201224e9c42a85859010309c6d365050a31f4407ec99e2e77dba0be00270b681 | Triage

Submit
Reports

Overview

overview

Static

static

Apktool/SandroRat.apk

windows10-2004-x64

3

Apktool/Sa...ion.js

windows10-2004-x64

1

Apktool/Sa...r/w.js

windows10-2004-x64

1

aapt.exe

windows10-2004-x64

1

Apktool/apktool.jar

windows10-2004-x64

1

Apktool/efm.jar

windows10-2004-x64

1

Apktool/signapk.jar

windows10-2004-x64

1

DroidJack_....6.jar

windows10-2004-x64

1

DroidJack_....4.jar

windows10-2004-x64

1

DroidJack_....2.jar

windows10-2004-x64

1

DroidJack_....1.jar

windows10-2004-x64

1

DroidJack_....5.jar

windows10-2004-x64

1

DroidJack_....5.jar

windows10-2004-x64

1

DroidJack_....5.jar

windows10-2004-x64

1

DroidJack_....4.jar

windows10-2004-x64

1

DroidJack_....5.jar

windows10-2004-x64

1

DroidJack_....4.jar

windows10-2004-x64

1

DroidJack_...on.jar

windows10-2004-x64

1

DroidJack_...ll.jar

windows10-2004-x64

1

DroidJack_...ua.jar

windows10-2004-x64

1

DroidJack_....2.jar

windows10-2004-x64

1

DroidJack_...10.jar

windows10-2004-x64

1

DroidJack_....2.jar

windows10-2004-x64

1

Droidjack.jar

windows10-2004-x64

1

Visit orig...es.url

windows10-2004-x64

1

Analysis

max time kernel
62s
max time network
68s
platform
windows10-2004_x64
resource
win10v2004-20230220-en
resource tags

arch:x64arch:x86image:win10v2004-20230220-enlocale:en-usos:windows10-2004-x64system
submitted
04/04/2023, 13:39

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

Apktool/SandroRat.apk

Resource

win10v2004-20230220-en

windows10-2004-x64

3 signatures

60 seconds

Behavioral task

behavioral2

Sample

Apktool/SandroRat/smali/com/esotericsoftware/kryonet/Connection.js

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral3

Sample

Apktool/SandroRat/smali/net/droidjack/server/w.js

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral4

Sample

aapt.exe

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral5

Sample

Apktool/apktool.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral6

Sample

Apktool/efm.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral7

Sample

Apktool/signapk.jar

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral8

Sample

DroidJack_lib/commons-codec-1.6.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral9

Sample

DroidJack_lib/commons-io-2.4.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral10

Sample

DroidJack_lib/commons-lang3-3.3.2.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral11

Sample

DroidJack_lib/commons-logging-1.1.1.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral12

Sample

DroidJack_lib/fluent-hc-4.2.5.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral13

Sample

DroidJack_lib/httpclient-4.2.5.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral14

Sample

DroidJack_lib/httpclient-cache-4.2.5.jar

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral15

Sample

DroidJack_lib/httpcore-4.2.4.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral16

Sample

DroidJack_lib/httpmime-4.2.5.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral17

Sample

DroidJack_lib/jaad-0.8.4.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral18

Sample

DroidJack_lib/json.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral19

Sample

DroidJack_lib/kryonet-2.21-all.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral20

Sample

DroidJack_lib/quaqua.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

60 seconds

Behavioral task

behavioral21

Sample

DroidJack_lib/sqlite-jdbc-3.8.11.2.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral22

Sample

DroidJack_lib/sqljet-1.1.10.jar

Resource

win10v2004-20230221-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral23

Sample

DroidJack_lib/zip4j_1.3.2.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Behavioral task

behavioral24

Sample

Droidjack.jar

Resource

win10v2004-20230220-en

windows10-2004-x64

1 signatures

60 seconds

Behavioral task

behavioral25

Sample

Visit original article link for more resources.url

Resource

win10v2004-20230220-en

windows10-2004-x64

0 signatures

60 seconds

Report Analysis Logs

General

Target

DroidJack_lib/zip4j_1.3.2.jar
Size

127KB
MD5

63ebde69f7be7edbda8dc4bc7a4580a4
SHA1

3e20955923c5b61bfbcd4590a87720643c729695
SHA256

92524aa1bf716f1d15e75fb66c2212ee903e118677ca625506f94487628317f7
SHA512

fb0b4d55e4afa00e0b055045b768591055ba624c1f386e83d8a0822df4f27e641527bbb8069c0e16145bdcf9243e4b6642d8a3afc754cae0d9a7bb01d7e0d045
SSDEEP

3072:qNiT9tXhgKISPr5EehKquZvLsCjB0fDdS9CCnF8BElK:k6DXGKVNEeodvLsC1b9CCnqYK

Score

1^/10

Malware Config

Signatures

Processes

C:\ProgramData\Oracle\Java\javapath\java.exe
java -jar C:\Users\Admin\AppData\Local\Temp\DroidJack_lib\zip4j_1.3.2.jar
1⤵
PID:1032

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1032-143-0x0000000001240000-0x0000000001241000-memory.dmp

Filesize
4KB

Download

© 2018-2025

Terms | Privacy