2609dbe83514b307adda1e13f3eadede9d66b89a7b05959a08bb5bfbbac8cb03

Analysis

max time kernel
143s
max time network
150s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
25/03/2025, 13:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

bc850c692e84f67ec59c08e6e893e479b6b1a24a5b4097dfa3c70396c9bb9b40.apk
Size

254KB
MD5

241c0118347f7af0a76b6d868526e896
SHA1

c34f1f3911a04513e69a6ff042fc1fb619459f81
SHA256

bc850c692e84f67ec59c08e6e893e479b6b1a24a5b4097dfa3c70396c9bb9b40
SHA512

f5fb725f19ebfa69f04e3dcd311d1d8e7f7b5ca5f1c83a38ff5a8f266ca6620ee7b06dac3b943a1ca1c912e177b88e773bc1f5abb4145447bb9e9042df52a20e
SSDEEP

6144:oyxr4i5JBuB6SdsQN8zmnDbAYWDz3X7OdcibM/ub881Fn87JGcC:JmyJBuBsID0YWn3X7O+ubpnWJGb

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	net.droidjack.server

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	net.droidjack.server

net.droidjack.server
1⤵
- Acquires the wake lock
- Queries information about active data network
PID:4579

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database

Filesize
16KB

MD5
70ab0184149f2a2235ce82b245bb5c3a

SHA1
ee3b0fbc494cf364705fddb1f3ff3503e4f70ffa

SHA256
27df39c9b9de413f6bc5ccd57272857ef5500c20ffc8b4e90e35088b3f4af80f

SHA512
52d291e398d4b4c5d754d02aa2afbce0b8f87c71b60ba5f29f2d6adc6f72318b97d7fc252fbb77a6cc721b6a7c0cf052c58ddd0648069bbeb5ab259089a22cd2

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database

Filesize
16KB

MD5
5ff57eaff21a61e6c539403d044c216f

SHA1
d882d19392531546bee0a088fa5c90ed81ac670d

SHA256
2a49060e3e67e20275aa13cde1ca5f26a5827f2661dd5fc61f0de64ddc1d627d

SHA512
4bb310dfaaeb7248f8400c40b0c5f5223eb34f87d809675f6a115a09c3944b7f2296d6f13a59dd3ddcc035c3a76f37c286fac998e1e89d76620b71b0c12d37a4

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database

Filesize
16KB

MD5
a4563f10ffe669a561190f6813c78488

SHA1
36d046cdc9f8ec5e2f8a4457d6e1dd9fdf93d625

SHA256
db70be1b56ff21ee509df483f1c2cc7ef488eadfc1152399b3951677480010a3

SHA512
7c604dbcfe5614ef93fe6b10e165539aff32dd07ddd0f10c9cb8c3a143aff178f40340a4c13f65db59c3fc89995f83cf5df1efd41d57b23ba1e3fefdf8a77cd3

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database-journal

Filesize
512B

MD5
d57b0c0b9dce95e99ee7f3b46287f665

SHA1
3294d7210075745d2cb96743676f47c54ce93078

SHA256
c45e4bc3c3c307d85aa6b26006d7fd61365b163215bc593b79c3721c0888d05a

SHA512
ca81dd59bc0669821124280b3d2f4f75e1a6735c7750bc3263f5d40d55abd42e6046ab2563501c3416318fa40341ca96f45523f10fb4361806566c020005a2e2

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database-journal

Filesize
8KB

MD5
761e03c49465aa82728378c47a35d436

SHA1
a8ebee5959b73500801cfb1dc417034885aadf22

SHA256
3123077c5fe78e666c87cc5c3b46fcb7ceef0c5561d74a9ed73b89ca5d3352ca

SHA512
de9309fc2ecdcea32121f58d19b7859373f32e8cee594a24d9736ee0ae2e2faa9fb29a308b891d6c52fd5e7c2c7949fd84ad763e2eaf32071bf8d6f5c19c63ef

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database-journal

Filesize
8KB

MD5
2feb15ea6dea2d8d81427fc66b4ddc12

SHA1
8ad6e30c281624ea31b00cd92876e9a21a79be27

SHA256
ac1170985cdca9e312cfab621f71a1b8d6104182b924fb60b49438ae5ef3572d

SHA512
dd75bc44ec45d2896ac4688697f704ef03cdc4008e00350e21cef107f8d5aad76709bc1a89ed5c073230e8c3623d2bf0de46348385c03e8072cd5981a18a878d

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database-journal

Filesize
8KB

MD5
eded0bb9b3fafcb6f46a41f4208e7305

SHA1
5b4c3dd6f202585857d7a14b8a2adf23ca32b865

SHA256
5e460307237bfcc8e8b80b7513ab13960ce722a4ad6b5882692866b298016003

SHA512
393879f3307b540d265224cc04e7d8666496d033d12c3e6c02b1c3c015fc3a83ea8bb54465bb0a583765774a86a7e4661238ae41913e9d7a07a69fbd1fbb92b5

Download Submit
/data/user/0/net.droidjack.server/databases/SandroRat_Configuration_Database-journal

Filesize
8KB

MD5
8d1cd8c13a8ea0abd3595680586128c2

SHA1
72c394fad14b7a54df9801aaff3b88676f0a1182

SHA256
9c52daeaaa573314e25f5beea28eabc6a31b6851c661b17d8bdc4a0f8ac60743

SHA512
9b76a54c4373b5715ce800f84c19afdb482a5af82dec0fdb2d0a677908d0b0e0080d5de58e0d57ef5baed65bc8326eeb22851dc22e02b0aaaccc176b2a779ea0

Download Submit