79f485834e5fbd3df6a2209be3fdbaaa408838d77360e718d920627a35d52c7f

Analysis

max time kernel
265601s
max time network
51s
platform
android_x64
resource
android-x64
submitted
04-08-2021 06:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Downloader1.apk
Size

2.0MB
MD5

d297775574e652fe71347ae004c5bc12
SHA1

acb39ddb51c0951466399f90d85c8f0212847da5
SHA256

79f485834e5fbd3df6a2209be3fdbaaa408838d77360e718d920627a35d52c7f
SHA512

eef77bdebf3c4f66965e0d1440895c153a7b09d99bdb74a68f3c927b1c6ac568d94a5c0f59b3f176217829d804741a810c4b41cc06a5173de3b6576d7cc6bded

Score

7^/10

obfuscation

Malware Config

Signatures

Loads dropped Dex/Jar 3 IoCs

Runs executable file dropped to the device during analysis.

Processes:

com.test.inteligencia

ioc	pid	process
/data/user/0/com.test.inteligencia/files/73c4f53e.dex	3638	com.test.inteligencia
/product/app/webview/webview.apk	3638	com.test.inteligencia
/product/app/webview/webview.apk	3638	com.test.inteligencia

Uses reflection 4 IoCs

obfuscation

Processes:

com.test.inteligencia

description	pid	process
Invokes method dalvik.system.CloseGuard.get	3638	com.test.inteligencia
Invokes method dalvik.system.CloseGuard.open	3638	com.test.inteligencia
Invokes method android.security.NetworkSecurityPolicy.getInstance	3638	com.test.inteligencia
Invokes method android.security.NetworkSecurityPolicy.isCleartextTrafficPermitted	3638	com.test.inteligencia

com.test.inteligencia
1⤵
- Loads dropped Dex/Jar
- Uses reflection
PID:3638

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.test.inteligencia/app_webview/.org.chromium.Chromium.tU9kMo
MD5
de730f3a7715c119791c1c7590ca75de

SHA1
3136a937f8f8d9fcb37e4711d8266bbac11c8804

SHA256
5a27914f655c9e30525369339d45f87838bb9ef921ea5429b5ef75b7168fbffb

SHA512
927f454e7070bc61f2fc8386ee7c2823defbb3cdad13f69763a4916ffa20880a162083f05e5fdd6340323373aa7be37c5281847cb315aebe7979ab16ab4502dd

Download Submit
/data/user/0/com.test.inteligencia/app_webview/Web Data
MD5
dfea4f9a562d22c658ec695eca31ea04

SHA1
2e48be6baf86078d93f14fc38fe9f395c1c54261

SHA256
a01b4f35e09bbcdf9753512d4d3ac0b82c8e2f09e2176fa4a5c2523909795b2b

SHA512
8e0aab3c5f29a8737b4713b4a1622aa71b3574feabfb41a098f1326b80472c3fea053e759036c44df71aee1a8a1e9caf93f17a9eec88ab278062d7ed48907789

Download Submit
/data/user/0/com.test.inteligencia/app_webview/Web Data-journal
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/app_webview/metrics_guid
MD5
d6f8e96d025a20b5634c39cd99e856ce

SHA1
8bf0478ba71d80a0b1168792206f05928171fb7f

SHA256
2bf5f3b09e954ffa5b15f92bfb5d88450bd482800618a0c3d23e075f76db0e1b

SHA512
18e91e3940766eedcc052ccf90410e15140fcd5f46722870dd6600f4e33ab5635b5f023c16fb6c3e687de32c3ee577bdcea7092ed23b6eac0585045b96af87af

Download Submit
/data/user/0/com.test.inteligencia/app_webview/metrics_guid
MD5
d6f8e96d025a20b5634c39cd99e856ce

SHA1
8bf0478ba71d80a0b1168792206f05928171fb7f

SHA256
2bf5f3b09e954ffa5b15f92bfb5d88450bd482800618a0c3d23e075f76db0e1b

SHA512
18e91e3940766eedcc052ccf90410e15140fcd5f46722870dd6600f4e33ab5635b5f023c16fb6c3e687de32c3ee577bdcea7092ed23b6eac0585045b96af87af

Download Submit
/data/user/0/com.test.inteligencia/app_webview/variations_seed_new
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/app_webview/variations_stamp
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/app_webview/webview_data.lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/cache/WebView/Crashpad/settings.dat
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/cache/org.chromium.android_webview/Code Cache/js/index
MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
/data/user/0/com.test.inteligencia/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/files/73c4f53e.dex
MD5
aefc20d81c7b9ebe3f507224c070a927

SHA1
9f9ed4e377d81bf47a0a858d07b99755b7a37158

SHA256
a92d0d67a617aa61f166837ecf3d75f14fa83e82cb411dee4c9d5ba4b22cd9ee

SHA512
45240e0897f75236c3b0061135288928df6f2d40c284f6b6bafafd30662f9c64faa8fba5280852a2aac6d50b46080eead1789e572dce20082df5736142b7be65

Download Submit
/data/user/0/com.test.inteligencia/files/73c4f53e.dex
MD5
af8cd8ab638f38c6d717d755f1a01b18

SHA1
6759747af33272533d71e8468008dd269ea66f9e

SHA256
73211cb6e87c0b13d233a2d8c610039943f52a6e43b1cb00ae139d9accc2e816

SHA512
53b9412f989d8633acedb4aa1426d070429305870ae1d7cc460e11874a54667a83c7a3b8ea07c3b3073f8bb8b6b0f1a1567c800f904e21dd972fe1b6aab2d55b

Download Submit
/data/user/0/com.test.inteligencia/files/BGEaUZrY
MD5
d6a6d610f266d8ee7008e290e03ea2b4

SHA1
a1802464bb9d4500ba1d10802740a6eccd63778d

SHA256
c6084bf350fa3e51213bad13b9341d1e91bf8ae3a589ba3c154a351562642785

SHA512
e9142e4f8cbdf9bbf00b5231c59635c3d7348fd2cbda5f29ea0254b364967c1994879200e9aa4864a8c11a9ac859ad264fdf04f9d1d0af726f3b4a1136d0b0e1

Download Submit
/data/user/0/com.test.inteligencia/files/TrPJFdsN
MD5
71b9a48d5bbbf3c0ced78137ea45d46f

SHA1
8f5902e8f6a897c142a74f61766aec113f9740f8

SHA256
b4221bfd0aaeeb7667087a726b394dcec7d70aa02909ecd32405c64bfa9f4228

SHA512
608943eebc354b772f18b64c8410946023b35d3c8c0f0a012827c3cabf47d883b2d76e35fe02d11ee4cf11b853bd3683752d153da6381e60e01d7c8af5665ffa

Download Submit
/data/user/0/com.test.inteligencia/no_backup/com.google.InstanceId.properties
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/no_backup/com.google.android.gms.appid-no-backup
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.test.inteligencia/shared_prefs/WebViewChromiumPrefs.xml
MD5
1357a1d7af06755d561a7ed916373baf

SHA1
4a0a0d8b4b81bba92924dd7cf53a44d438312729

SHA256
647f3960ac648b24a8d9fa17f93f625437bd6f385636c56f10fefdd9cd447597

SHA512
61f15a595e21cb7cbf0b1a5268da72b39ce767e43195b4b1a607125e6e1d3237aa382cffbeb122bee9111f01a61ed4aebc2bef6fa646891f43154b01c32d05d4

Download Submit
/data/user/0/com.test.inteligencia/shared_prefs/com.google.android.gms.appid.xml
MD5
9985fc13629c927621268af25c315159

SHA1
2f39e9f1f6d109ad7f48d54dee916ae6cdd4e1ef

SHA256
f9eae247a2ee56f754d8b3ff179a1453a67ef8866986d70adacc7db436768b5b

SHA512
276a2bb5be34d406f37f4ea1242628d2f614f157505060ad1ed1081571d4a302de6554d22d7eed03d1abe2fe03be0ab9b4b5ec3d4a5376cd870b871ef6b2fad7

Download Submit
/data/user/0/com.test.inteligencia/shared_prefs/com.test.inteligencia_preferences.xml
MD5
c7b48e364fd15efd2f645e74691a9b22

SHA1
72694a8e7154312cfdf2c6302628b67d5d41d152

SHA256
4cc0ecccdb608467df2ada299e0205ce9312ce4f448b209c9cc8115472b434d1

SHA512
76dcb4d4f49e64a7d24d492fd7c1282956658bce38fbfc6ba86555383858cb8d2e36c4b948e29922e65ccb06fa44d19d1df6575268b61ae554db9a61eccee6c1

Download Submit
/data/user/0/com.test.inteligencia/shared_prefs/com.test.inteligencia_preferences.xml
MD5
a2189e27e8ff942940b8d4e979e5e04b

SHA1
95c8d6787028a4e1eaf969c933ff62caa4b214b6

SHA256
41525b13c6747b671308bb52074b47805236f0262775849d3e9c0898e6a192d1

SHA512
4d8bab70b298168dddd89ee327f5b66b0bd82a276fa03c144afd82c3dbb254f15ec6507cb0025f1b1ac110a9780a73c8b6dd7ba9584e7ec8e5588450052cd6ef

Download Submit
/product/app/webview/webview.apk
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/product/app/webview/webview.apk
MD5
40e61bace188b6603d53fc3d8916a3f8

SHA1
74f7fd19aedc55977c79fa40230977ce4827cb03

SHA256
6ede39de8efb9d2f0a2c467f4c9e303b03236e9c6917fb4d6fa2ef3b5d15090e

SHA512
12f8424d5616774cf98c4955f9bd80e9967cc944d1ffee1a4cd6ec6f4e4fbf402030c58dde9480057c3d7e3c6805c6edccf77825a024dc87841783a5644b68af

Download Submit