b7f56ee554b10405edcbe625fdf91cbd38517948b4607d05af4370d36796db9c

Analysis

max time kernel
286275s
max time network
151s
platform
android_x64
resource
android-x64-arm64
submitted
04-08-2021 12:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b7f56ee554b10405edcbe625fdf91cbd38517948b4607d05af4370d36796db9c.apk
Size

1.9MB
MD5

77e2a0b5bebdedeca1c3b3846ef66020
SHA1

b74412b01e10d1a73320bbff35b378c74b02df6b
SHA256

b7f56ee554b10405edcbe625fdf91cbd38517948b4607d05af4370d36796db9c
SHA512

69ff30d589b6bff9d37f7cf6af6f8f817dffa7a6188c8f08bd1d3f696ce31ac029583e84fd1ddf38ff1275ea15ca3cfafdc93b86eb7706c79921691d68c8c429

Score

7^/10

obfuscation

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.

Processes:

com.pstexk.hqtxdxkd

ioc pid process

/data/user/0/com.pstexk.hqtxdxkd/code_cache/secondary-dexes/base.apk.classes1.zip 4187 com.pstexk.hqtxdxkd
Requests enabling of the accessibility settings. 1 IoCs

Processes:

com.pstexk.hqtxdxkd

description ioc process

Intent action android.settings.ACCESSIBILITY_SETTINGS com.pstexk.hqtxdxkd
Tries to add a device administrator. 1 IoCs

Processes:

com.pstexk.hqtxdxkd

description ioc process

Intent action android.app.action.ADD_DEVICE_ADMIN com.pstexk.hqtxdxkd

ioc	pid	process
/data/user/0/com.pstexk.hqtxdxkd/code_cache/secondary-dexes/base.apk.classes1.zip	4187	com.pstexk.hqtxdxkd

description	ioc	process
Intent action	android.settings.ACCESSIBILITY_SETTINGS	com.pstexk.hqtxdxkd

description	ioc	process
Intent action	android.app.action.ADD_DEVICE_ADMIN	com.pstexk.hqtxdxkd

Uses reflection 3 IoCs

obfuscation

Processes:

com.pstexk.hqtxdxkd

description	pid	process
Acesses field com.android.okhttp.internal.tls.OkHostnameVerifier.INSTANCE	4187	com.pstexk.hqtxdxkd
Acesses field javax.security.auth.x500.X500Principal.thisX500Name	4187	com.pstexk.hqtxdxkd
Acesses field javax.security.auth.x500.X500Principal.thisX500Name	4187	com.pstexk.hqtxdxkd

com.pstexk.hqtxdxkd
1⤵
- Loads dropped Dex/Jar
- Requests enabling of the accessibility settings.
- Tries to add a device administrator.
- Uses reflection
PID:4187

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.pstexk.hqtxdxkd/code_cache/secondary-dexes/MultiDex.lock

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/code_cache/secondary-dexes/base.apk.classes1.zip

MD5
13a9166833a5111a81f51acd281936a1

SHA1
0beeda7e569c01cf1241e8d216608af603b1275c

SHA256
2e75af125ea0b7657243af69b9055b6311905b4c81f625a83ba437b80ba5eb79

SHA512
d913084e86c1445d05c451f7360812055f681d552287f156f62d477606ca3ee367809a1081be9eb05f48522702e88831c72b11e0e0c6225d504bd88974be95d2

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/code_cache/secondary-dexes/tmp-base.apk.classes2245356179982869884.zip

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/shared_prefs/com.pstexk.hqtxdxkd.xml

MD5
396bbecfdcb4f8956546ff2d8db0cc70

SHA1
638bc1adb9c09d8e3db7050d1110ca17dca45581

SHA256
f66b9f5d1a0f8f2464cc55fe45f77beba1082ef993505da145a6e38900b96d2c

SHA512
5b7882e5c4dcbadb8bce51130dece25c0fd3b61fa7ce0c02b769d5c597bd585a5de7680f8909a6ce7320538b05287be02b764781e250ad424435675924467f95

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/shared_prefs/com.pstexk.hqtxdxkd.xml

MD5
b0e45758d74245e9101378fc17f34452

SHA1
e4964980b9a9eca32d905c277a399c4e7a298e8e

SHA256
439e8ca5d27cd03d4eb976738993d809412ed3746a1e1e50b1d33a8b0520dbfa

SHA512
59fb45a78d153db22dce0eb17614ba59d48ebee06c080acdc554e79eb2183b64e8abbfa25d0710dd16fc9ca4f3bc01a4f864bf606c30b81642aaaf9ec0a66109

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/shared_prefs/com.pstexk.hqtxdxkd.xml

MD5
11ea2f909be0f54d70405d7d8aa47469

SHA1
654e5fb32b3ca7bd57b26435540f4e6b277cc087

SHA256
beb64a65cf3f324f36be43c75299c5c69aaf644690d2fb5e86346127736e13b4

SHA512
db6c20b53c5e10f1139428719e1f035cf14bc3420df3db05366955fd4d029ee5ae813d4a536e503cc1acd0affa9b8af3d2db386dc2f8862d3437f365ac08335e

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/shared_prefs/com.pstexk.hqtxdxkd.xml

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/shared_prefs/com.pstexk.hqtxdxkd.xml

MD5
da2c39cea9bcf1e803426c100eb96ae0

SHA1
d8367ce9e0585b64895d542d32c970389b9a85e7

SHA256
f8f5b5962a2a96ce4c06af0a697758a32393cd736fb0526fdf0b8af624729437

SHA512
8fcacc7a46fa1300d656159806ba6fdc6fd9c722f1fc0e8c7a6ee6c7c9f1a4dfc7a82c9b921fcee7afb2b73aa37c38768b2ce7b110a6ccf622b4b97a0d1ff8ab

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/shared_prefs/com.pstexk.hqtxdxkd.xml

MD5
938fd36a6cb13e5bed34550d3481883b

SHA1
986a87b61b18f3333b8a0b485e7987676fba927e

SHA256
e438cb4bd28454f2e7e7d7e6af3f942d8d52ba7d9058cf0995844b7816776e99

SHA512
0209c32285fe47e58bf6bbc1921e489cadc4fe317e2c7cbea1af3f13c9c42c5a47887932edd08fb4cc73459239bab555c484bd4a800bab1aa86ee110ddf38c58

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/shared_prefs/com.pstexk.hqtxdxkd.xml

MD5
61419d529a74c951ba4e6e2008fa3418

SHA1
b776a2126c46cb8cd55e9407cfcbc32c7518b140

SHA256
98ee6fe8d4c782dd991e4cf7c79eb316c05198f97eae236a5de613d78ceb116f

SHA512
4234d95e2b438337a44d7d2c8f1d22df23241e26dd4fe3d5cf2771cc794558ddad93d8fde34fa8ec23aab8528ae8b8664e84961a000417dea4c23fb9b38293f5

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/shared_prefs/com.pstexk.hqtxdxkd.xml

MD5
8fd3591f4ee49f1c35c289d39e88193b

SHA1
c90e25be5c83936d59160138bb0d9f60837f327f

SHA256
1ad28c5dfdec1ecea01a1006716ba0a2ee8b4ca7c3f5dcc29ca162f69ab67f49

SHA512
6f992bcb9cc2f72d8449a650852f0fae354dae075e60e45953f95c98bbfa3dfb80ef14fc2e14c76642963d820fdc258c2db40722e9c190262b899ab96f7b338d

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/shared_prefs/com.pstexk.hqtxdxkd.xml

MD5
3410909dddbc929aedbd6a5f9be51792

SHA1
94adb5a4e19e631fd78ced40c974ad711815b7bf

SHA256
390fdbe1a9049e5f31f9656b1cd0e7041690dcf5d5b37c7278a5944c5041543d

SHA512
b46a9697c7eb5c77483f317a2a49b79f638ba05929a7b03075dc071141d096a75151970286cc74a19c8cfcf0b989f8b1b5285ad72eec859b6bb05d69504611e4

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/shared_prefs/com.pstexk.hqtxdxkd.xml

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pstexk.hqtxdxkd/shared_prefs/multidex.version.xml

MD5
1d9c4ec42700a7540cee6842b0259367

SHA1
ce81aa638de8826aba8d1ed1bde72a5a51775d6a

SHA256
43c874e4dfabc799bd09f21c1f0aa773e6667d7eb07a27b99ebb37a3a51aa9a5

SHA512
2b7414c99f51cba74293d81519322506f21778048aadbf20e6980fa4a8a38fe84070d34d99726fe026d9c87bb96f9c68a6ad2cc0d591f9428b809f86b9fb7dbb

Download Submit