Overview

overview

7

Static

static

7

09bcf341ee...4d.apk

android-9-x86

7

Analysis

  • max time kernel
    2984853s
  • max time network
    139s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
  • submitted
    25-11-2022 19:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    09bcf341ee423735e9f21c4c04a270c611ae30a5d7d2842d785b23cc2b75f84d.apk

  • Size

    2.1MB

  • MD5

    d2f737546b6b07bc766b0636d797a200

  • SHA1

    d72b8f1bb3905112889259c00217d1ed7eb6dee4

  • SHA256

    09bcf341ee423735e9f21c4c04a270c611ae30a5d7d2842d785b23cc2b75f84d

  • SHA512

    a394639cc39d9e03aaafe93578b48c6fc9f247f4b72919534727092e06034c2ab820f139fc4d3cda61c39cdef83575c22eaaf0bc6c4fdea375761cb497c33aea

  • SSDEEP

    49152:FEts6rmQUhHeLO99AaoHEIxntLMhsriMPq3O80pHeYkZDWp+b7:Fassm7hHeLO9eaokitLC+u6eYkJWp+b7

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • fm.sm.aideo
    1⤵
    • Loads dropped Dex/Jar
    PID:4025
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/storage/emulated/0/Android/data/com.skymobi.pay.app/plugins/com.skymobi.pay.opplugin_v2021.apk --output-vdex-fd=47 --oat-fd=49 --oat-location=/storage/emulated/0/Android/data/com.skymobi.pay.app/plugins/oat/x86/com.skymobi.pay.opplugin_v2021.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4077

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/fm.sm.aideo/files/classes.dex
    Filesize

    1.1MB

    MD5

    80adbc78e443ef31bf81b10f499ff179

    SHA1

    c21e7d54413e38c0f1a5ef8198e7a43fe762be70

    SHA256

    b02b66b5899e2bc304dd0b79a66ff85a59eb11d2a6b66944881deb55a4f27db4

    SHA512

    e4d76ee7cb2af3bb0d4135965027d8e711b9b70e045a14f9b7ae5c2f0f8763fcc2046770ca3b44f96e9886477170d709be2dac7558d0a5076ab2900682bf8ad8

    Download Submit

  • /data/user/0/fm.sm.aideo/shared_prefs/APP_START_TIMER_INFO.xml
    Filesize

    117B

    MD5

    1b6fc64007272fb380a6afd7baea9378

    SHA1

    c5a689908a7fed7e538623424783f9e2ee802288

    SHA256

    9f1a9ae9a3d8d136e4577ee9511577e6c45a75cae925de6ff8ae41df79ce5718

    SHA512

    286fe0812951431e0e28d4b72be56084a4bd3d7678dad44aa52d10aeb548bb7342cbb480f1575fd74db8b24d6618da76efebb7d2e8dd48738817e67b77976bc7

    Download Submit

  • /storage/emulated/0/Android/data/com.skymobi.pay.app/plugins/com.skymobi.pay.opplugin_v2021.apk
    Filesize

    386KB

    MD5

    4a1fb248e672d39457f2cf9088c17880

    SHA1

    b500b2528ed6cee5929603b862b14a18655ac06d

    SHA256

    b2831dae43d2dc8daffc919456c244b17f15f5453dca097d665979e7254f8c23

    SHA512

    b434ee9348e7e2717b35c4f64bc71aa58aca634741045b91ec61eea5bdb536ece7449fe8d376f724bb0006cd2bc7976c9695bc3aa47a59a26ab6c6c09096279e

    Download Submit

  • /storage/emulated/0/Android/data/com.skymobi.pay.app/plugins/com.skymobi.pay.opplugin_v2021.apk
    Filesize

    386KB

    MD5

    4a1fb248e672d39457f2cf9088c17880

    SHA1

    b500b2528ed6cee5929603b862b14a18655ac06d

    SHA256

    b2831dae43d2dc8daffc919456c244b17f15f5453dca097d665979e7254f8c23

    SHA512

    b434ee9348e7e2717b35c4f64bc71aa58aca634741045b91ec61eea5bdb536ece7449fe8d376f724bb0006cd2bc7976c9695bc3aa47a59a26ab6c6c09096279e

    Download Submit