Overview

overview

7

Static

static

7

baddo.apk

android-9-x86

7

baddo.apk

android-10-x64

7

baddo.apk

android-11-x64

7

actionsQueue.js

windows7-x64

1

actionsQueue.js

windows10-2004-x64

1

audience_network.dex

windows7-x64

3

audience_network.dex

windows10-2004-x64

3

baseline.prof

windows7-x64

3

baseline.prof

windows10-2004-x64

3

baseline.profm

windows7-x64

3

baseline.profm

windows10-2004-x64

3

circle_bur...n.json

windows7-x64

3

circle_bur...n.json

windows10-2004-x64

3

crush_succ...n.json

windows7-x64

3

crush_succ...n.json

windows10-2004-x64

3

js_receiver.js

windows7-x64

1

js_receiver.js

windows10-2004-x64

1

live_animation.json

windows7-x64

3

live_animation.json

windows10-2004-x64

3

mraid.js

windows7-x64

1

mraid.js

windows10-2004-x64

1

omsdk-v1.js

windows7-x64

1

omsdk-v1.js

windows10-2004-x64

1

spark_animation.json

windows7-x64

3

spark_animation.json

windows10-2004-x64

3

splash.json

windows7-x64

3

splash.json

windows10-2004-x64

3

supplierconfig.json

windows7-x64

3

supplierconfig.json

windows10-2004-x64

3

tt_mime_type.pro

windows7-x64

3

tt_mime_type.pro

windows10-2004-x64

3

tt_na.czl

windows7-x64

3

Analysis

  • max time kernel
    420987s
  • max time network
    166s
  • platform
    android_x86
  • resource
    android-x86-arm-20230831-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20230831-enlocale:en-usos:android-9-x86system
  • submitted
    10/10/2023, 10:15

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    baddo.apk

  • Size

    24.9MB

  • MD5

    a73e438be0bbbe7f9b9d392b299269a8

  • SHA1

    9c3c41fdd43fc8cdb05e92ae6049ea4e6204a50c

  • SHA256

    5264734e9d6cee5cb648ff0fbdb870c9bf6a0af367e5516c8269dc414a8ec589

  • SHA512

    57162bf6459a0ade10bf2c04de395e681b75cad78d4199e2ed4caa8d8b6c1db9e62fc2ded447f2170c7a91a8d4d1c5c7fc3e27c8e1d6f1858de2b8f21bf51c54

  • SSDEEP

    393216:aM2ZMMGcOG7QZPOnZ7ZhNaBAb0TCDg3Y00DlraMhAghqGtmYO:KMFcN7HpZzQmD90wlPhEOmYO

Score
7/10
evasion

Malware Config

Signatures

  • Checks known Qemu pipes. 2 IoCs

    Checks for known pipes used by the Android emulator to communicate with the host.

  • Reads information about phone network operator.
  • Checks the presence of a debugger.
    evasion

Processes

  • com.badoo.mobile
    1⤵
    • Checks known Qemu pipes.
    PID:4237
  • com.badoo.mobile:light
    1⤵
      PID:4341

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/data/com.badoo.mobile/cache/sentry-buffered-events/ef0b4304-3de6-4d1a-abd3-fb6c2d0b5f08.sentry-event
            Filesize

            14KB

            MD5

            56cecf16f505a0d6d7c1755796271690

            SHA1

            373774d02e3049351c7461659176f6447f3ff787

            SHA256

            90631a5935d5d10c18b8ecdb32c3ecccad431f39427fa75890b167d6a38ae6f4

            SHA512

            fbbd3f75c249952edab3caa2f476af80d5afcb547f1dfe75c570ed158bef116ee2da3473922d60764c41ed250b32ad0c393004032db55694977304cf929b58ed

            Download Submit

          • /data/data/com.badoo.mobile/databases/com.google.android.datatransport.events
            Filesize

            4KB

            MD5

            f2b4b0190b9f384ca885f0c8c9b14700

            SHA1

            934ff2646757b5b6e7f20f6a0aa76c7f995d9361

            SHA256

            0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

            SHA512

            ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

            Download Submit

          • /data/data/com.badoo.mobile/databases/com.google.android.datatransport.events-journal
            Filesize

            512B

            MD5

            e50eb445b5142ff8ea0f785fe5dd69f5

            SHA1

            f41f2fb8c03bb7ff6651f3c475205ec45c44bb08

            SHA256

            479f84b79ad31eca8ba4a0ee8461cf6cbce00d97dcb2a066d23973d9624b97fa

            SHA512

            d153c04c8c4cd2c90c22f9923b7f203c80c0953bc662757403743beb6f95d9ea740c446a62da10832ed5f5fedc6e2a4548edfa493c9f1380b18bafcd3db5c793

            Download Submit

          • /data/data/com.badoo.mobile/databases/com.google.android.datatransport.events-shm
            Filesize

            28KB

            MD5

            cf845a781c107ec1346e849c9dd1b7e8

            SHA1

            b44ccc7f7d519352422e59ee8b0bdbac881768a7

            SHA256

            18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

            SHA512

            4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

            Download Submit

          • /data/data/com.badoo.mobile/databases/com.google.android.datatransport.events-wal
            Filesize

            88KB

            MD5

            73853bfa5f8cc0ddd21ef504dcbd70d8

            SHA1

            8a7b7981d7dfd5ffc75a9dfb291a58b7bf3ab426

            SHA256

            555b097dbcbe3e035cfcca9ad7204847c2e2f62fe5be8f3124981a08746749c4

            SHA512

            1c0c9403da6f5de6aea3cd2a2fb904a5e4e4cb6e110adf25768638d17a7ac8489f2cbf09700a18eba90db0be2aa633b51b106de188b9ca50072fa6a1152e58e8

            Download Submit

          • /data/data/com.badoo.mobile/databases/google_app_measurement_local.db
            Filesize

            4KB

            MD5

            f2b4b0190b9f384ca885f0c8c9b14700

            SHA1

            934ff2646757b5b6e7f20f6a0aa76c7f995d9361

            SHA256

            0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

            SHA512

            ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

            Download Submit

          • /data/data/com.badoo.mobile/databases/google_app_measurement_local.db-journal
            Filesize

            512B

            MD5

            76c46d9ac9fe06a61a47615ae763e6be

            SHA1

            49f0c3de84d3c6513acfaa279957375a90c7746a

            SHA256

            6f5a037f6e56d4acf77a0e66302e361e3dc6fcc8a2f0f0ca44a5ce70f422f788

            SHA512

            85b2e8152375904b1d40bad7778b52f123e312a5a22506c5cbb6b15b80a2cb444c1049568293b3c0a4fa3fae0dd47090260d4dbb962f5f980c69dde43e3ec618

            Download Submit

          • /data/data/com.badoo.mobile/databases/google_app_measurement_local.db-shm
            Filesize

            28KB

            MD5

            cf845a781c107ec1346e849c9dd1b7e8

            SHA1

            b44ccc7f7d519352422e59ee8b0bdbac881768a7

            SHA256

            18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

            SHA512

            4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

            Download Submit

          • /data/data/com.badoo.mobile/databases/google_app_measurement_local.db-wal
            Filesize

            36KB

            MD5

            3e09806b2e0267aeb64f40da2afad7e1

            SHA1

            3cf992bd733d278eb559b5cb6bea44b1c99d727a

            SHA256

            9e81d549eb3a811f693016956cd47554b776e38a0cdd06722b7e4357560e7b68

            SHA512

            1717d4a3fc38677dd14ca233a465be4149584f40d8a4a07b902d29741beee7ea8fa4df395bec9853b5cfccde1a2ac391b8a6678419f30eb58a1779e8da86cabf

            Download Submit

          • /data/data/com.badoo.mobile/databases/google_app_measurement_local.db-wal
            Filesize

            40KB

            MD5

            4944a0b84c26e39b7063bb5e69241e4a

            SHA1

            6fe4d57dbda01946b4251b041bce81d3fcfeb968

            SHA256

            fbc44a2de45dbcbf4d662d46aa5c15b79729c1850b1004157c0b9edb3952bf59

            SHA512

            a1406acf38863082f55f9c2890ec7ab9c640526b028c1a689ca0080ba75fe0741c23aa43c1ba9dde1b18caa8dff0d05d02bcf5f3a61c718b613279ca3bae78c1

            Download Submit

          • /data/data/com.badoo.mobile/databases/lexems.db
            Filesize

            12KB

            MD5

            ac4cf7caff840bbf8fa5c344b2df7d30

            SHA1

            f38f99d4e0533d58abac84c4fe151e4e647649ff

            SHA256

            330f18f6eec4299787e422465f7d7c46c56c839a8d5a7e014fd0278037e93565

            SHA512

            77493f325fe4f3d4d086be8cb517fdc2c587e854ae1c2c5c03a92de57f18afa2b3502575a8505a9ff13ad7abf65cc3aee71c75a8e86cf7aa9ed1febb2408686e

            Download Submit

          • /data/data/com.badoo.mobile/databases/lexems.db-journal
            Filesize

            512B

            MD5

            351ec7ca31091a58adf470ec4c9eb651

            SHA1

            1b54aa9e931bc392c6ce03711d56191280097a15

            SHA256

            48f97cb764110b57d2b7190e5a03405cc8c3dad7ca7fd61a9e9391c1b7549bec

            SHA512

            768311a0279dd82f19c55266ad31475afa42e111c72710f55e12ccdb7a25e47def82b3e1b1394d81d439bcf4155f1ae91dc3bab14bd83615d6b2b4c3261d7d87

            Download Submit

          • /data/data/com.badoo.mobile/databases/lexems.db-shm
            Filesize

            28KB

            MD5

            cf845a781c107ec1346e849c9dd1b7e8

            SHA1

            b44ccc7f7d519352422e59ee8b0bdbac881768a7

            SHA256

            18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

            SHA512

            4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

            Download Submit

          • /data/data/com.badoo.mobile/databases/lexems.db-wal
            Filesize

            20KB

            MD5

            28832b032e682db662005fc3857d4a64

            SHA1

            7712d8da9fed624465186f3f81a49eeab2d59184

            SHA256

            29483b59fb484f10375022e51056410be63640bd709c4d19c1de46cebf05305f

            SHA512

            90c7cb0f33bfaf4632c17962cd5dfe04ea7ae18b0eedf587fc230c375cb1fe30ffbcaa2215b2847db1b31584767c680e4a41e47a0a26c8a78c3a5952703791bb

            Download Submit

          • /data/data/com.badoo.mobile/files/PersistedInstallation4383027774588675391tmp
            Filesize

            1.2MB

            MD5

            367f7f2c74fdaa52a36e6ba9fbd7709f

            SHA1

            3d731337b79fb2610a8c07d86c495bea3f8aa629

            SHA256

            838871b509fe89945dfcf3b10b36bde55ac888b13f516f4b3dcad32eb789549d

            SHA512

            e249733172cbc98af183b36ee7ccdccf66e661cb5857d2c045e9bbd4170c51e664a91914242484d20a379c462a4e8068b27a29968a65ffbd59165cbe169c4e49

            Download Submit

          • /data/data/com.badoo.mobile/files/PersistedInstallation5686837603783102783tmp
            Filesize

            90B

            MD5

            87c1cc6899bdd8f32eef5b8809472d33

            SHA1

            62404ad57308a73dd6618b12afd867dbb1b25268

            SHA256

            19d95dd0758124a0cf5203961cef52cb1b6ad3d5c02ba5b063a37f70f5b32691

            SHA512

            a7acf9862f9b660b90be3263462e9789134cd63645d6fb6be74fb33fdd3054cf894d9a7c3a08322723a4b5a7f0cccd472fe8274ad264be1c53ecee5aa6401197

            Download Submit

          • /data/data/com.badoo.mobile/files/audience_network.dex
            Filesize

            1.2MB

            MD5

            367f7f2c74fdaa52a36e6ba9fbd7709f

            SHA1

            3d731337b79fb2610a8c07d86c495bea3f8aa629

            SHA256

            838871b509fe89945dfcf3b10b36bde55ac888b13f516f4b3dcad32eb789549d

            SHA512

            e249733172cbc98af183b36ee7ccdccf66e661cb5857d2c045e9bbd4170c51e664a91914242484d20a379c462a4e8068b27a29968a65ffbd59165cbe169c4e49

            Download Submit