7c1682ac90c1da712af1959f84079facb5d14d05a9d1a92a51cfab1e93f94943

Analysis

max time kernel
103s
max time network
153s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
27/03/2025, 22:00

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7c1682ac90c1da712af1959f84079facb5d14d05a9d1a92a51cfab1e93f94943.apk
Size

2.3MB
MD5

84d8e020aee56146ff98ae92b62f6326
SHA1

cf17ff64e93e60d44c149ba955365849e132e105
SHA256

7c1682ac90c1da712af1959f84079facb5d14d05a9d1a92a51cfab1e93f94943
SHA512

e69ae4eedd31a0265ccb68ab22ae25ec63c6b2e5be827bd2d92cef8c669a94f997799ce16d2ce1ea5b92c31316998274a7585264c170ad76b63a8357253b1acb
SSDEEP

49152:4G7Rwo07MVXEjds/E3infX50Tanuzdu3fC6/YdW4g1Z31Rj:dc7uXEJEESnf+T/zduq6/vZ31Rj

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.google.samples.apps.nowinandroid

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.google.samples.apps.nowinandroid

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.google.samples.apps.nowinandroid

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.google.samples.apps.nowinandroid

com.google.samples.apps.nowinandroid
1⤵
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4217

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.google.samples.apps.nowinandroid/files/profileInstalled

Filesize
24B

MD5
ee6acf1e48dd240374fd17b68b8f8a19

SHA1
7408deb1467c3e72919e8db60227c55bce46fc2f

SHA256
3679bd8584a938ee6c3371e52577089f7229127e0a9970b7ab1051e5f606083a

SHA512
7f11ff3dc9edfae1e198069c1d75a08a543eb7b78c441b5980ec739697c8edecbc25770561b0f065807188444889ff6566c5c4c982a26e3da487da44ff2ece6a

Download Submit
/data/data/com.google.samples.apps.nowinandroid/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
53c26dc2e88be04f3adbd4e461b8db1c

SHA1
d277b2f2a54a6da9f20751bc52c353730c78aae7

SHA256
c47b6481938ca77ac35b5b9c3217906b1be3974f6baac6a9966add4cebb87086

SHA512
299c8a5659d4fa8258f12574e698f4b00a99b9b4b4bdd5f22b0e0da225041cac730a8da71a1beacdc3970438892604f99885b1fcce9639ee884919dcf3cde71d

Download Submit
/data/misc/profiles/cur/0/com.google.samples.apps.nowinandroid/primary.prof

Filesize
1KB

MD5
b195e246d489e606b50789ccc9c05279

SHA1
b27903216d362d89a3d76ff6cc00166107c21d94

SHA256
9f8d1deec3912a2a65a50747fde2b691f18cfbe97e08b2d5822f806afa6c6235

SHA512
be6a63d40c225fa103f7b10dc830fe5006c56afabf02cd248a2890b99f52b5b07aa30430826f357744d9815b5da0a70eb798f525fa267b59d0455f0549d09aa1

Download Submit
/data/misc/profiles/cur/0/com.google.samples.apps.nowinandroid/primary.prof

Filesize
3KB

MD5
44ce452e9d968f137d30964834eaf6e3

SHA1
14dba8e5595fbee2b36a2b41ba781625f2307963

SHA256
54bbbeeb96401189a87114b7fc0e9bbea2693d67ea94d2e79c405a48768aef5e

SHA512
74af36bdf4773dbe5af746f4cbdd0efe423db41588fff5d508271d3f4d0d391bfa72c8a5c7331b5e3d0948b709d85b69e322aeef07ec847a5f64dc375e58debd

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads