22c4c4a858675eded06684667cb7d325477af8a3dde8f55c10e765cfd65ea797

Analysis

max time kernel
277627s
platform
android_x86
resource
android-x86-arm
submitted
04-08-2021 09:40

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Download.apk
Size

2.0MB
MD5

98be798cc5f3e4ccb3a92cc24c9bab79
SHA1

e813dc8498fe8a115b5d023878bbad48f6206108
SHA256

22c4c4a858675eded06684667cb7d325477af8a3dde8f55c10e765cfd65ea797
SHA512

3841dbe18c81262f5679684cb854bffd49107dc44d35d3fa16f506fb6fc1a231c818f1eff1a90e12ecaf156eb37b9479e8a1080d6e8e72fa8c0fe7d0e022a47a

Score

7^/10

obfuscation

Malware Config

Signatures

Loads dropped Dex/Jar 2 IoCs

Runs executable file dropped to the device during analysis.

Processes:

/system/bin/dex2oatcom.pix.art.TSR

ioc	pid	process
/data/user/0/com.pix.art.TSR/files/c73172c6.dex	5045	/system/bin/dex2oat
/data/user/0/com.pix.art.TSR/files/c73172c6.dex	5018	com.pix.art.TSR

Uses reflection 4 IoCs

obfuscation

Processes:

com.pix.art.TSR

description	pid	process
Invokes method dalvik.system.CloseGuard.get	5018	com.pix.art.TSR
Invokes method dalvik.system.CloseGuard.open	5018	com.pix.art.TSR
Invokes method dalvik.system.CloseGuard.get	5018	com.pix.art.TSR
Invokes method dalvik.system.CloseGuard.open	5018	com.pix.art.TSR

com.pix.art.TSR
1⤵
- Loads dropped Dex/Jar
- Uses reflection
PID:5018

com.pix.art.TSR
2⤵
PID:5045

/system/bin/dex2oat
2⤵
- Loads dropped Dex/Jar
PID:5045

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.pix.art.TSR/app_webview/Web Data
MD5
5168d8c4556ac22decc2362ce61ddafb

SHA1
664cb3c7b0b5b13c3b915c28354793bcc0afd408

SHA256
5057cf5dab27589d93f7d55ffa505ea8249c213b79fd8c85ac39423c135c5db6

SHA512
81cefa22b3b1d30acf590b44b97a47b68c265a15b3725ff348ac0256faae0aa76b6a9bedece897c912bbcc86623c3a20c193ff131d9a25d0ee8e315394ae332d

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/Web Data-journal
MD5
326772f72867b06fc22b579af1535d49

SHA1
77a5cde1f59c52d39cecf0e721244a0922564f5f

SHA256
20d737cb67524c3ccf857bd707e24bbb125c19f167a8c7723414a1286ebc74ef

SHA512
a3d83a66d288171d7ab0e9cb333f2ce81656c6e60c456a6bb6d464a3e7e055eb48d465cc93b2bd667a4f9ed32991227e6a1a74fed92804c597044111db121f36

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/metrics_guid
MD5
42d76ff815b23d71822f1fd97214865e

SHA1
5c4b98992de9711e669653ab88ab26179bf4ff47

SHA256
c680ae2110906c7da331d5f8a2ea89d565eb09de017c41542a2a7c0ade20a3be

SHA512
4cb749d0065c8ab3e782e88d1e6bd01705557c631b5886469618b85e59e0fbe9831a4b069152568dfd806f5ec0503105720b78456a22d5f4f9bbe546093a205c

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/metrics_guid
MD5
42d76ff815b23d71822f1fd97214865e

SHA1
5c4b98992de9711e669653ab88ab26179bf4ff47

SHA256
c680ae2110906c7da331d5f8a2ea89d565eb09de017c41542a2a7c0ade20a3be

SHA512
4cb749d0065c8ab3e782e88d1e6bd01705557c631b5886469618b85e59e0fbe9831a4b069152568dfd806f5ec0503105720b78456a22d5f4f9bbe546093a205c

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/variations_seed_new
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/variations_stamp
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/webview_data.lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/files/BGEaUZrY
MD5
1f2cbb83566ea681ff5e5b695ce5e1f4

SHA1
5a852e231d28b9a8f3a2f13aa675bb0eae79d13d

SHA256
fe408c9fedebb2cccf0697c0373b91ca72407447ed022cb84b346bcac8b7a9f9

SHA512
77aed9fd1bdff43e838a871559b58cba3d8bc924581eb975d832a747b7e77fe4adcc329b87fd22550fa57e501fb94e250d782572a0c465988f8c8a5754416a14

Download Submit
/data/user/0/com.pix.art.TSR/files/TrPJFdsN
MD5
0d26dada987ea9668b75146ad5247585

SHA1
d90cfd382ce1a3e4b12777047e2285930f40e237

SHA256
9b1887e69bb76132a61d3346a608e0c430c28ef0a23539f700cc66cfd7ac814c

SHA512
2f40e3ad9f73cb2c927203adf392299d8278d2c0d1f1508aa3695486c93e7da1af23eff9f9c1983e8ead298041958bb2074220013fbc6eef73285f7fd2f43ef8

Download Submit
/data/user/0/com.pix.art.TSR/files/c73172c6.dex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/files/c73172c6.dex
MD5
642b96e2d0a3d65e461cc6c142d15a35

SHA1
b4c3f364f8b69cf8d9a2c83eff9f7feec803588c

SHA256
cb409e01a9885f2a3b5d47e2abf1c59cbe1109824c20cfdf4609f60dff3af8b6

SHA512
bb075b3efbdf0b54076806ef2746d8be7811c9234bda0f467ac64e82ede0cbdd9d435ef6d7aac2c8296f2d27cdd2693d0b4d98f1d35491b9c82e83fcaed92c61

Download Submit
/data/user/0/com.pix.art.TSR/files/c73172c6.dex
MD5
bdd2c4c5b6c3d7071918399d7a1db86f

SHA1
22316ffa8ec82968af8bcee44772dded7e775790

SHA256
a8e19f3bfdb9052d92c5ed80c6395009e657a5eeaff78d9e51d699b7e0560544

SHA512
e669293d6c8861a29b640e5731f978c6df7d86602dc0f075c4ac3cdd4a295b0cbba8cfb0793c5ab46087732887754ddbef4dec907d4a2f3253e4592e467a4aca

Download Submit
/data/user/0/com.pix.art.TSR/files/c73172c6.dex.x86.flock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/files/oat/x86/c73172c6.odex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/files/oat/x86/c73172c6.vdex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/no_backup/com.google.InstanceId.properties
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/no_backup/com.google.android.gms.appid-no-backup
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/shared_prefs/WebViewChromiumPrefs.xml
MD5
21223e9184445fe043476484cd8cb1f9

SHA1
2b4813f849121d60ba35eb0889080668bb62c778

SHA256
bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

SHA512
be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

Download Submit
/data/user/0/com.pix.art.TSR/shared_prefs/com.google.android.gms.appid.xml
MD5
e119fecc712352d0e1bf89fba3e2a11a

SHA1
bd88caba5ffcedb4bf09e6b6e5690c780fc5189f

SHA256
f64f946044fc14d0758344b378dda884e6eaa21a9b3cb6ba1d1065f0f570f580

SHA512
e1c190111f20a7a674318f1005d551958563d3183073268cf8c1c2c376e8018491295191bad101b3857ec7528da3b5af8df3d7854fefc95d54b4cd8a0f74daab

Download Submit
/data/user/0/com.pix.art.TSR/shared_prefs/com.pix.art.TSR_preferences.xml
MD5
c09ef2e8dc4b2c35c2c26f1a81a26c0f

SHA1
29d802faff586f677fd0e686b4caea1e22246fc6

SHA256
60af897e0a162491ceb9e5320617aac4e1eef27655efca43ffb3d32418e3cffb

SHA512
b46a46e36f65a0715bf3bf2c4ac4d5585973efec049837a9443878a8d62e9556193f48b107f3cdb3cfb837e5cc50a0e76a540584f9e87c923ca3838ebb8934e0

Download Submit
/data/user/0/com.pix.art.TSR/shared_prefs/com.pix.art.TSR_preferences.xml
MD5
463e251a2166ec4a9e87c7d17f2849f9

SHA1
f9bc45b12645d28cd6c582f886cda27eb91ad70a

SHA256
369a1227f330a1d05b898b52d44aab1f6f07028658a0c7d7400940f9ece2e748

SHA512
a75d3817a3787f49dd6e214eb87b4af0354f80cc9c9a778b1befa56051396ce9f65752a982dbd6139fffb4203dd11b2c87b6f9966456049c48b917c59a724c93

Download Submit