Analysis
-
max time kernel
5s -
max time network
132s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
30-06-2024 22:02
Static task
static1
Behavioral task
behavioral1
Sample
6994b3f3f47fab494713a37fe86407f9a955da9182bc16cc4e1588249d8a51f8.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
6994b3f3f47fab494713a37fe86407f9a955da9182bc16cc4e1588249d8a51f8.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
6994b3f3f47fab494713a37fe86407f9a955da9182bc16cc4e1588249d8a51f8.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
6994b3f3f47fab494713a37fe86407f9a955da9182bc16cc4e1588249d8a51f8.apk
-
Size
2.2MB
-
MD5
32d28ce837cb8d0f93ce685ebb92bb67
-
SHA1
9f7abf5fad06adef01afd538664a01b85f795174
-
SHA256
6994b3f3f47fab494713a37fe86407f9a955da9182bc16cc4e1588249d8a51f8
-
SHA512
7a20d0a9fa1020175a3fa660d2d4a9a2973c354e084e966bf6d2620c95555832d485b27a97ea25f08eda449d777eeca2606e1b9a0958667524c73dac044b160d
-
SSDEEP
49152:gFClMQuLoLTs75ITxCGtgMJFUUUYnqLMAkHODYik/ZEjJQfFsEH42yYL:kLoLT45I9CGHoYnCM9H2Y//ZEjSFsfWL
Malware Config
Signatures
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about active data network 1 TTPs 1 IoCs
Processes:
com.pickersoft.mywebdescription ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.pickersoft.myweb -
Checks memory information 2 TTPs 1 IoCs