Overview

overview

7

Static

static

7

bced8fc64d...d7.apk

android-9-x86

7

Analysis

  • max time kernel
    3183660s
  • max time network
    13s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
  • submitted
    27-11-2022 14:16

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bced8fc64d1ddd4a4dc421e96190f2175bc9a568d41a4363aad05ec18f6ba1d7.apk

  • Size

    2.4MB

  • MD5

    26596611be5b8e71ca14afcfab21383a

  • SHA1

    f8a53a747f99faf4bd24fa2ff3a7fe1a2f83d457

  • SHA256

    bced8fc64d1ddd4a4dc421e96190f2175bc9a568d41a4363aad05ec18f6ba1d7

  • SHA512

    0513d124cbd3cf9968d1e91890ad0b2d2ce4a303ca69a7d41d806b77ec7e50adbf35e1350c6ce4757fd552805b1eaf4ea66949166b2dc80a5086cbb454831a08

  • SSDEEP

    49152:8pDQznPCRn37hgLpNxzTjT5IfjxqQhM4WB4fETnlpQ0VnmmUhmnW00O:+n3l+bTP5If9qmMPB4fETnlO0VnmxhYX

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 4 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • ma.uftwdugg.vkpej.lf6c0a114735a7d.b04
    1⤵
    • Loads dropped Dex/Jar
    PID:4031
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/ma.uftwdugg.vkpej.lf6c0a114735a7d.b04/files/1c4545da53ca986a2011d459fe2a4bdb.apk --output-vdex-fd=44 --oat-fd=45 --oat-location=/data/user/0/ma.uftwdugg.vkpej.lf6c0a114735a7d.b04/files/oat/x86/1c4545da53ca986a2011d459fe2a4bdb.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4119
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/ma.uftwdugg.vkpej.lf6c0a114735a7d.b04/realshell/fa975331f4617518aaee4f7fd3f2f541.apk --output-vdex-fd=45 --oat-fd=46 --oat-location=/data/user/0/ma.uftwdugg.vkpej.lf6c0a114735a7d.b04/realshell/oat/x86/fa975331f4617518aaee4f7fd3f2f541.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4165

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/ma.uftwdugg.vkpej.lf6c0a114735a7d.b04/files/1c4545da53ca986a2011d459fe2a4bdb.apk
    Filesize

    104KB

    MD5

    17bde44408d8fb51c1a07db108705650

    SHA1

    f65f46ee2eb22b03f0fcaec102146f4c254f9dd6

    SHA256

    68a0e24e68c5409e3883427d9ac39fb6cd1bce053265687c935be25a12238a24

    SHA512

    9bb467c5f43e6f0a242ef636f7c7ac4af98f0da1e55c1d15745ae7b8d27a9fda377fb5a10df2e386a0618ecb41486b761c7e891674169da6df23573f46a6e30e

    Download Submit

  • /data/user/0/ma.uftwdugg.vkpej.lf6c0a114735a7d.b04/files/1c4545da53ca986a2011d459fe2a4bdb.apk
    Filesize

    289KB

    MD5

    66bb5a3826f8a28e7eaab0ad7fdf9af2

    SHA1

    65471fb0094ac8a5ce94f08e7692a8f98eededd7

    SHA256

    785de13c47a4b4e6cf5ac4ab401b4fc30b78d2a131ed724b2a00dec50b1d2e23

    SHA512

    797463b08217a6fab4bd587f11bacd5d01e1ff5504f202f6c9d6cc6698a11b70b0c0ca97b8c751dc721cbcbfa9a0034d3d3ffa2a2a5f94d63b37e428bd7b6b21

    Download Submit

  • /data/user/0/ma.uftwdugg.vkpej.lf6c0a114735a7d.b04/files/1c4545da53ca986a2011d459fe2a4bdb.apk
    Filesize

    289KB

    MD5

    bd4dc4216a5a11fb925f9951b34f635c

    SHA1

    b7101362e66b6a327d8a4f93a1daa8880c7cc156

    SHA256

    eed648228ec9974b429d05b81b494e36cb8281086ec9b18b1e35606f231dd921

    SHA512

    90fb8e83844282a55ba95a4c5f6faed41e25acd213715fbf33a2340e02f12d48a133b7b4de761f4b9f62f47cbebccc57fe9f829b2c8138b510a5d5d631713249

    Download Submit

  • /data/user/0/ma.uftwdugg.vkpej.lf6c0a114735a7d.b04/realshell/fa975331f4617518aaee4f7fd3f2f541.apk
    Filesize

    1.2MB

    MD5

    44fcc5c6052d79ddadf4c669bb630d63

    SHA1

    9546497cdccd157c0dea38e8be0be6a2bb78900c

    SHA256

    a7a93dc207cc7c56d214b70436bec213bf5fd909fb7a3e21887f1f6d2d72a445

    SHA512

    34c004e32752adfff296ade1e61110a5eb90b515fb46a5a63405a32b25982603ab8764c242c863e091c35870d7be0db24dbeb8bf830bab94726d3b410de7fdb2

    Download Submit

  • /data/user/0/ma.uftwdugg.vkpej.lf6c0a114735a7d.b04/realshell/fa975331f4617518aaee4f7fd3f2f541.apk
    Filesize

    1.2MB

    MD5

    68fe3823e6f5bcf9b2ac0ea31b7916f6

    SHA1

    5a3f97d0e355ce58a77010cece31655c91cf8360

    SHA256

    a370e0f95ff84d1a36924bde7f7685f329a69d4d1bbf4c7fdc06866b5fd30dd2

    SHA512

    5f7b027ee6c704decda1cf1aeb03af9cef1a67579b586a0a423589892a343f589de449809ba3bf22f038cbc5b2df90b135d6bade12e0a855071b0f8e0a2476b4

    Download Submit

  • /data/user/0/ma.uftwdugg.vkpej.lf6c0a114735a7d.b04/realshell/fa975331f4617518aaee4f7fd3f2f541.apk
    Filesize

    1.2MB

    MD5

    b017442e7a5dc9b2c6caa0c78361d9b0

    SHA1

    112fd5f2db8b46badf517f44b12b55207d8233cc

    SHA256

    72839c2d4693cd9be56f3df40cfe423d34ff0ee5cb8937b260f78d489362ff99

    SHA512

    a18bb3e8fb41a51787469054fcb3851ad20af6d223ef2fe4e7d65b84e1fb206b7427d45617bc1d7fd3af5f28da85a8b5cb94fa219e6d2ce7813c0686289f2c4b

    Download Submit

  • /data/user/0/ma.uftwdugg.vkpej.lf6c0a114735a7d.b04/shared_prefs/APP_START_TIMER_INFO.xml
    Filesize

    117B

    MD5

    c3b66835d1d74d9f22c3db50051e01a9

    SHA1

    32237f9540fe86eb731492d2d81f0676ae8ed9a0

    SHA256

    6217681bcc09adbb25bc1fc7d909d68458e7d94136c2df314d118a6915eb587d

    SHA512

    76aae1302c9be88444ae0d1bc796584348457cc5a15c8cf6ccfe78bdf52e0d3025b4cc167e8fc6605a0bc7b69d129c87d3918b2ca0a5257f9512ccee1edb05cc

    Download Submit