Overview

overview

7

Static

static

1

Fare Gameh...om.apk

android-9-x86

7

Fare Gameh...om.apk

android-10-x64

7

Fare Gameh...om.apk

android-11-x64

7

Analysis

  • max time kernel
    667638s
  • max time network
    165s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    28-03-2023 10:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Fare Gamehub & Box_1.0.1_apkcombo.com.apk

  • Size

    12.9MB

  • MD5

    55b7d4ab487bbefa1e6c8152f5ba6778

  • SHA1

    9cbd5597053de85b7289bc9b485e3a202d1ad973

  • SHA256

    114503f4ad18832eea40c24f4a4208f029192d4495db278bae5fe198521b2e1e

  • SHA512

    fce1cebef9a31dfa863eb8941c0138c807e055576d9bd569ea60130ec87f79834c3f82ead727bcfed42087246305c49e421917dcd95a46ce7f325e2d97f14467

  • SSDEEP

    393216:mSKP32p5G1I6KKqBhL/vQjogq5PN6ACcXU1:FKP2GWHTBhL/vQjoZ51PCH

Score
7/10
evasionransomware

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware
  • Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
    evasion

Processes

  • com.donar.behindetic
    1⤵
    • Loads dropped Dex/Jar
    • Uses Crypto APIs (Might try to encrypt user data).
    • Listens for changes in the sensor environment (might be used to detect emulation).
    PID:4430

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.donar.behindetic/Anonymous-DexFile@876954312.jar
    Filesize

    3.0MB

    MD5

    b18ab03453d5d70113873d8c45c10d2f

    SHA1

    ad3c48b1ca11b9c84f380b9ae7a025f957f3d02b

    SHA256

    bee390afa2267bc48829ee7a0f4286895bf32ba2443ff447451f515818f7203b

    SHA512

    63e75b38dd472b2de19f6e513026e732ca040699437be4a1684827ab2ba4baf2077b053c0ccc4a702b72bfbc2ed7e343296b9a9f85ba906be37bdd6f905694c8

    Download Submit
  • /data/user/0/com.donar.behindetic/files/al/.nomedia
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit
  • /data/user/0/com.donar.behindetic/files/al/persistent_postback_cache.json
    Filesize

    2KB

    MD5

    a555481ddd10c59d98f848d44a444ae3

    SHA1

    d2dc5ddf7cf0a400d309222e3143908b629dbe94

    SHA256

    ef18c8c5cd693460cd9d16665c2bd796de0db90d647e5db46af271d32e584536

    SHA512

    3a49288567ca7b31a8abc038141acd6194e7e4582f8ff4d2abfa568b05212dbbead18f7fa62eb27748e1f6dc31cd307a50d35f8655b442372e434ca8414e8dc3

    Download Submit
  • /data/user/0/com.donar.behindetic/oat/x86_64/Anonymous-DexFile@876954312.vdex
    Filesize

    345B

    MD5

    2479161741655d1d5d6b9e316895dd79

    SHA1

    09c1f3d53dc038ca9867bff50947e92c6dd94284

    SHA256

    47dfb0508ddd8f4f6b5247abb06c9553b24f9a4f5e8950c37b799ad272eb670d

    SHA512

    6ee3248e56ff9f4d76a3967442ecde04332b367282c22952ee59d125eba0d4e444370e060c62689e10a7c1d4c3b964c1d8f43c29e00e770553f80d3eacb04088

    Download Submit
  • /data/user/0/com.donar.behindetic/shared_prefs/com.gamehub.gamehub.MainActivity.xml
    Filesize

    117B

    MD5

    0cfbb7deb5b0f0b9d76ad611952fd7d0

    SHA1

    2589b0491f883cb3192385a6d449fd7bdfc01d3d

    SHA256

    7439ad0d5bbe86608beaf81791fe2b5fa1f55c849f01dd3c1dd9d858b3265298

    SHA512

    835562f9755faaa0c31da75d000efbed72fcfbcdc27f015f438ec1b696fe2ddfc8cc3e364bde8473be99e01a13a1b54de73e9faf421a6e15893117ef2377baa6

    Download Submit