b5728080de8a6a1bdb8c3a2ff52ab88f81438415e0ea83b6c56c5b49bdec419e

Analysis

max time kernel
4051496s
platform
android_x86
resource
android-x86-arm
submitted
09/06/2021, 15:52

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

SM-Covid-19_it.softmining.projects.covid19.savelifestyle_V51.apk
Size

4.8MB
MD5

7f1873c2eb896783c84cc7e2dec41a20
SHA1

a4608ec1539d97bd72dd12ee774e916a0a8b492d
SHA256

b5728080de8a6a1bdb8c3a2ff52ab88f81438415e0ea83b6c56c5b49bdec419e
SHA512

45511fb980d80037384143176c627c0fb55c5f30ade635a18d92be64185f044d11cc16e91554865895d7a7a2143f97e31e2fa09a91f12ee098771176d52479d3

Score

7^/10

obfuscation

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user_de/0/com.google.android.gms/app_chimera/m/00000002/DynamiteLoader.apk	4914	it.softmining.projects.covid19.savelifestyle

Uses reflection 64 IoCs

obfuscation

description	pid	Process
Acesses field sun.misc.Unsafe.INVALID_FIELD_OFFSET	4914	it.softmining.projects.covid19.savelifestyle
Acesses field sun.misc.Unsafe.THE_ONE	4914	it.softmining.projects.covid19.savelifestyle
Acesses field sun.misc.Unsafe.INVALID_FIELD_OFFSET	4914	it.softmining.projects.covid19.savelifestyle
Acesses field sun.misc.Unsafe.THE_ONE	4914	it.softmining.projects.covid19.savelifestyle
Invokes method dalvik.system.CloseGuard.get	4914	it.softmining.projects.covid19.savelifestyle
Acesses field dalvik.system.BaseDexClassLoader.pathList	4914	it.softmining.projects.covid19.savelifestyle
Invokes method dalvik.system.CloseGuard.open	4914	it.softmining.projects.covid19.savelifestyle
Acesses field dalvik.system.DexPathList.nativeLibraryDirectories	4914	it.softmining.projects.covid19.savelifestyle
Acesses field dalvik.system.DexPathList.systemNativeLibraryDirectories	4914	it.softmining.projects.covid19.savelifestyle
Invokes method dalvik.system.DexPathList.makePathElements	4914	it.softmining.projects.covid19.savelifestyle
Acesses field dalvik.system.DexPathList.nativeLibraryPathElements	4914	it.softmining.projects.covid19.savelifestyle
Acesses field dalvik.system.BaseDexClassLoader.pathList	4914	it.softmining.projects.covid19.savelifestyle
Acesses field dalvik.system.DexPathList.nativeLibraryDirectories	4914	it.softmining.projects.covid19.savelifestyle
Acesses field dalvik.system.DexPathList.systemNativeLibraryDirectories	4914	it.softmining.projects.covid19.savelifestyle
Invokes method android.view.ViewGroup.makeOptionalFitsSystemWindows	4914	it.softmining.projects.covid19.savelifestyle
Invokes method dalvik.system.DexPathList.makePathElements	4914	it.softmining.projects.covid19.savelifestyle
Acesses field dalvik.system.DexPathList.nativeLibraryPathElements	4914	it.softmining.projects.covid19.savelifestyle
Invokes method android.graphics.FontFamily.addFontFromAssetManager	4914	it.softmining.projects.covid19.savelifestyle
Invokes method android.graphics.FontFamily.addFontFromAssetManager	4914	it.softmining.projects.covid19.savelifestyle
Invokes method android.graphics.FontFamily.freeze	4914	it.softmining.projects.covid19.savelifestyle
Invokes method android.graphics.Typeface.createFromFamiliesWithDefault	4914	it.softmining.projects.covid19.savelifestyle
Invokes method com.google.android.gms.common.security.ProviderInstallerImpl.insertProvider	4914	it.softmining.projects.covid19.savelifestyle
Acesses field android.view.View.mAccessibilityDelegate	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.ScheduledThreadPoolExecutor.setRemoveOnCancelPolicy	4914	it.softmining.projects.covid19.savelifestyle
Acesses field android.view.View.mAccessibilityDelegate	4914	it.softmining.projects.covid19.savelifestyle
Acesses field android.view.View.mAccessibilityDelegate	4914	it.softmining.projects.covid19.savelifestyle
Acesses field android.view.WindowInsets.CONSUMED	4914	it.softmining.projects.covid19.savelifestyle
Invokes method android.graphics.FontFamily.addFontFromAssetManager	4914	it.softmining.projects.covid19.savelifestyle
Invokes method android.graphics.FontFamily.addFontFromAssetManager	4914	it.softmining.projects.covid19.savelifestyle
Invokes method android.graphics.FontFamily.freeze	4914	it.softmining.projects.covid19.savelifestyle
Invokes method android.graphics.Typeface.createFromFamiliesWithDefault	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.net.InetSocketAddress.getHostString	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.net.InetSocketAddress.getHostString	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.net.InetSocketAddress.getHostString	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method com.google.firebase.analytics.FirebaseAnalytics.getInstance	4914	it.softmining.projects.covid19.savelifestyle
Invokes method com.google.firebase.analytics.FirebaseAnalytics.getFirebaseInstanceId	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.net.InetSocketAddress.getHostString	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.net.InetSocketAddress.getHostString	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.net.InetSocketAddress.getHostString	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.net.InetSocketAddress.getHostString	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.net.InetSocketAddress.getHostString	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.util.concurrent.atomic.LongAdder.add	4914	it.softmining.projects.covid19.savelifestyle
Invokes method java.net.InetSocketAddress.getHostString	4914	it.softmining.projects.covid19.savelifestyle

it.softmining.projects.covid19.savelifestyle
1⤵
- Loads dropped Dex/Jar
- Uses reflection
PID:4914

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads