c08b6d63cc768b018767612e3b60834009d9a56a1c2901758799f28dd2a5ea5c

Analysis

max time kernel
46s
max time network
163s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
28/03/2025, 22:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c08b6d63cc768b018767612e3b60834009d9a56a1c2901758799f28dd2a5ea5c.apk
Size

2.3MB
MD5

1d271ecbd0d03502326da1f3b998920f
SHA1

5e92c377181736183b7aa74d8a00b5120e32c519
SHA256

c08b6d63cc768b018767612e3b60834009d9a56a1c2901758799f28dd2a5ea5c
SHA512

a5bb13dafadea61f9912466f682eed7914d2e37f88371d7f4b001611971972109fdc5a5f8409bd9046913cf18a4203e68178868c5e40509d52ddb0bee6e20e81
SSDEEP

24576:Ynglh4K+pL73/KrdStBQqUYlBwQSnfxA47EnZTF1XEhw8ZKZvzpERRukXYszgdlm:Ynglh3rCBQqCfxdS/UhDOv9I8dI

Score

6^/10

collection discovery impact persistence

Malware Config

Signatures

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	ru.putisha.app

Requests changing the default SMS application. 2 TTPs 1 IoCs

collection impact

SMS Messages

T1636.004

SMS Control

T1582

description	ioc	Process
Intent action	android.provider.Telephony.ACTION_CHANGE_DEFAULT	ru.putisha.app

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	ru.putisha.app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	ru.putisha.app

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	ru.putisha.app

ru.putisha.app
1⤵
- Queries the mobile country code (MCC)
- Requests changing the default SMS application.
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4273

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Protected User Data

T1636

SMS Messages

T1636.004

Command and Control

Exfiltration

Impact

SMS Control

T1582

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/ru.putisha.app/files/profileInstalled

Filesize
24B

MD5
054501b1a54c88b22ff2001baab3ee8b

SHA1
c2e6fd37c1e27c86a1866ba43efe9140c5ec46f1

SHA256
31a40e8508091464306c7a82951a1167a83dc2006e80cb44440d7f7764525b02

SHA512
41826e55a4e9ae32b0e1f9c4187db6324b50fbf44834e3a44baa74261548bd9ae63a1f8ed6e348bad4b75286ad766e0feced187b06968ac2ec8f66ac6cee0d82

Download Submit
/data/data/ru.putisha.app/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
fdb2e11fe2000997cfe9fcf625a5248a

SHA1
6213c9de37c2e57a81efef91d39d407f13c5c2f7

SHA256
e0c9b42556f27180f54990ec7b33a7f0e1dc2320d58c35fe13ab7acb5e2101ef

SHA512
8ae8d4c5de9222753bd70ef08322117f721fefbfab22edc0b9aacd8775183c1049dd10d452769f22a7dafb6928579a6660b9385d7fad1e09f2d7b562b8ef6010

Download Submit
/data/misc/profiles/cur/0/ru.putisha.app/primary.prof

Filesize
1KB

MD5
9929cb8e4ac5fbd2379e25ff7b4ec2c7

SHA1
dc529a7149329762b1309aeaebc9ba45de2c45da

SHA256
17e9a12a2fcc68cdeca9f93f1bb94794ada2b6c51bec97b0d9715138ab6be794

SHA512
dea5f78822b1d3bcab2794993de909072dcb32c42575317eacce0b14a1e7bea2b627b30994cf2970df0ab73dda0356827c557e3b11f8c83f7bac4abebc11e1f0

Download Submit
/data/misc/profiles/cur/0/ru.putisha.app/primary.prof

Filesize
2KB

MD5
c250764493ae33b9b2ca546587d1315c

SHA1
d6e153c9cc333c16b4afac9b388c032a84ff4a61

SHA256
4363ae98ff451742b7907f96630bd3446eb2985396093ca2fb805f9ed429a0a9

SHA512
217adde0f447a4e4614f29222cd765f08fb90c6ad6de3f68dd4a3b31abe6acdf75cfa63ca9d652d3aac662ef67bcdde6ed990337503e4a44a0d696fec2a94f76

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads