cd5670a1f934f65acb6b973d40a1feac3effc8e038374f7f244d50f7c7adab9f

Analysis

max time kernel
98s
max time network
150s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
27/03/2025, 08:15

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

cd5670a1f934f65acb6b973d40a1feac3effc8e038374f7f244d50f7c7adab9f.apk
Size

506KB
MD5

1225ebfc2dcd343671c4e7812423aa3a
SHA1

faf56d8d4a1e8fc406176d21d337dfbfd7240381
SHA256

cd5670a1f934f65acb6b973d40a1feac3effc8e038374f7f244d50f7c7adab9f
SHA512

920af65868a9b5772f5d53b0200fbf74409faf9f03860ce1f130b3e1586beb372c0f08abe339c90f72a5904a97f1be4447964ce137ac4978d51336a63ff75eec
SSDEEP

12288:IjNfteRwDoVHMT0x//h2hSAFr5ofjHbOMGVlxtRtTl1iZyVsM7iw:QNywhTU/hMSAR5oLSM0iw

Score

6^/10

defense_evasion discovery persistence

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.intensive.sound

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

defense_evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.intensive.sound

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.intensive.sound

com.intensive.sound
1⤵
- Acquires the wake lock
- Makes use of the framework's foreground persistence service
- Queries information about active data network
PID:5102

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.intensive.sound/databases/com.google.android.datatransport.events

Filesize
32KB

MD5
ad7bbdcce258ba21d0a07659a3849e3f

SHA1
887e17f38cf736cc82125092f6cadd5753184286

SHA256
a6417906596802ee2a80cd22ef848d832848a6f36f4e45d320e9b98633a5c456

SHA512
4519d5aec86a163c9c2c97d1cf9862cc9b421749c0d78c0f4ceee31c9fe07ac557e736d5b3f72942e2d5d44b578fc8a6789f2e7a3ec98ec2199fdc50dd3ac45d

Download Submit
/data/data/com.intensive.sound/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
7e5d0ee886ae3a65ab2d133a89ed3f8f

SHA1
abfdd7aa28ec0ef8a865200de97353755e3222b1

SHA256
93aa535020bd8b6dd0806041ac1e29aa0a8cf33fa59701196bfe2267b621239d

SHA512
aec94a7e466731dc41d7704862d6e5fc7478167624f5fd403879f8187d38d106b354b3c168ab7a59ed3af2075a57ea8603d00f9a87ba867bab4b2115dc609779

Download Submit
/data/data/com.intensive.sound/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
6cfa35c3e7382a59454541df4149c17e

SHA1
d2f14567e6c114d6a4976d3c74d203267cd948c0

SHA256
7f570cf620a55ee090cc578e2fdb02094bab6b2fe60f7d0ec8aedd1615bee6e0

SHA512
4b419108a3946d04d59329f5d41ba09a5f8d764091e72801c561f560440c52f0fc3f39b37d6cd1ed0627bcf9ddd669797ca58e02833ea99920cbf18887b50c6b

Download Submit
/data/data/com.intensive.sound/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
bb7296ac1b71b63ef0490cbd74600248

SHA1
a499b0234d5a97f8b09018efa11b6a6cce1d7bf3

SHA256
c810abc7b9bd4b9683c27054957ef5af34f338d77257def7bc812c62582ba8ff

SHA512
65a465f554a5588109d1c379bdd5a0543aaa9c2a4fbc095e8ff760ba0663a097944019d6bd51722f9b1919dd68f457d48fbd21b4f83c770ba334e9af0b89341d

Download Submit
/data/data/com.intensive.sound/files/620f3999-8f53-4cc7-ae62-492c11c7f02f.dat

Filesize
560B

MD5
a8399003973c10805e71cc55f09c66cb

SHA1
e4cf6e3ab720c0f7e921980e009bda3fb3a620f9

SHA256
2ab5a2d5a8c43e1a09eb6212004af8e182de78a6249dca1c9083267ee96dee72

SHA512
d7ae2d242d3b99774db6bdb16c393c0a3a39f4169f6f1456c62fb713db4f50c99042799b1a9a71d30b1c2a7cc01dbe34fa4104f20045d7fecf0e499e764ddb8b

Download Submit
/data/data/com.intensive.sound/files/PersistedInstallation2095966059077680773tmp

Filesize
565B

MD5
dac41ea140ad98fdfa0c5d5382615f97

SHA1
4521e78df7f5b785ce5899a26a79864bf9f01151

SHA256
6a3422e75adf8e61a9deb9aad2a7aa4697963d9d70d2d7afa460ba99e14a4505

SHA512
fbf1082a6a633154e9d638c1b58b46a091409c8007de943268eb9fdbbddedbd9c162f22fc0e89657592b61e11034b1e8192d4ad7156f006223f07ab34a82c236

Download Submit
/data/data/com.intensive.sound/files/PersistedInstallation307278494061388574tmp

Filesize
90B

MD5
5902682784dd62eb9f653a2c8d2394eb

SHA1
db1b23d22548d7cd0c8e7b4df2e37865b3ec549d

SHA256
4e0b660e7d0cb625da92b5087cbe77391c94b59eadf3f8ae9a3d33cc9533dedd

SHA512
ac39565b837168d47ccc38c0b7c0a75aa0541a1c48dc547e4fb491f5ff20ce4496419484d48581063972764c1b449b7e932fd9caacb368344c052f2c1c7d1dd9

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads