Overview

overview

8

Static

static

7

7f4670ae85...d8.apk

android-10-x64

7f4670ae85...d8.apk

android-11-x64

8

7f4670ae85...d8.apk

android-9-x86

1

Resubmissions

26/05/2023, 05:13

230526-fwmqdsdh49 10

17/05/2023, 09:59

230517-lz81paef44 10

16/05/2023, 11:19

230516-nfb8qahe6t 8

16/05/2023, 11:19

230516-nev97sae35 7

16/05/2023, 11:17

230516-nd61baae27 7

16/05/2023, 09:19

230516-k9564saf5v 8

Analysis

  • max time kernel
    601594s
  • max time network
    30s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    16/05/2023, 09:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7f4670ae852ec26f890129a4a3d3e95c079f2f289e16f1aa089c86ea7077b3d8.apk

  • Size

    10.7MB

  • MD5

    703b22fcea432d2c681cebbc150394f1

  • SHA1

    f561e628ae17d7a547ca55b0be72ebaf1ed88af3

  • SHA256

    7f4670ae852ec26f890129a4a3d3e95c079f2f289e16f1aa089c86ea7077b3d8

  • SHA512

    aecedd324311c3e95a93ad4129eddc4e46974db635e71bec406256be91bac7a1cb2817ea6b6e410a58d669cd32af4605ec393e5273d62ff078fa6bc9cd1fea1c

  • SSDEEP

    196608:ZynCaYQLCbkUYUMjNgR39mR70CyCopc24BFix/Q+hT1/XQqrj:G5YQCYeW90C8D4DiFZhmqrj

Score
8/10

Malware Config

Signatures

  • Makes use of the framework's Accessibility service. 2 IoCs
  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Requests enabling of the accessibility settings. 1 IoCs

Processes

  • com.grn.nbz.ktvhe.xeubdv
    1⤵
    • Makes use of the framework's Accessibility service.
    • Loads dropped Dex/Jar
    • Requests enabling of the accessibility settings.
    PID:4567

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/app_webview/Default/Cookies
    Filesize

    64KB

    MD5

    dfb2098ca7b3bf16d6f5f1e7d3839af5

    SHA1

    ebb7a8bc886062d77a4092bd306b77a0ce7a3e9d

    SHA256

    e4119d32577d7fc63b267cc23eb7a9bbfb12d238f23e08918c38838fe0181224

    SHA512

    fccec45399258eb98220b7f01b492a72b8b3d1254dec6e196e344d89a0376c6ee24534a31a6675c866d4a17256d3ac6823657eaf04e1d386757d0cbfc6597e50

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/app_webview/Default/Cookies-journal
    Filesize

    1KB

    MD5

    b92f8d2943b18b8eeeef3978bf2f58c2

    SHA1

    b877ee2167a33b7249975b0d5bfb0a5f3232e6c0

    SHA256

    e0c34ece4f60b2b85e36e7b8f291a89e3e16fdfda3bd93e48d84c95708ab0bf8

    SHA512

    70f7d7c4eae3a3f420a5a54e8c505e07b1249e92900cec0ec6300626aa0929067713bd2447b53c4ef9a75dd927a5f28ac099b1abd417db9caa3853e47a756107

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/app_webview/Default/GPUCache/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/app_webview/Default/GPUCache/index-dir/temp-index
    Filesize

    96B

    MD5

    636f2d68ca660efe7e8d4c03f4425933

    SHA1

    221dced862e498522755878e0ed626966567d260

    SHA256

    6af1d373ace10018a8e1578722a078a55866737dc9ffd25efa491b3207d85b30

    SHA512

    075be56798629266384762a85cdcdd821811b697df0ff6922517110e8c2e84833da2d293220139b68d6edf6094f41b2d86d4632bfc163f0b89eba50ed2bb4e88

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/app_webview/Default/Web Data
    Filesize

    120KB

    MD5

    a48cd9324b1f8754b07f00d863b840f3

    SHA1

    11c6614775b35a58f440971dfc87c8aaac6d6173

    SHA256

    8859a216183793485d4699bf69d7ed96904679834188d07b9a70424d47eb1420

    SHA512

    35fa712f0af4a5eeed7e00e4e59ed5027dc6609d268462fe79d92043be9ae0c5961ce9e1d2f64b1a196c9b6aa6242b8b83817b3ee4c1058596c58a99c45478b1

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/app_webview/Default/Web Data-journal
    Filesize

    2KB

    MD5

    9ba264c6a76dd1fa1e0effaf0f336fe3

    SHA1

    36401d35bb756c0991a5484ff4de832e2c4acd68

    SHA256

    feb8daf7299fb37e0458b4189cfa0acd2cefc62076e936f966d4d21e9315994f

    SHA512

    918b079235eb6fb81b3297723b8dced05d0ada70617d9d98167492390bce7392cc2397e4b559b4d33a33bd69c4a7f7cf085af8e200fe4c3371e23812641fbfdd

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/app_webview/webview_data.lock
    Filesize

    30B

    MD5

    69e36a14c37cd28c7e96b0613737c632

    SHA1

    cccf13550dc5009d6d8f5b58630aaee152699773

    SHA256

    05962ed6e33748f6b3ed9ede3426a0b4eaa567bf5b32f60f0c89158f2b8294c4

    SHA512

    46b16752d3b1cc336681c70693b3ed8b7ce6df472030b521425eb942931b325486b5aaf643a8ffadf9835a3e3485aa05236ef32b0c473ce7a1f23b7731364632

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/cache/WebView/Crashpad/settings.dat
    Filesize

    40B

    MD5

    7aa44d9a28361bce4fa8e54e7ef2c36f

    SHA1

    306ef32ff0b837e08e30920f8e68b84470facb3b

    SHA256

    0e2c3f9d492e937c5fcd7f50d759f57bf3617ecc6d301f187d42941cbb223d5a

    SHA512

    83ef17ca099ce3bf4ee8cc53e20891dd1598088d46c6089880f96af3c82ac47582b42029a128ff37958d82cafa2c9a68564981172d7b6fc13d91dc4324f6c4eb

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/cache/WebView/Default/HTTP Cache/55bb527131af3542_0
    Filesize

    264B

    MD5

    03e276f55fa42191211b97b504bfc116

    SHA1

    0fc07cd52f14e72d4ecefac3044d82d1a8378818

    SHA256

    557da7e52cc9c69479150e9187ec3fffec2268907b1b857711138c1148594c9b

    SHA512

    8942514b556c17f1e862f05cef547fe6d75b8047f05b0b70ae7ac76ae460490daebf86ca787816a8e31e93ba9e7bef94d7235b8acb99fdefc4dafe27c4019148

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/cache/WebView/Default/HTTP Cache/Code Cache/js/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/cache/WebView/Default/HTTP Cache/Code Cache/js/index-dir/temp-index
    Filesize

    96B

    MD5

    42f2c3d985197f5d0103b147bca6ae7e

    SHA1

    07e053091c45fc33dab8f562488548b80b8589ac

    SHA256

    6a8162fa6caad1a5ec3650c3f45167fa064d6190f800bf2f5af70c080cde3b67

    SHA512

    d94ea4379c1ff9f8121f60ca404c73651ce9212ebd97537da6f43257d78d38d15545e4a4789d8ee790a7c5d5065e906bb264851d7c2d34fdd19fb75029ec716f

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index-dir/temp-index
    Filesize

    96B

    MD5

    da3930aad465588eb5b9c07366475d45

    SHA1

    ff155a8039cdd937fef2bfd7b3870141f6664086

    SHA256

    a8e970d83003ab9319dc3bf8764611308288d6d765cde1588c5b263b0d9ab59c

    SHA512

    ab585ead0ce128cf08dc2823542e820e7c7fdb1067556b02e5bf323f34a31dc57e82c55dd0cd2702c57a49e7fb4a3406296c2e06beece75fa0434042b76fdfd9

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/cache/WebView/Default/HTTP Cache/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/cache/WebView/Default/HTTP Cache/index-dir/temp-index
    Filesize

    96B

    MD5

    251eb271c6a839703a4caf9038da847b

    SHA1

    9df6de96cae43faed07551f2cd35f2ad8375c95c

    SHA256

    c9268ab37d3130444e92994b6018012310449c91d3a8c0eae4724fe133daa5de

    SHA512

    afa0026656a332406d2343f69abd7a9aa746be0f6aa8164a9dfb8b22b4568217baeab2b33f6dcebd87e342a5b00eac0c968b7b67169097c7eff8b62010d71090

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/cache/WebView/font_unique_name_table.pb
    Filesize

    57KB

    MD5

    f080fa2a56ab5479d58063e5ea871447

    SHA1

    4b3fd57a98916fa5784305b76ba30af26b5253d9

    SHA256

    0aa374bc456330fd1b5daf18d25b4bb8e2df1998dfa85466f2c31843ff56e815

    SHA512

    8aee3186a95b389d39882620b7c4199a29aa50580aa98a381b2931a934de6406943c89d4d00ebeabff21e2b03b4a4adcc01e37e32a2335c4838be24bdbf61936

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/files/prodexdir/00O000ll111l_0.dex
    Filesize

    1.6MB

    MD5

    4c75cb0ea7e0c237d90beda3b2eb1296

    SHA1

    2677ce9af3eba96eb27e2118b162156b4d7dd89c

    SHA256

    dabd872b8b6ba912da1a1bdca60bb57f3751d11fdf37630bc2ff3ad086dd3ded

    SHA512

    320f2312df76e35415111dcf2a02de6e762d5ead411840be951a931a48bc9c9f4b1c259755a7b0214fe8d5af725d3ff135a3eae4fa7218d3a47285c4fe7be693

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/files/prodexdir/00O000ll111l_0.dex
    Filesize

    1.6MB

    MD5

    4c75cb0ea7e0c237d90beda3b2eb1296

    SHA1

    2677ce9af3eba96eb27e2118b162156b4d7dd89c

    SHA256

    dabd872b8b6ba912da1a1bdca60bb57f3751d11fdf37630bc2ff3ad086dd3ded

    SHA512

    320f2312df76e35415111dcf2a02de6e762d5ead411840be951a931a48bc9c9f4b1c259755a7b0214fe8d5af725d3ff135a3eae4fa7218d3a47285c4fe7be693

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/files/prodexdir/0OO00l111l1l
    Filesize

    804KB

    MD5

    4d2341e41e665cfc8e237cf9a2718a5a

    SHA1

    2797e9efdc9c7069368b673a00c3f6b1b8adfc3b

    SHA256

    5c48533498760fe26425ab5cb23f618b68fd0e1500fab80c984bbb8b9d952e6b

    SHA512

    5e6b8ac0e08bdf3be6198b65b56825a4ebfaa2bf13dd9b5b7655f873fd2be270ed9e76ff4bc33ead6a8f28ea6d0e7de8c08172e6f6bdaa32ade24bb1cd3221d3

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/files/prodexdir/o0oooOO0ooOo.dat
    Filesize

    120B

    MD5

    0d288cbb66019dfd9985adb62e5f9a3b

    SHA1

    f1c5b3002351d02a7bc5a4ab65a09b80b031ca25

    SHA256

    72bd8b48170a2b3c771bb97e1b7c2272643d5b47a46821f0655419400d22763f

    SHA512

    7f7451997d00a10b3616d403ee1653ff2b3843c22d9da84516f8208882afaf0adcbb793b031b6eca6797ac9330dc7d79e82684ab60f7ad80ff0b65e4c6cf01a4

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/shared_prefs/WebViewChromiumPrefs.xml
    Filesize

    127B

    MD5

    97ccd9a2b2063143df56b6937f961ca4

    SHA1

    5e78a91ae5df289ce83443cb7d5589dd3504fb5d

    SHA256

    248ff7928128015b1cfe3e6517c8f9b8c9511bfb8c8baf44fc1370640eac61fd

    SHA512

    86c05a5bb3d7eedea390664796966e9e5a5bf846c85808da54407788a76b3ee25b91428242a1e76d8765bfe51e1ba3636617fbab6e7dbb39fcc433e07c3fcd3b

    Download Submit

  • /data/user/0/com.grn.nbz.ktvhe.xeubdv/shared_prefs/com.grn.nbz.ktvhe.xeubdv_preferences.xml
    Filesize

    131B

    MD5

    ffb8500f2b26d5342b5b19c90cac0b0f

    SHA1

    e4738187a831d6aec87787ec76b246809becea1f

    SHA256

    33c0620745c8fd4f87c6ed638587efdc53785cce846dea24db98d643889ec2da

    SHA512

    15e1437fba39f142553606f4f34be1095ff31c5eedfe720d7bfe46510d0b687289784c568df17165e18f2cc1c952da7e854c8f9488f1b20dc4377599e080bb86

    Download Submit