Overview

overview

10

Static

static

7

d20a7d7d76...c3.apk

android-9-x86

1

d20a7d7d76...c3.apk

android-10-x64

10

d20a7d7d76...c3.apk

android-11-x64

10

Analysis

  • max time kernel
    842448s
  • max time network
    157s
  • platform
    android_x64
  • resource
    android-x64-20220621-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20220621-enlocale:en-usos:android-10-x64system
  • submitted
    24-07-2022 21:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d20a7d7d76407fff9f2e50c6a2d9a3a5d215dd179b0d295a37128f7dd32893c3.apk

  • Size

    3.5MB

  • MD5

    6f982ae360ca45d7dc281dc04c2dcb89

  • SHA1

    e3014de404de3517f1a3a87ce228dbe0ca36b59a

  • SHA256

    d20a7d7d76407fff9f2e50c6a2d9a3a5d215dd179b0d295a37128f7dd32893c3

  • SHA512

    db69d821e809a97d4b2a94fee60367089d5e212a745422fa82383ed6629600f6212040440e6fa919a5afc571d933a78cf7f71b3790674a5fa6bfbf3e45c8732a

Score
10/10
agent_smithadwareevasion

Malware Config

Signatures

  • Agent smith

    Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    adwareagent_smith
  • Reads information about phone network operator.
  • Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
    evasion

Processes

  • dex.gu.trl.mhapp
    1⤵
    • Listens for changes in the sensor environment (might be used to detect emulation).
    PID:5095
    • ls /sys/class/thermal
      2⤵
        PID:5168
      • ls /
        2⤵
          PID:5252

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • /data/user/0/dex.gu.trl.mhapp/app_webview/GPUCache/index
        Filesize

        48B

        MD5

        6d7d499960179766cd4261d12dacc411

        SHA1

        e6f8553b0015e12b23cc551afe98763f3b1c9bed

        SHA256

        c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

        SHA512

        6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/app_webview/GPUCache/index-dir/temp-index
        Filesize

        96B

        MD5

        601e6ce3c96e76fbdc21d965a936b723

        SHA1

        645dbd6cd37928a5cc01f45e12608420fc450204

        SHA256

        3c897100f0f704aceff2bbda2128a4a1d87d679ea8efdaaec27f1dacc7d6a879

        SHA512

        59afd094d437568a0aab7245d6fdd1053473711c98fefedc1ba434ab1a0081e5f9bdca7eb017644f0e4971a7653dfd95d217439053bea18f69438b01b344b26a

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/app_webview/Web Data
        Filesize

        112KB

        MD5

        b663831f8cc130493476d94f2d7a5330

        SHA1

        043a1956ab8e40821d67043f8a9110a8eb36fb93

        SHA256

        c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7

        SHA512

        e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/app_webview/Web Data-journal
        Filesize

        1KB

        MD5

        cc20e4c9d6d209caadbf539bd52d467a

        SHA1

        50b113d4b6dc86c83f4547fda85a4f7d5b870550

        SHA256

        28fdac7804024465a720117f40711d26b594f686185cb764f9ee6f08838cc5bc

        SHA512

        2848e3634200297661391b4c4343d515cec3c807f8a585ae3d99705f812680a8f60f8d6cf5ee75ea0522cfcfa3d2f540fd77ae248e49c483cad71d922064b429

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/app_webview/metrics_guid
        MD5

        d41d8cd98f00b204e9800998ecf8427e

        SHA1

        da39a3ee5e6b4b0d3255bfef95601890afd80709

        SHA256

        e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

        SHA512

        cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/app_webview/metrics_guid
        Filesize

        36B

        MD5

        9dafe88ba5345194fc59daa941ba671d

        SHA1

        2cdf3f9b07bec866a68b78af773883a31815621c

        SHA256

        59618c0cccf23da1bc020952164753d7735c28fd31817e039c732d78d821d2a7

        SHA512

        33177bcb85d394dbadcb9f3cf050f608905cd4f2f4ac712df7015db1a122eac3cbf55e996929942a6226c09bc60c680eeb0cadbfe35072fe3fa600c591a53024

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/app_webview/variations_seed_new
        MD5

        d41d8cd98f00b204e9800998ecf8427e

        SHA1

        da39a3ee5e6b4b0d3255bfef95601890afd80709

        SHA256

        e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

        SHA512

        cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/app_webview/variations_stamp
        MD5

        d41d8cd98f00b204e9800998ecf8427e

        SHA1

        da39a3ee5e6b4b0d3255bfef95601890afd80709

        SHA256

        e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

        SHA512

        cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/app_webview/webview_data.lock
        MD5

        d41d8cd98f00b204e9800998ecf8427e

        SHA1

        da39a3ee5e6b4b0d3255bfef95601890afd80709

        SHA256

        e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

        SHA512

        cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/cache/org.chromium.android_webview/Code Cache/js/index
        Filesize

        48B

        MD5

        6d7d499960179766cd4261d12dacc411

        SHA1

        e6f8553b0015e12b23cc551afe98763f3b1c9bed

        SHA256

        c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

        SHA512

        6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index
        Filesize

        96B

        MD5

        575a0004fa8ed58f7ff896f0c4985313

        SHA1

        f4754591dec9a5597e2e3b6f2b07d71623eb7105

        SHA256

        402ef1d2ab43dc8ed19e1ce65b1c0e341fad775dae8ae2153503e3bab3933ff7

        SHA512

        8cca720805c2405dad06ab0d112d3bd1b8a524b066085abb6cfe3a84fd1d0f1835ad2d0a5ef75a8edfff7c60c2677df73e90fd7a925e9351e5605d8f91a3c16f

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/shared_prefs/WebViewChromiumPrefs.xml
        Filesize

        127B

        MD5

        6ef709b8536878951e87c29a1518fc2b

        SHA1

        24376c70b00152501b3d98df61fa7db435339172

        SHA256

        10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6

        SHA512

        96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/shared_prefs/umeng_common_config.xml
        Filesize

        116B

        MD5

        f85376512cbe3f8522f3af93c16fc33f

        SHA1

        f3517e0b6596d1d116049cde4930828d24634b5c

        SHA256

        0f4792dd64ad0eae196be07440aaf434d1f4b77320c4e57535317d6a693c4423

        SHA512

        48ac50be854b60cf3a1ce3763d9a80471e1ff1a021c85ef6a2c5d1b9b5f1e2b487b2645caa9f641c250aab13dfbcd4f78aa3561ac1973bc35e6bb2e875abc4a0

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/shared_prefs/umeng_common_config.xml
        Filesize

        176B

        MD5

        173e2bbb8c7e8bada5bee52df18fbf2e

        SHA1

        0ccfcb6dc42fedd9e4940db320b89d48ff831078

        SHA256

        f6d25ebd767f06ad09db004aa20e1c9807e56619a290cd7e2d16106b21e0b78b

        SHA512

        397fcd668c88b2ce8d977c129cc375c6a7b777f615f06337a00c2288aceca1ef809ee28930fb97cf7b87569105f0cfdd076d5be3aedb026154f63b2542243160

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/shared_prefs/umeng_common_config.xml
        Filesize

        241B

        MD5

        bd89c3b700e008f0ee972b606d82de26

        SHA1

        7fb10078a74cf1cad6092a2a768e6917e9fe1e3d

        SHA256

        b679a15402abd7b90e9a77944120e4387320400e00424b29a7574487f26ba543

        SHA512

        6111d857ee6f19fe4d5a0cc99c85a16b380b2802d8bb7350d4b47b03d7beb75e51afc5e32124c28992b8a388ea719f9dd65473132b19f034e8adad185fd2d47d

        Download Submit
      • /data/user/0/dex.gu.trl.mhapp/shared_prefs/umeng_general_config.xml
        Filesize

        102B

        MD5

        e3f3a1ce529535a2e3b257d722aa84ab

        SHA1

        ba5353c3e318d0528d843223842fd849aad4dc57

        SHA256

        91ab93de28e0b3c1ccf1272410934927c08329e42917621660defaa353637cdf

        SHA512

        f808e7106fef36146f107ff28cc204ab88499ec7a01dca44856c6889fa691ad65865511cc98e9f0aab86013f9d55bfe9d01e16031b7334ab8649f3fc7b25cd65

        Download Submit