Analysis
-
max time kernel
25s -
max time network
155s -
platform
android_x64 -
resource
android-x64-20240624-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system -
submitted
29-06-2024 22:04
Static task
static1
Behavioral task
behavioral1
Sample
5d2461d4aa977208da9aa2aca48646ad2586af07a1c718cbbe8ee026d013009e.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
5d2461d4aa977208da9aa2aca48646ad2586af07a1c718cbbe8ee026d013009e.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
5d2461d4aa977208da9aa2aca48646ad2586af07a1c718cbbe8ee026d013009e.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
5d2461d4aa977208da9aa2aca48646ad2586af07a1c718cbbe8ee026d013009e.apk
-
Size
4.4MB
-
MD5
27ab58d304e89bf784dcab85f59482ad
-
SHA1
778ce244cd72b3388d0d240f921b40d885732b6d
-
SHA256
5d2461d4aa977208da9aa2aca48646ad2586af07a1c718cbbe8ee026d013009e
-
SHA512
5dcf4d9f973f22efd420629e1cda8f76b15aa732c0cf5b92a51ef10c5adaf46f1e2b414922133a54b077476866c18b6c46845aa07b3aa952bf2419d552efef60
-
SSDEEP
98304:NLojuXUOlvBZjypRFOy9E6tSqILjey90ylshHuEzlAwRvZ3W:NbXUA21ErjeByquwM
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries the phone number (MSISDN for GSM devices) 1 TTPs
-
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
Processes:
apnapuram.pk.sbisms2newdescription ioc process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone apnapuram.pk.sbisms2new -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
Processes:
apnapuram.pk.sbisms2newdescription ioc process Framework service call android.app.IActivityManager.registerReceiver apnapuram.pk.sbisms2new -
Checks CPU information 2 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/apnapuram.pk.sbisms2new/files/profileInstalledFilesize
24B
MD5d6e6aa5172899900405d0c7600a264c9
SHA167c87c73fda0745162b789ca721498e8dc0e1a71
SHA2562a45642dc73712f06aa43d5356ffdabd6d3fd066fb00b83f7bca4b84232677ad
SHA512529c6003e84aec35d755714772769aaddc30ca3de15d8fe1186857bf052a685f709b4c4a2c72bb6ab843b1f71ae420dcb23f4162f9c20867939abec61cd94fc8
-
/data/data/apnapuram.pk.sbisms2new/files/profileinstaller_profileWrittenFor_lastUpdateTime.datFilesize
8B
MD583cede5d63ca3e870f8dd95ca5b0ebd9
SHA183e0ec05c0de8afe9f56da453817f3273ca25bbd
SHA2567203068e31d52a97439a85193485d343f2ebe560b3ad959bfba3966ab6dba5e6
SHA512516aa5d7ac7752337b56d77579db8c6fedf2bf2d15d8e05df05dbb881a311f0881dd53fc24b57d4fc650b838e2963a0b295dfc5cf2064fb1e16b9d4df53a254a
-
/data/misc/profiles/cur/0/apnapuram.pk.sbisms2new/primary.profFilesize
1KB
MD5f96e9622d3d2df4be53fe52f1db85589
SHA1986e220f53015c179e01bac1f821a0ee6ac3ca62
SHA25696b182a06fb8db8537a25d904f85432e6d408a1359d16dc46d661e2d916632be
SHA51265895b968b514ca5c7967f880c6bffb9ef72bbf3e485d3a71ecef8b7c649dd0083c0f7e738f472c439c856f528b0e5ab2a4ebc81eef5334baeb263bce348077a