Overview

overview

10

Static

static

10

dabapkapka...ka.apk

android-9-x86

1

LenovoSafeBox455.apk

android-9-x86

1

LenovoSafeBox455.apk

android-10-x64

1

LenovoSafeBox455.apk

android-11-x64

1

busybox

debian-9-armhf

1

toolbox

ubuntu-18.04-amd64

LenovoSafe...15.apk

android-9-x86

1

LenovoSafe...15.apk

android-10-x64

1

LenovoSafe...15.apk

android-11-x64

1

aresEX.dat

debian-9-armhf

1

athena

debian-9-armhf

athena_v2.dat

debian-9-armhf

c

debian-9-armhf

3

c_x86

ubuntu-18.04-amd64

1

competing_su

debian-9-armhf

3

competing_x86

ubuntu-18.04-amd64

3

cputest

ubuntu-18.04-amd64

firewall.dat

debian-9-armhf

godEX.dat

debian-9-armhf

injectso_arm

debian-9-armhf

injectso_x86

ubuntu-18.04-amd64

iptables

debian-9-armhf

libphonehook_armv6.so

debian-9-armhf

1

libphonehook_armv7.so

debian-9-armhf

1

libphonehook_x86.so

ubuntu-18.04-amd64

1

libsystemh...mv6.so

debian-9-armhf

1

libsystemh...mv7.so

debian-9-armhf

1

libsystemhook_x86.so

ubuntu-18.04-amd64

1

nb.apk

android-9-x86

nb.apk

android-10-x64

nb.apk

android-11-x64

Analysis

  • max time kernel
    2s
  • max time network
    126s
  • platform
    linux_armhf
  • resource
    debian9-armhf-en-20211208
  • resource tags

    arch:armhfimage:debian9-armhf-en-20211208kernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    10/07/2023, 18:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    libphonehook_armv7.so

  • Size

    17KB

  • MD5

    b3171b88ae90ae65b7e6b99e730f786b

  • SHA1

    4505fba0101d928f5291591404246a5d8d52f883

  • SHA256

    a1963a6e648db1f95f662aefd53b664d6789a37ecdcb0ff54942825528a7f3d0

  • SHA512

    18035996afa7734324fdfa7924b4dd67415a303376553d58f50b8259e661e2821d09a7105cd08229657a4909cd094f60728a89ed23e7c948ccc7f0e48c4c3eb3

  • SSDEEP

    192:dCeYbVuyt07KLSCtJQapb94ijOiZXHHNmtgkim0uEkIQdyCHQD3XelEDl4rykUbF:6WiTpHXmLIQ8+QTXe64rykUbAI8Wgn

Score
1/10

Malware Config

Signatures

Processes

  • /tmp/libphonehook_armv7.so
    /tmp/libphonehook_armv7.so
    1⤵
      PID:361

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads