Analysis
-
max time kernel
35s -
max time network
128s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
29-06-2024 22:06
Static task
static1
Behavioral task
behavioral1
Sample
3fbeeea1cb6b59144ed79537b6f20e8ebb295eecc35ed6dfa22743572c809d12.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
3fbeeea1cb6b59144ed79537b6f20e8ebb295eecc35ed6dfa22743572c809d12.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
3fbeeea1cb6b59144ed79537b6f20e8ebb295eecc35ed6dfa22743572c809d12.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
3fbeeea1cb6b59144ed79537b6f20e8ebb295eecc35ed6dfa22743572c809d12.apk
-
Size
4.5MB
-
MD5
ddbe89199458ac917f297b47b66d12af
-
SHA1
66e9b6eb444e3941a7c729b6581789b3f04790a6
-
SHA256
3fbeeea1cb6b59144ed79537b6f20e8ebb295eecc35ed6dfa22743572c809d12
-
SHA512
66d13016209ed3898e2db3dffda4fdca1e4196869b2fff1b8810b2e0f89df5e9763332edde5ba4f3afc334342d71e6ac43a4002ffdfe327e80301deb68327e11
-
SSDEEP
98304:8pi7lv9dsNQs9XfwosbeRdr07m2TUKwZ5+sPNPX1oTYr/M1p:fd9kpwosgrY2ZssVX41p
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Checks CPU information 2 TTPs 1 IoCs
-
Checks memory information 2 TTPs 1 IoCs
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/com.example.test/files/profileinstaller_profileWrittenFor_lastUpdateTime.datFilesize
8B
MD5ad5db2695ff302db0cf199d630e3f6b0
SHA148282b05a4e979a5bad9dd7a55fd561dded7fb91
SHA256bd20cad5986bd669da8282fb7f1b1c11e96a9aad92fd850cd7a9693b6d0f963b
SHA512fd73b61da10a54c279484af4730776741e25f987bee6b2d008b78791b6d921373df119a49cdf6e4a4dd0fbfd7ca958eecd91c44ed554e92052501b853bef766c
-
/data/misc/profiles/cur/0/com.example.test/primary.profFilesize
1KB
MD54ee3125c70faad60cb3ef7ddc16adb7c
SHA13c9c5394eb7cc8e7ffb36785aa6b4d1aa8b51713
SHA2569aafa0754eb79bce250741c1a7f08d7c2cd7c29b29c4359bb77c6f802a5a8d5f
SHA51276c6ccd57d185a193f97d956cb894dcb4e42f3acaa7b67fe9646966968f60d01ac38e6f3ae2e1de4c896e4f1638dfc76920b51245c750eab5bb50d867913d102