201224e9c42a85859010309c6d365050a31f4407ec99e2e77dba0be00270b681 | Triage

Submit
Reports

Overview

overview

Static

static

Apktool/SandroRat.apk

windows10-2004-x64

3

Apktool/Sa...ion.js

windows10-2004-x64

1

Apktool/Sa...r/w.js

windows10-2004-x64

1

aapt.exe

windows10-2004-x64

1

Apktool/apktool.jar

windows10-2004-x64

1

Apktool/efm.jar

windows10-2004-x64

1

Apktool/signapk.jar

windows10-2004-x64

1

DroidJack_....6.jar

windows10-2004-x64

1

DroidJack_....4.jar

windows10-2004-x64

1

DroidJack_....2.jar

windows10-2004-x64

1

DroidJack_....1.jar

windows10-2004-x64

1

DroidJack_....5.jar

windows10-2004-x64

1

DroidJack_....5.jar

windows10-2004-x64

1

DroidJack_....5.jar

windows10-2004-x64

1

DroidJack_....4.jar

windows10-2004-x64

1

DroidJack_....5.jar

windows10-2004-x64

1

DroidJack_....4.jar

windows10-2004-x64

1

DroidJack_...on.jar

windows10-2004-x64

1

DroidJack_...ll.jar

windows10-2004-x64

1

DroidJack_...ua.jar

windows10-2004-x64

1

DroidJack_....2.jar

windows10-2004-x64

1

DroidJack_...10.jar

windows10-2004-x64

1

DroidJack_....2.jar

windows10-2004-x64

1

Droidjack.jar

windows10-2004-x64

1

Visit orig...es.url

windows10-2004-x64

1

Analysis

max time kernel
62s
max time network
68s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
04/04/2023, 13:39

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Apktool/SandroRat.apk

Resource

win10v2004-20230220-en

windows10-2004-x64

3 signatures

60 seconds

Behavioral task

behavioral2

Sample

Apktool/SandroRat/smali/com/esotericsoftware/kryonet/Connection.js

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral3

Sample

Apktool/SandroRat/smali/net/droidjack/server/w.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral4

Sample

aapt.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral5

Sample

Apktool/apktool.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral6

Sample

Apktool/efm.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral7

Sample

Apktool/signapk.jar

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral8

Sample

DroidJack_lib/commons-codec-1.6.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral9

Sample

DroidJack_lib/commons-io-2.4.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral10

Sample

DroidJack_lib/commons-lang3-3.3.2.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral11

Sample

DroidJack_lib/commons-logging-1.1.1.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral12

Sample

DroidJack_lib/fluent-hc-4.2.5.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral13

Sample

DroidJack_lib/httpclient-4.2.5.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral14

Sample

DroidJack_lib/httpclient-cache-4.2.5.jar

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral15

Sample

DroidJack_lib/httpcore-4.2.4.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral16

Sample

DroidJack_lib/httpmime-4.2.5.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral17

Sample

DroidJack_lib/jaad-0.8.4.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral18

Sample

DroidJack_lib/json.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral19

Sample

DroidJack_lib/kryonet-2.21-all.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral20

Sample

DroidJack_lib/quaqua.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

60 seconds

Behavioral task

behavioral21

Sample

DroidJack_lib/sqlite-jdbc-3.8.11.2.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral22

Sample

DroidJack_lib/sqljet-1.1.10.jar

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral23

Sample

DroidJack_lib/zip4j_1.3.2.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral24

Sample

Droidjack.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

60 seconds

Behavioral task

behavioral25

Sample

Visit original article link for more resources.url

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Report Analysis Logs

General

Target

DroidJack_lib/sqlite-jdbc-3.8.11.2.jar
Size

5.3MB
MD5

c56e036631557d93c9a28acd3a49e32b
SHA1

dec208cba8debb0a8b9204b08d8d887d63041f0f
SHA256

f30968b896af52baaeda4a901f6ef2629319168fa304e9747c7cfabef6c476ec
SHA512

8195dd54d920b132dd8d1ba275a6aba2fe734e229392a9f06d86a711668b2476d1d18d2ffe88278487ec12910d5d0e901c743b30dd43cc016a7cc8ae5367714b
SSDEEP

98304:5PU0qxMptoxGyEnqV66Q7rlyGy30dZ2TpKlGGJeGeRGlvYdwtkaN5PsONA0:xEWoLtQ7rlyr38Z2TpezoGeREAgkalC0

Score

1^/10

Malware Config

Signatures

Processes

C:\ProgramData\Oracle\Java\javapath\java.exe
java -jar C:\Users\Admin\AppData\Local\Temp\DroidJack_lib\sqlite-jdbc-3.8.11.2.jar
1⤵
PID:2148

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2148-143-0x0000000001380000-0x0000000001381000-memory.dmp

Filesize
4KB

Download

© 2018-2025

Terms | Privacy