Analysis

  • max time kernel
    2053779s
  • max time network
    15s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
  • submitted
    22-02-2023 19:36

General

  • Target

    123.apk

  • Size

    10.4MB

  • MD5

    8726929725a0867495ee8a13ff7c01c3

  • SHA1

    283617c5b49633ccfb34dd4dc832f4baa54881c2

  • SHA256

    a611d499b9528df337068120ad26aed967fad6c3fd1af7fd3f7473698760c612

  • SHA512

    aba0985559fddd612826cf4c9e517693c646d4efdb5c2ea18ca5ff050e26fd6b5a0ef966d8492bc8f429e8acc0c3e994b90d38b2d39bb8665deecebd3303db3c

  • SSDEEP

    196608:msmSV4hd1UDWTUxeF1AO751JsLnaxSvnecPbA5PU70Gx+3liHjT:pefMWTUxKu65IOxSpPbAbXliDT

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • ru.yandex.taxi
    1⤵
    • Loads dropped Dex/Jar
    PID:4082

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4082-0.dex

    Filesize

    6.9MB

    MD5

    d1ca59756ca7d3ac22f5d7332bbd8996

    SHA1

    9ce4c48f09cca8cb576ba253d3580d8cb2c84786

    SHA256

    af4f21fbd7c6dd88fb066feec305e8f79e9f9fbb803c6074be222ea7ff649cac

    SHA512

    da8fb3c6ae40a6d813e87ce6ccfb5520b7dc9b00a6b5bebc58c2988ccd6d3a78fa14de91cecaeedc4e81621de8e336689fce3757b07718830d846e547ca9b8a4

  • /data/user/0/ru.yandex.taxi/files/.fstreaming/fInProgress/currentFile

    Filesize

    722B

    MD5

    64f4ce03e27ceedcff80e106a1e7d0e4

    SHA1

    307674941f03e1f379319f81ed33b110ae085c17

    SHA256

    ea999b3835ec8d6d296a581a8da5755c0a676e352d0f1b913729d2b162ab9a48

    SHA512

    19765ef137948dc158884f2aaf9500d88a9555561eb24ec01c9d1ea6a53510121cdd20af54ac931c2db1a1d791204970fbd0b0ac715417e17a8976321e6e5ab1

  • /data/user/0/ru.yandex.taxi/no_backup/.flurryNoBackup/installationNum

    Filesize

    100B

    MD5

    b1ff5b65c2ed71e8c092cb8f282117ab

    SHA1

    f71073ebd55f521013cdfeac99c18d280e972d4e

    SHA256

    e91fc6cb69ac9ed9c89e0c29cd1924e1f4597f034cc6832950b864397d231dad

    SHA512

    a365db4900fcb324bf47876a5734e610b78471b6c882fca3bf6c6529ff6238930d63af9ed89944dc6be3cffec9dcf6d89c9accabc8a25b9d628d4db273cdfc2b

  • /data/user/0/ru.yandex.taxi/shared_prefs/FLURRY_SHARED_PREFERENCES.xml

    Filesize

    129B

    MD5

    724bca6ef2ed083e2540fad0721c37e0

    SHA1

    abccb5f0864b73ef98aea948b91d2e104ec4bc45

    SHA256

    a0c9f1ba6c24359dd619f80ccd2885919505b10080c7d262d8d2e5005f639211

    SHA512

    27f8375c9654d0a3b37e87e82792077f821361f7aa3282e81a198ec5dd354e4dee77bd60e5ec7e9e89569afbcb86038cd9b1196b8875183f7a5fda44f3fb1150

  • /data/user/0/ru.yandex.taxi/shared_prefs/Setting.xml

    Filesize

    150B

    MD5

    90aab5a7dff3de3a8753a8847e404da8

    SHA1

    4e54da769d919c014ee8fb1b1b8689400081ce5b

    SHA256

    4ab17b00adcf67218267011c4c69bad63812329928bc2e46c6117d197bd73524

    SHA512

    9684e5a66f04a4237345d3c910111ef21fa874680a2a91fa9f163b3b68acbf5978d9563bc0b6a5d31c8c8d1fc562928ae57cb499469607ac1866e00aa2bece63