6e33e42be5e757f9de79b555c410c8b31cafb

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
5466b33c6b37712269a4e62b031fd209

SHA1
2ae1fe0a70729c1d5a9d04f0c49994ee1fb4590b

SHA256
46e3612e501c262468da4c101a94bb0ab2a4b1ce54b582bbdd36f85193c875f5

SHA512
e86973624c4ace9885e20f9e37843845b812b84c8aee183c970502dce253a9d5ffe722d1f2db599d7e7e5548f62f5bfaab8f7048ab45e5ebdce67a8e68bd05bf

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads