Resubmissions
28-05-2021 11:17
210528-98n6kth5d2 1026-05-2021 10:50
210526-evn7ed2fmx 112-05-2021 05:46
210512-xjx2668tbj 7Analysis
-
max time kernel
1595714s -
max time network
10s -
platform
android_x86_64 -
resource
android-x86_64 -
submitted
12-05-2021 05:46
Static task
static1
Behavioral task
behavioral1
Sample
63207_Video_Player.apk
Resource
android-x86_64
android_x86_64
0 signatures
0 seconds
General
-
Target
63207_Video_Player.apk
-
Size
4.8MB
-
MD5
610070fd9606cd862e36a4ecf0e1ba86
-
SHA1
a8f9bf273a1635c7a0ae90033209d1c287dfb312
-
SHA256
f763e121c8b36a65b131d4475ca3e55e2ae44f7089fde8cb873e3ea87a3da241
-
SHA512
91436091441df6d306f62f78bcd914f4d93c59c0e3830909337157f29c878e76bec5e101d8f0ca4f483e0b1323612010437d2ef8f7630e35256182396955a17f
Score
7/10
Malware Config
Signatures
-
Loads dropped Dex/Jar 2 IoCs
Runs executable file dropped to the device during analysis.
ioc pid Process /data/user/0/kick.front.parrot/app_DynamicOptDex/leqhF.json 3653 kick.front.parrot /data/user/0/kick.front.parrot/app_DynamicOptDex/leqhF.json 3653 kick.front.parrot -
Uses reflection 29 IoCs
description pid Process Invokes method java.lang.Object.getClass 3653 kick.front.parrot Invokes method android.content.res.AssetManager.addAssetPath 3653 kick.front.parrot Invokes method android.app.ContextImpl.getAssets 3653 kick.front.parrot Invokes method java.lang.Object.getClass 3653 kick.front.parrot Invokes method android.content.res.AssetManager.open 3653 kick.front.parrot Invokes method java.io.FilterInputStream.read 3653 kick.front.parrot Invokes method java.io.FilterInputStream.read 3653 kick.front.parrot Invokes method java.io.BufferedInputStream.read 3653 kick.front.parrot Invokes method java.lang.Object.getClass 3653 kick.front.parrot Invokes method java.io.BufferedInputStream.close 3653 kick.front.parrot Invokes method java.lang.Object.getClass 3653 kick.front.parrot Invokes method java.lang.String.getBytes 3653 kick.front.parrot Invokes method java.lang.Object.getClass 3653 kick.front.parrot Invokes method java.io.FileOutputStream.write 3653 kick.front.parrot Invokes method java.lang.Object.getClass 3653 kick.front.parrot Invokes method java.io.BufferedInputStream.close 3653 kick.front.parrot Invokes method java.lang.Object.getClass 3653 kick.front.parrot Invokes method java.io.FilterOutputStream.close 3653 kick.front.parrot Invokes method android.app.ActivityThread.currentActivityThread 3653 kick.front.parrot Acesses field android.app.ActivityThread.mPackages 3653 kick.front.parrot Invokes method java.lang.reflect.Field.get 3653 kick.front.parrot Invokes method java.lang.Object.getClass 3653 kick.front.parrot Invokes method java.lang.ref.Reference.get 3653 kick.front.parrot Invokes method java.lang.ref.Reference.get 3653 kick.front.parrot Acesses field android.app.LoadedApk.mClassLoader 3653 kick.front.parrot Invokes method java.lang.reflect.Field.get 3653 kick.front.parrot Acesses field android.app.LoadedApk.mClassLoader 3653 kick.front.parrot Acesses field com.android.okhttp.internal.tls.OkHostnameVerifier.INSTANCE 3653 kick.front.parrot Acesses field javax.security.auth.x500.X500Principal.thisX500Name 3653 kick.front.parrot