92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c

Analysis

max time kernel
13s
max time network
151s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
06/03/2025, 02:45

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c.apk
Size

3.6MB
MD5

0366ae0abf0ada8aed90322bfe07dfd5
SHA1

2f0779ce64f02944e87674745cb446c5bc620607
SHA256

92c3337b3d74f2aab8f0ca3a6f045719a3301519810d535856ff11dd743b523c
SHA512

52f50f2f847628b1fb498784660050a6f189d8c7cc520c0d3a06ca28cc35ee4961d0a3daca71a540e263ab930ab629b884c3ff187d4abcd8f58549fdf87f9677
SSDEEP

98304:mD/SWbGiowrvH6Odp/9hBbW+te6lXhAyHtu:mWWbGjuvl9jS+oSc

Score

7^/10

banker collection credential_access discovery impact persistence

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.systemservice

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.systemservice

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.systemservice

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.systemservice

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.systemservice

com.systemservice
1⤵
- Obtains sensitive information copied to the device clipboard
- Acquires the wake lock
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4338

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Clipboard Data

T1414

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.systemservice/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
c1a3b9e31ca91c5fc18598c7317a4dc6

SHA1
c45cfdbf32aa4b357377f7b2ea765338f3d520f8

SHA256
9926dda15d528b0f5999cc7446d2cda2c045662f0668c96f5bee0c99ccb25029

SHA512
f3f1595b28c1b4e3ea40df128a328ac55f95dba1f51095f37c8e5980c9724832baed5d5a7c3fd5dbc702434ed32cb8b638b588f21ca6aad3e6331fdd1cb1cbd2

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.systemservice/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
2e7a2ae2b6865784a5b38e40b2bdb59c

SHA1
1e64eddaa62f6a34db966fee31c6e75a9cb7deec

SHA256
bc8cdac5bd43bfa5d12697aa26709ba026e981698b18803a70a3c7e6fbcc0168

SHA512
d0283a45732bbf46b92c8e6c48aaaa389f994dc5694f1f4758eceab6546e144a4055d5bcabb21eef89e5f54e1029e6f90bddcc10264d448bfd0c6e5acbb3bf65

Download Submit
/data/data/com.systemservice/databases/core.db

Filesize
36KB

MD5
045489a0639eee27bca52f48828cd93d

SHA1
436e7966e7c019273c44faa4d8c5709b816dfda3

SHA256
0151eae0eec786abb19ab59d7361b3291ae98411fae12cbbdfecd1612e16996e

SHA512
c8739a723a8648b0e380b946a97fb6cd83d6c4769ec3679bf4bc003ad0049ff5cccfc8f75a6ea272feced0020b13d3129f792f0f22cf442f0d0127f399eba22e

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f59c8ccb6ac2368e5821c77dee2bc306

SHA1
dcd7f1c950e8e319509dc885f603fda66b02ae37

SHA256
2cce9d5e87c0cd9f7ec15907ff11dc0b382913dd25a55ad3b877dd3142c1661a

SHA512
7e62f8ed1ada890486948cd11cc1372d1de5242c72e03e51a4af7ce7c59b3ab2d479a2598f53d7c0b612e0125c86a3e1b972b7c6e88149914198c2c326eb26e4

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a2f3cecbd4e6b80574a0c0d418e867c4

SHA1
d8ec1bd5fc76c91eb6b0937cc6ba349cec03d009

SHA256
e87027328f87885dd040f8c886f97044f6c4ccf8844997af3bdc3e877afc00c6

SHA512
4c46d4e646e5b1ace1c99158d2556a31b33934c2d42e7a054366fcd9d1d8c84a8f86c01930ce12caafac8b9060a7b13daeafcb01d5a8ddb01e1740114a463061

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
82d4c48ee2d15496c6e0fd9b7ddf4534

SHA1
159a63d919c4559851034d80e8b171a7f9a5c640

SHA256
484005f1b1b4cf21d909aaf4f55e27fe59ebaf33fb47a03e82acc785430b6e05

SHA512
b43a86426357ba9a1dd7a9080b843064f2e2fcca8c57d28b318159eabc7483006685087ffaa15af27b189a9860885cd3f987b245e65a8f14e7b29fd5fefacbc8

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b0c95a2f5c4d850114dcce3c2b09d29a

SHA1
6e64f295cacfc3bbd0325c6f4d71bb3de65b5686

SHA256
db6fe7c9eff67d0fcf0977b28dc8d1277c0f54e49fde47eb9e3b45b6f5cd7a33

SHA512
027b0a90d41797e29219a0c8d3cb61c682334c7de4dae26e3569173d0ec575ab5a28e1acac4658a8f1f18802e454853cd9dfb397ec4c1ea58d7725faddb39e12

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db

Filesize
16KB

MD5
835cfc7decf507cdc5e54f602e3f9699

SHA1
4a55d424cb32e766554672cb2d0b3804fc47552f

SHA256
29257dbf2b37d226ace65bd68d001398801235d93ed830a35435bd4bab4de852

SHA512
2ab470c2200d97b545693a4cdc661100e46b0299f3d3890773681bc5f22f29eeda6b6a83a5c627fa22119726f3ce78d40021362a3f018a4f3afb4a08476c253d

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
a8ccc9ef56b220990601af84c2a5a5e1

SHA1
20bb1585b31bb6479d2e42f07243be2ee994854c

SHA256
de2a5f0c0b64fa483d522c9511c65584477cb83ec9cb2d1b3bbb0695fb85cecd

SHA512
278f717545bd8a1a2587c795a87621f31e6d636e7c48a42f5e102ce1eb8ccaa314495d10c46097d0af9385450706ae3f6e7bae7bb13f70eba97977c7e4d2aef2

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
36677e616a6fbbe0673d16ccfebf931d

SHA1
483a1fa139e06e6cac9474058b2fcb41ea251577

SHA256
ed18fe7ba6f1c4c12d250dea815d54ef515833aaf333abb56a990806ffe4bf51

SHA512
7e186bb12cb79fc76503c5b88a67816fa34458882a201121185bf387c1723c70bfa02e966c95aec306fa9fc277ef20400639f0e0baf54ea24d2763693b1f9efa

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
7651974ae87fdb901c3d6c735b838922

SHA1
f93c808f77ad7f92b2f95296c00a27952dd5f36c

SHA256
3d4248e28167a8cadbefd003a7d487e1a7015f1f47e53130dd357b7d80c6aa4b

SHA512
19781f2d32c88a5842a0c799ba4bddf536ed4c1022151e3b03c926e4a8abb7e3e4c90563b1030f82a9318eb1a64a3d2dea133a993b6ca59ffdd38fc0242ef275

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
9bdd14faa2b26d973d3d96d517355acd

SHA1
c16f014c6e012955bee9d79d7ad75905a9eedab6

SHA256
f00da1615dd1ef83ad6ba223fd2e304c5fbab89d85967ef5ee26c253000d3af8

SHA512
63aae70cdacd50b90cf76960a1f8c7d9a5e23889eed5c9e7344fa5700ed33d792ff7360d799ded3affedfe56aef0da447c39f3c0b734d0f804409842de3c6f37

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
4348a01f0183477b3b3132dadf6d6864

SHA1
ea3f141a254d1219291619e88dea11bf9fee8159

SHA256
1a430b848ef810bd280f9e9f4401c0c5246859e74fb9b60e4580213dca57b5cc

SHA512
fdcd9e58cc0d4cc022ee6f2da96b7ff95d2a9d5b83912c6ecad50c85ca0050d7cffc628b019ee82b103c33ed83da99c7bf6f6d8bbf5e38cfd3ba510cbb6447a8

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
e3a933b956a358923e49bf3b86e455fc

SHA1
27236b264e7f74da5dc3e2e44de1271b2f59f4a8

SHA256
07f2eb6d5d2163e895799df704b738a2c902d37ffc0c7a4dc99336d21bf709d7

SHA512
e4643be1a4a6b1172eff35b26a263f1ef8f20db58908b17abe9c23fdc1818a18def7c9df38e03528b7a45794b58dc0bb13630f6071b181dea84336361313dc65

Download Submit
/data/data/com.systemservice/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
2a36213bc8a87c342a7ebdff83c95df7

SHA1
b9b941b9e43dc972953b706868d39a22e2eaaafb

SHA256
3c499d41418507e9457ab877e2b14baeb65a7e8ae00dc4650020e6b5596a851f

SHA512
f775a6b1a20a323ff8b25eca47c01de74dae02f84a80a1c9869a3bc9e849efc3a3150dcc47582a24892b814dad1448bb9e2b0a45fd4145c0556aaf952b04eb50

Download Submit
/data/data/com.systemservice/files/PersistedInstallation397831926098468450tmp

Filesize
556B

MD5
262f7235448f3dc4ef6824e21d4f1258

SHA1
21c4b91be7050eb163404fae1aba5908cf6303cb

SHA256
0bcff0c3826835cd32db2f9255034b7dc49c383069591fa6cbd0b29d08f1a2f2

SHA512
d2e353976c56112a10623823d1c6059e8b5d371a4a7bffbd38553d3a2d261da8b2b173f88d6dfe1d54fbc4165c8b2d687c9954331b85f29e96a985c301f1efd4

Download Submit
/data/data/com.systemservice/files/PersistedInstallation5314400060148640102tmp

Filesize
90B

MD5
77ce0a765532da234931d9df084a16c0

SHA1
5fc2099565ac8486e2b329574b09168a4387048a

SHA256
a78a9126093c4cd34d335588269d34823ab462c592745bdf398a91cc93db8512

SHA512
f8a27f1dfb3f2bdf7900bbbf261268c586afa6920cc60507800bece11bd7f19d1486d00524ecc7e7b53666b8fc3854dfc2719ec5efd3b97e55cc94564570a76d

Download Submit
/data/data/com.systemservice/log/log4j.txt

Filesize
6KB

MD5
d9ef047a829faf4eee7ae3e5696126fc

SHA1
4a50d0844bfe03c167e949548234c0ff9583d995

SHA256
649e6b656003adff1b3544bcebaefab733b6e4a32c8f8dd9080b3ca9b6b4af43

SHA512
eda9bf2181e62444c0295dbb9c3900958a46a5cae59a9a2570205bbf02a820f7266b4141e418748c44382e236328d0cb20db63236db9828d0f31a8ac902ecb70

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads