319d3a10c72d81ac09dc525199966586a211f0b10405f9e7957e40adf1d65bcb

Analysis

max time kernel
264830s
platform
android_x86
resource
android-x86-arm
submitted
04-08-2021 06:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Download(2).apk
Size

2.0MB
MD5

fda59dd3baf55fac67d6123ea64d29e8
SHA1

88ee2246f6e7790179a152b6e95ba55a3fa4cdac
SHA256

319d3a10c72d81ac09dc525199966586a211f0b10405f9e7957e40adf1d65bcb
SHA512

d7951206533b0af93cbd1e0c1b502d37a6df0639ee6b7430a2bbc4522f25b5cb8ffeace104b1db06ddb9a403cb6b0fb45d396bee88b9b20f4e2ffca8e7c0c7f0

Score

7^/10

obfuscation

Malware Config

Signatures

Loads dropped Dex/Jar 2 IoCs

Runs executable file dropped to the device during analysis.

Processes:

/system/bin/dex2oatcom.pix.art.TSR

ioc	pid	process
/data/user/0/com.pix.art.TSR/files/c73172c6.dex	4896	/system/bin/dex2oat
/data/user/0/com.pix.art.TSR/files/c73172c6.dex	4856	com.pix.art.TSR

Uses reflection 4 IoCs

obfuscation

Processes:

com.pix.art.TSR

description	pid	process
Invokes method dalvik.system.CloseGuard.get	4856	com.pix.art.TSR
Invokes method dalvik.system.CloseGuard.open	4856	com.pix.art.TSR
Invokes method dalvik.system.CloseGuard.get	4856	com.pix.art.TSR
Invokes method dalvik.system.CloseGuard.open	4856	com.pix.art.TSR

com.pix.art.TSR
1⤵
- Loads dropped Dex/Jar
- Uses reflection
PID:4856

com.pix.art.TSR
2⤵
PID:4896

/system/bin/dex2oat
2⤵
- Loads dropped Dex/Jar
PID:4896

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.pix.art.TSR/app_webview/Web Data
MD5
5168d8c4556ac22decc2362ce61ddafb

SHA1
664cb3c7b0b5b13c3b915c28354793bcc0afd408

SHA256
5057cf5dab27589d93f7d55ffa505ea8249c213b79fd8c85ac39423c135c5db6

SHA512
81cefa22b3b1d30acf590b44b97a47b68c265a15b3725ff348ac0256faae0aa76b6a9bedece897c912bbcc86623c3a20c193ff131d9a25d0ee8e315394ae332d

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/Web Data-journal
MD5
8f8fd4b93e13740502b875b4dfd034be

SHA1
a80e401519e102879a142eadd61fefb9dd6ec419

SHA256
7149e465c665f047fd8423f92506bdf54d852215600815e321635d60ec03dfa4

SHA512
f71616e2262369bd00208c4de3fe6b7364be222e79a50b397cc1073dde336acf99feeacd30394a092b7d3536c484b3fa10a218b5e1815a24059746728725795d

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/metrics_guid
MD5
52bb0143934f8d26af0818ed3a007f04

SHA1
4994bae9cf314bb48c644aa5442f6ad977cdd0b3

SHA256
c7645449e4648c59a23acc1c40b42f7a2475b843d7d15e3a6dd9282b15252744

SHA512
9f77d0a5ec78cafaa00ab3d69d9309ec6564d68b1afd9e72f3e2ebb135b5e16db9b713747d4ea2878e8955269de246c494fe81cb84ac5d0c919aea5887509b98

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/metrics_guid
MD5
52bb0143934f8d26af0818ed3a007f04

SHA1
4994bae9cf314bb48c644aa5442f6ad977cdd0b3

SHA256
c7645449e4648c59a23acc1c40b42f7a2475b843d7d15e3a6dd9282b15252744

SHA512
9f77d0a5ec78cafaa00ab3d69d9309ec6564d68b1afd9e72f3e2ebb135b5e16db9b713747d4ea2878e8955269de246c494fe81cb84ac5d0c919aea5887509b98

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/variations_seed_new
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/variations_stamp
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/app_webview/webview_data.lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/files/BGEaUZrY
MD5
27ba19805d52e788ce7ee21d6f82137c

SHA1
36bd2c6b725254b966fb8fef828b4f6f9e41d283

SHA256
c4fb4c4feb09b15b40b6334bccfac10657db63fc94b0043b35cc7173b43993bd

SHA512
c35fe911c13605de5441b5829a925e433bdd8b64c4d076562b07c8d3d6f2ed8bd72273fa7eecb17b946d4ef2584d550d4ac67871822b986f7529c014b0def34c

Download Submit
/data/user/0/com.pix.art.TSR/files/TrPJFdsN
MD5
27ba19805d52e788ce7ee21d6f82137c

SHA1
36bd2c6b725254b966fb8fef828b4f6f9e41d283

SHA256
c4fb4c4feb09b15b40b6334bccfac10657db63fc94b0043b35cc7173b43993bd

SHA512
c35fe911c13605de5441b5829a925e433bdd8b64c4d076562b07c8d3d6f2ed8bd72273fa7eecb17b946d4ef2584d550d4ac67871822b986f7529c014b0def34c

Download Submit
/data/user/0/com.pix.art.TSR/files/c73172c6.dex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/files/c73172c6.dex
MD5
4e82fcdfc73af6e0a752cbb0325a58a5

SHA1
b8706165672ef1b8abcb16186aaf4a0e25d8f631

SHA256
f066ed6e6ecf2d8b35fe8c2a6f0e97cb4098f9e9340a0bdf0bd4db3edb45ce08

SHA512
b5a54d0d7e5e89f3edcf09d1fe3c703ace8d0f87f075d246d3b924bd8cb408fce48c98ca9d6a7bc544527976ba6b53e4848f3a17b2382b957fd0668158fa04d6

Download Submit
/data/user/0/com.pix.art.TSR/files/c73172c6.dex
MD5
2db197a690dc887c4c11213214217bdb

SHA1
243a8e2cf3d74398d50b92df3cbbaaa42c142085

SHA256
53ca7329b1ba129c5c99e607ea51365814dbcb88e91892483c3ee80546a59ff6

SHA512
493006ef8f9f51f05d625f0796271d03d8f40bb171f6909cc021216a3ba11e3a6fc2394503af7a2253b9a61a5f419c7f5eab2baf0fa9e9766564af46bdbf6b4b

Download Submit
/data/user/0/com.pix.art.TSR/files/c73172c6.dex.x86.flock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/files/oat/x86/c73172c6.odex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/files/oat/x86/c73172c6.vdex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/no_backup/com.google.InstanceId.properties
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/no_backup/com.google.android.gms.appid-no-backup
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/shared_prefs/WebViewChromiumPrefs.xml
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pix.art.TSR/shared_prefs/com.google.android.gms.appid.xml
MD5
eb8b8d78e09555aac07b70ea70ce2c73

SHA1
4ca3d52be3606796f502c4f59fcfffcb7c3d7a9e

SHA256
bea3ca3dc907c99eaa3bcfd89190cb31330c3dc00741a910402507e86da1b51e

SHA512
6f4600d9001329532fb06b38ed4327fda3b08e27b3d0e27573ecb91343ad00d2157026a4806d95e3613fb1c4cbfa0bb70f7614d5651127970cdf6e41cd0ce58a

Download Submit
/data/user/0/com.pix.art.TSR/shared_prefs/com.pix.art.TSR_preferences.xml
MD5
45886698ca3b1e0bc7aa65749a3caef6

SHA1
f2335f072066043ddc2779dc1152f363b8ff20ea

SHA256
7bd1659d808858715613154f8c3abf98d0de6080ae9afa00e30a59ed66514375

SHA512
c712665f9d1151e3344d34aa7c1989767009ddc7ce327d050b065a4699d8a395999a2206366cdaa464f851360182009a0fa67d48dea65fbc4c0c5c11fd21a22f

Download Submit
/data/user/0/com.pix.art.TSR/shared_prefs/com.pix.art.TSR_preferences.xml
MD5
a4443a0b916b2e2a7565d07d020675a5

SHA1
8699a8e594ebfc765091510f3b7315c297390cfa

SHA256
b46515180f622e4f9fd180cbb5906d3b79642a09321c18cf556107208f114dae

SHA512
5618e44f17aaccfff3811003513c5aeeed4fef2439a8598b530e8f952b26259b3a38ec4513e1468541ea1727a0fd3d062dbad7ebe97f659ea051c0631b9edc47

Download Submit