92fe7c707b8cb175e33fd578be82544f7b3f25fdfa613931c405ab1c87d25a6f

Analysis

max time kernel
149s
max time network
152s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
28/03/2025, 22:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

92fe7c707b8cb175e33fd578be82544f7b3f25fdfa613931c405ab1c87d25a6f.apk
Size

2.2MB
MD5

794733e16d56f05e0c1a93cc1c87301f
SHA1

e3b4216c6e53a2322dc7610407f68db8e2d4bd1a
SHA256

92fe7c707b8cb175e33fd578be82544f7b3f25fdfa613931c405ab1c87d25a6f
SHA512

4cd7972ca36d79966a0363c83797b77cded50ac00bbb70f49b4ec651dc188e22c7213e099bb37201f0d6495ee4dbe6a4797b71148d4c7fddd658c6f04db77aa3
SSDEEP

24576:xnglhTdfpL73/K2qdhZDfC3WrcMeVSnfxA47EnZTF1XEhw8ZKZvzpERRukiO86zW:xnglhW2qbZrhQlcfxdS/UhDOv9xbd/

Score

6^/10

collection discovery impact persistence

Malware Config

Signatures

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	ru.putisha.app

Requests changing the default SMS application. 2 TTPs 1 IoCs

collection impact

SMS Messages

T1636.004

SMS Control

T1582

description	ioc	Process
Intent action	android.provider.Telephony.ACTION_CHANGE_DEFAULT	ru.putisha.app

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	ru.putisha.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	ru.putisha.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	ru.putisha.app

ru.putisha.app
1⤵
- Queries the mobile country code (MCC)
- Requests changing the default SMS application.
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4210

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Protected User Data

T1636

SMS Messages

T1636.004

Command and Control

Exfiltration

Impact

SMS Control

T1582

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/ru.putisha.app/files/profileInstalled

Filesize
24B

MD5
82103bb2a10dff331db6c37955b80eea

SHA1
54bf57f6b84724ccf3962cecaa3d1a8531daf4a7

SHA256
85a405a66fa2816baca44bb0db17dfd780aa9c4e9d881470d787e07cb6e7775c

SHA512
9ac2afbcaaedb172f260d6670962d2184682f3be8b54491dc99c6f18f2a54125072ba21472d611d9a1d0e0cbcb9bc37340424f7a01f5b6e6318eafcb58c9c275

Download Submit
/data/data/ru.putisha.app/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
111fe10c4cbba74839539937b1ab4299

SHA1
b79eb173ca0d39cdfb55ec9f63fcd5df435ca0bb

SHA256
7ef710c5917fc07a62524c388dd5aac884db904c876cd680e3c68cc3f8adeb66

SHA512
d13650f391cc719036a0bba21575e13e13893eaeb1b9b5061c89c8d2dc3a2f10b8e202855d89e42c39bfaa76582179c0d3fe69861a269529883d95ca1b4e9ad9

Download Submit
/data/misc/profiles/cur/0/ru.putisha.app/primary.prof

Filesize
1KB

MD5
9929cb8e4ac5fbd2379e25ff7b4ec2c7

SHA1
dc529a7149329762b1309aeaebc9ba45de2c45da

SHA256
17e9a12a2fcc68cdeca9f93f1bb94794ada2b6c51bec97b0d9715138ab6be794

SHA512
dea5f78822b1d3bcab2794993de909072dcb32c42575317eacce0b14a1e7bea2b627b30994cf2970df0ab73dda0356827c557e3b11f8c83f7bac4abebc11e1f0

Download Submit
/data/misc/profiles/cur/0/ru.putisha.app/primary.prof

Filesize
2KB

MD5
c250764493ae33b9b2ca546587d1315c

SHA1
d6e153c9cc333c16b4afac9b388c032a84ff4a61

SHA256
4363ae98ff451742b7907f96630bd3446eb2985396093ca2fb805f9ed429a0a9

SHA512
217adde0f447a4e4614f29222cd765f08fb90c6ad6de3f68dd4a3b31abe6acdf75cfa63ca9d652d3aac662ef67bcdde6ed990337503e4a44a0d696fec2a94f76

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads