79f485834e5fbd3df6a2209be3fdbaaa408838d77360e718d920627a35d52c7f

Analysis

max time kernel
265607s
platform
android_x86
resource
android-x86-arm
submitted
04-08-2021 06:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Downloader1.apk
Size

2.0MB
MD5

d297775574e652fe71347ae004c5bc12
SHA1

acb39ddb51c0951466399f90d85c8f0212847da5
SHA256

79f485834e5fbd3df6a2209be3fdbaaa408838d77360e718d920627a35d52c7f
SHA512

eef77bdebf3c4f66965e0d1440895c153a7b09d99bdb74a68f3c927b1c6ac568d94a5c0f59b3f176217829d804741a810c4b41cc06a5173de3b6576d7cc6bded

Score

7^/10

obfuscation

Malware Config

Signatures

Loads dropped Dex/Jar 2 IoCs

Runs executable file dropped to the device during analysis.

Processes:

/system/bin/dex2oatcom.test.inteligencia

ioc	pid	process
/data/user/0/com.test.inteligencia/files/73c4f53e.dex	4877	/system/bin/dex2oat
/data/user/0/com.test.inteligencia/files/73c4f53e.dex	4846	com.test.inteligencia

Uses reflection 4 IoCs

obfuscation

Processes:

com.test.inteligencia

description	pid	process
Invokes method dalvik.system.CloseGuard.get	4846	com.test.inteligencia
Invokes method dalvik.system.CloseGuard.open	4846	com.test.inteligencia
Invokes method dalvik.system.CloseGuard.get	4846	com.test.inteligencia
Invokes method dalvik.system.CloseGuard.open	4846	com.test.inteligencia

com.test.inteligencia
1⤵
- Loads dropped Dex/Jar
- Uses reflection
PID:4846

com.test.inteligencia
2⤵
PID:4877

/system/bin/dex2oat
2⤵
- Loads dropped Dex/Jar
PID:4877

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.test.inteligencia/app_webview/Web Data
MD5
5168d8c4556ac22decc2362ce61ddafb

SHA1
664cb3c7b0b5b13c3b915c28354793bcc0afd408

SHA256
5057cf5dab27589d93f7d55ffa505ea8249c213b79fd8c85ac39423c135c5db6

SHA512
81cefa22b3b1d30acf590b44b97a47b68c265a15b3725ff348ac0256faae0aa76b6a9bedece897c912bbcc86623c3a20c193ff131d9a25d0ee8e315394ae332d

Download Submit
/data/user/0/com.test.inteligencia/app_webview/Web Data-journal
MD5
22ac09424f1f70480df7871f574592d8

SHA1
5599fe28812dda3b2b84e2bd3a2d163f7bc51256

SHA256
c877ecb8ef6e3226aa94412fdb2a46e2617f9de4505f94e624c1d657574358cb

SHA512
100731f5c9773261e11febdc9df41543adf057f7aa571d21b12d153e127d95ddf2bee03c891531654f7b1a6fc2d1a3d82296492d97c979930f56f0644bf65f99

Download Submit
/data/user/0/com.test.inteligencia/app_webview/metrics_guid
MD5
558d3e958b5003f0a7fc7d94bc362a72

SHA1
2410d9daea4dfcbffab7189e11e93ca486aec2ab

SHA256
aa544b68eff8b8ed5f5acf065214a3e88bb9d5f81a90ebd8e93bf9c1fd3720a1

SHA512
9c5df145c3b99756f99b9aba05ba9a07fe95a9d5cd6de48b4c5a6ece397888cd6465d31e8a947d8b19c1144df232447a01cc8aac8a8965f2cc99492726c97ee9

Download Submit
/data/user/0/com.test.inteligencia/app_webview/metrics_guid
MD5
558d3e958b5003f0a7fc7d94bc362a72

SHA1
2410d9daea4dfcbffab7189e11e93ca486aec2ab

SHA256
aa544b68eff8b8ed5f5acf065214a3e88bb9d5f81a90ebd8e93bf9c1fd3720a1

SHA512
9c5df145c3b99756f99b9aba05ba9a07fe95a9d5cd6de48b4c5a6ece397888cd6465d31e8a947d8b19c1144df232447a01cc8aac8a8965f2cc99492726c97ee9

Download Submit
/data/user/0/com.test.inteligencia/app_webview/variations_seed_new
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/app_webview/variations_stamp
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/app_webview/webview_data.lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/files/73c4f53e.dex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/files/73c4f53e.dex
MD5
9f2030a7bf325953dbddfde917d6823a

SHA1
50871d10cdaf94c5586df6b55197e155fe342e0f

SHA256
299753590db8bdc98959de788c9511dc2424f8dfe5b47064e28835827f7324e4

SHA512
16764f678c6476ee21d541467c321fb7c9b659a156cc046547f1bcc24e51e3198af258f6fecd52a8630133b68f647bab73d2f32073d1b2ed6669330d654b6d98

Download Submit
/data/user/0/com.test.inteligencia/files/73c4f53e.dex
MD5
9f2030a7bf325953dbddfde917d6823a

SHA1
50871d10cdaf94c5586df6b55197e155fe342e0f

SHA256
299753590db8bdc98959de788c9511dc2424f8dfe5b47064e28835827f7324e4

SHA512
16764f678c6476ee21d541467c321fb7c9b659a156cc046547f1bcc24e51e3198af258f6fecd52a8630133b68f647bab73d2f32073d1b2ed6669330d654b6d98

Download Submit
/data/user/0/com.test.inteligencia/files/73c4f53e.dex.x86.flock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/files/BGEaUZrY
MD5
b36d726409495593492a8cb83dc5f957

SHA1
4a67c05a070d79f96d9d69f91d69768dc0421066

SHA256
8d65caf50480cf694e4750bc2e2d7721798d6abd205fb9f4f5750ee86e723692

SHA512
d087c8cdc0287c53960880affec6705c0ff242907725c68bf1352d6b98d18e5b739d843b7e2bc87f0dcc04c369d6fabfcb779ce6211a18d448b6b18933cb6c8a

Download Submit
/data/user/0/com.test.inteligencia/files/TrPJFdsN
MD5
27ba19805d52e788ce7ee21d6f82137c

SHA1
36bd2c6b725254b966fb8fef828b4f6f9e41d283

SHA256
c4fb4c4feb09b15b40b6334bccfac10657db63fc94b0043b35cc7173b43993bd

SHA512
c35fe911c13605de5441b5829a925e433bdd8b64c4d076562b07c8d3d6f2ed8bd72273fa7eecb17b946d4ef2584d550d4ac67871822b986f7529c014b0def34c

Download Submit
/data/user/0/com.test.inteligencia/files/oat/x86/73c4f53e.odex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/files/oat/x86/73c4f53e.vdex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/no_backup/com.google.InstanceId.properties
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/no_backup/com.google.android.gms.appid-no-backup
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/shared_prefs/WebViewChromiumPrefs.xml
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/shared_prefs/com.google.android.gms.appid.xml
MD5
bcb9c2298212f8000eca4e9c74698109

SHA1
c9abac7e120c6e671f16346f7565e0e410a8e104

SHA256
69da97a9f64adda2025ac84185dd0d2a75eff6abffdc5fd7ac8d6bf24bdb6af9

SHA512
bbb86f20c0087b3e6246afc096be1706d9a42f66e0d4a5fa76a4fcd8c8ab5732893b3ab4c6b202727c528e392087ac63c1e1a5a2a5aacea82a04e08b8d8c03ed

Download Submit
/data/user/0/com.test.inteligencia/shared_prefs/com.test.inteligencia_preferences.xml
MD5
c03bf7de10ae045ce7e11ebe7f174cd3

SHA1
d3ad9988e0c71dc1c257eeb5d0b4bef9667ca3dc

SHA256
a830a84c001685683344053fc34832adf11877cec1cf5f2cb340eb408ff9dfa3

SHA512
16888d5205c2784b91dc72828dfdd608936ff9c398e4f3f0e954bca9fc9c37674f7bc4b60cb854f98cdee9cbeaafa8f2815c0c1d259f272db952bf59481eed1e

Download Submit
/data/user/0/com.test.inteligencia/shared_prefs/com.test.inteligencia_preferences.xml
MD5
10be47dcccf33d7ee06788a30e310544

SHA1
3c8cef88f961ff8f8ccbbd6af99e8fc42e9bdf4e

SHA256
c5d9674da93c4de73cc346bf3104297efebdd82ed56db3fc9c5f2d4fb0d69895

SHA512
aeeb39c77e57d7f394e6fc80b60867d38950bde995822e9b9a137bb313d2f78e182cf441b6875de9e77898fce1080474a77d0609184c662bfc5477ed5b686821

Download Submit