eef734dac634e7f5b69f1ab4bda8b7526fab7149900f36518beaec97e067a61e

Analysis

max time kernel
86s
max time network
152s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
27/03/2025, 22:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

eef734dac634e7f5b69f1ab4bda8b7526fab7149900f36518beaec97e067a61e.apk
Size

2.3MB
MD5

e9d7d5b922108818a39b97499f8ff279
SHA1

da8119e038c4c7625204fc926496f5986407512d
SHA256

eef734dac634e7f5b69f1ab4bda8b7526fab7149900f36518beaec97e067a61e
SHA512

f6ffdfa4d9214decfcec0059518479e63326526b095cfd828ccab48346232c9b465c8d50fc28ffc2fcbd30bbc18de0da6597834dd71014b01beb3421acada320
SSDEEP

49152:2WDRvFm7nFl4Uk2agh1Y+ijuzdK3fC6/YdW4g1Z31RN:5DRdUFIgh16izdKq6/vZ31RN

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.google.samples.apps.nowinandroid

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.google.samples.apps.nowinandroid

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.google.samples.apps.nowinandroid

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.google.samples.apps.nowinandroid

com.google.samples.apps.nowinandroid
1⤵
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4335

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.google.samples.apps.nowinandroid/files/profileInstalled

Filesize
24B

MD5
c81bbb450d465a43de8941f9721a5bc5

SHA1
a0e98824e8f458c2af7f7172a84aa894fd5a2d94

SHA256
07d762f634f9da3966bd70666f952d82682136be872071f8c27783aaa3ee5ec7

SHA512
ef732903987a534008ad6d4c90b271d2a3b92ddcef2e5806fa4ba48128c37d0df8c438cf19f45dfb52d3d38dc66cd8ee1dbf77eb0777bdeb6649aa52ce05a6ec

Download Submit
/data/data/com.google.samples.apps.nowinandroid/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
dd55be9336d5b7da915de22fdb92473f

SHA1
eeff579efbe84eb69f4a5090c6c07d2d1a40cf88

SHA256
e549e033e9288802ec73bb202f2d85fd618861c324d0b91e9378c96becb54085

SHA512
419d69d88196c3dc18e41bacdf3d4853d4e3e5d0406174a82c87e73f425781d1b1fa601688a20b202705f46b20af7eed011ad99b57b7dde13cab9f075e80b955

Download Submit
/data/misc/profiles/cur/0/com.google.samples.apps.nowinandroid/primary.prof

Filesize
1KB

MD5
6b6c1663ef3516b9880b84f91fb32e1e

SHA1
42de77d1e883cf35b2b00c3e99e17d0750fd1e3c

SHA256
877bd3fc96d3c3096c5e070ccea8a7b99219a1f030fa1e88e9addcb87effe49d

SHA512
53584b28ac5f20c19bac83757ebddaef2c6c2880d623aa99fe9a412ded099815cf5864cc52fc88e7ad4b5df6788dabd1be7cfcccd0650878765e726620a62773

Download Submit
/data/misc/profiles/cur/0/com.google.samples.apps.nowinandroid/primary.prof

Filesize
2KB

MD5
d2679aa650bdedc07e96e3e5be616b94

SHA1
0e3fa82866c50390b016fec95138e1a95e7acf66

SHA256
f819681684fe11350d7910b78250f73100f30ee565422589f745730f16c84b35

SHA512
5df5ab24d2db32ed3ab2d59dccebd68891ecd8d7c71ddc21178dee9842958e6f10e853cd0960cd6c6066c16dc6469cb439dad34324ddf0bb8d57134a7d5b52c6

Download Submit
/data/misc/profiles/cur/0/com.google.samples.apps.nowinandroid/primary.prof

Filesize
3KB

MD5
896156547d5693b7375b413868e08a5b

SHA1
011770eeeb58de8f42501634383daca4c0de5eeb

SHA256
e94b4a8495e8432586409e5c24e70a29c22da7d06ab76743f4ca318251a60143

SHA512
cc2f8e0065af741653d6502b20d72943f24ae0b42789ee494a788c69f9e4f3ad6b31b87c3be7bdc8cc56b766c21063ae71fe11f04314472fe103dfbc6a25fb95

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads