c6aff1c1dc692845132fcd56052833c26664a689a008593d7b617ed0ccfe010a

Analysis

max time kernel
23s
max time network
152s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
28/03/2025, 22:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c6aff1c1dc692845132fcd56052833c26664a689a008593d7b617ed0ccfe010a.apk
Size

2.3MB
MD5

1137fec437c8b9edee7e2cd5ca66fad4
SHA1

35faca9152bcf56fc507fca42b7a4f998c5d7174
SHA256

c6aff1c1dc692845132fcd56052833c26664a689a008593d7b617ed0ccfe010a
SHA512

3fe861be4e3ab66fd4d4f7c6b34b839c1cf9ad045b39f3a8ac65e81fb97f8a5a6793a262d917feddd143eaa5e52bf712952369cd092213c3600f73a2a403caf5
SSDEEP

24576:2nglhSKjpL73/KZyH5Rih6YlBw3SnfxA47EnZTF1XEhw8ZKZvzpERRukhnGzgd7R:2nglhIZORih5fxdS/UhDOv9G9dN

Score

6^/10

collection discovery impact persistence

Malware Config

Signatures

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	ru.putisha.app

Requests changing the default SMS application. 2 TTPs 1 IoCs

collection impact

SMS Messages

T1636.004

SMS Control

T1582

description	ioc	Process
Intent action	android.provider.Telephony.ACTION_CHANGE_DEFAULT	ru.putisha.app

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	ru.putisha.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	ru.putisha.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	ru.putisha.app

ru.putisha.app
1⤵
- Queries the mobile country code (MCC)
- Requests changing the default SMS application.
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4333

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Protected User Data

T1636

SMS Messages

T1636.004

Command and Control

Exfiltration

Impact

SMS Control

T1582

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/ru.putisha.app/files/profileInstalled

Filesize
24B

MD5
633bc2e60c022d323b9bec1318b7ef0b

SHA1
ae623a1970fe032c3aa45cb620542baf6eaa6ce1

SHA256
f7c20f7c41c2e53bff57a7290f69a3869076fbfa1d658b9427bdbf2f02029567

SHA512
956a071a7315f473c18722b7810af30f7d11f8fa8111e40b6448c97e742a9a5472d19ab6cf982c0ad05fd42890851943027abe9b9e04e274fd2c96f4256d340e

Download Submit
/data/data/ru.putisha.app/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
18321f17d9e216d4e71f2736396d7471

SHA1
bbe498a42e3b6c0454525bf778767bbff455dde4

SHA256
b0e9d61880a75deca00a9f155ee6dbd3fbc7d5f0b6d62758e7a5272cc9c30783

SHA512
6cbc072bb793360a5e6218e4a16a3bcc063b4114375452edf3e89aa33c6afedb6be431cffae4029bf30dc246620219f0a3f71e48f8bd094bf611c7ede7c8ff3f

Download Submit
/data/misc/profiles/cur/0/ru.putisha.app/primary.prof

Filesize
1KB

MD5
9929cb8e4ac5fbd2379e25ff7b4ec2c7

SHA1
dc529a7149329762b1309aeaebc9ba45de2c45da

SHA256
17e9a12a2fcc68cdeca9f93f1bb94794ada2b6c51bec97b0d9715138ab6be794

SHA512
dea5f78822b1d3bcab2794993de909072dcb32c42575317eacce0b14a1e7bea2b627b30994cf2970df0ab73dda0356827c557e3b11f8c83f7bac4abebc11e1f0

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads