76325a56d79b00182e4bc4386794ea6e5d7aadbeb836b265355a84dd4f9f20f4

Analysis

max time kernel
2300072s
max time network
133s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
20-12-2023 00:51

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

76325a56d79b00182e4bc4386794ea6e5d7aadbeb836b265355a84dd4f9f20f4.apk
Size

26.2MB
MD5

3c744e6c376d09757a383f013bd59bf9
SHA1

a30463b9bb1f42918d8c7f6daa116ae2c7f5b246
SHA256

76325a56d79b00182e4bc4386794ea6e5d7aadbeb836b265355a84dd4f9f20f4
SHA512

fed8abcd84214805b294d483016436f1bf6c2ada4d1a8e1d41eeb6c2b1218ffe22759eac9b09a168cd798483b3cfc8c25978e6feb78c82b98272219dcbcd1d01
SSDEEP

786432:Xm7i1RUUD0G9ka690NbqpVY6RCkiPTCATzNUu5P:W7irUad6GZJ6RgPTC+hH

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.ketchapp.protecttheplanet.mg/app_mimo/mimo_asset.apk	4251	com.ketchapp.protecttheplanet.mg

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.ketchapp.protecttheplanet.mg

com.ketchapp.protecttheplanet.mg
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4251

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.ketchapp.protecttheplanet.mg/app_analytics/analytics.apk.tmp

Filesize
333KB

MD5
ca3181d4b46198a350caa06164174d95

SHA1
757c9c47775c5f746e85c89a217b4899d92456a6

SHA256
dd2f890f7fa8b4ae1a62cad8f477affec9c5f631c11263f9640b3051e341fb9e

SHA512
f61523902d25b3d8e01436ff35252f613e7329c5eb581c30df41dbb13e8ca03b84e273907b32cd601f10ebf7c0f98f4b26c293f97fe9dfb5fcefc47fb79701d2

Download Submit
/data/data/com.ketchapp.protecttheplanet.mg/app_mimo/mimo_asset.apk

Filesize
290KB

MD5
6aa0d86e3f647066d88b26920be6406a

SHA1
3c1523b65336091cdf69a434b0b53144f215f9ab

SHA256
29326415aa80455db402201f681b0b020f91b20986eb589199cbb85ec32a1a6c

SHA512
7712a409ffe2a64c00845b79ff8da803f60c170fdf2b0cad72af8566d6b22a34d096e72ddf5725dae46ea9270c80aff94d72c07a4d5fb1fdd25b5f8bc593b759

Download Submit
/data/data/com.ketchapp.protecttheplanet.mg/app_mimo/mimo_download.apk.tmp

Filesize
400KB

MD5
3e86b24cfe8ea3644e3a6bb2f3bc75a1

SHA1
7881136fb412166d04ad5b6c4fdb9550a66fd99f

SHA256
1b01837a2b9004309bff95248adc60d39ffdadc90e52ebf645b2c5ce76f28bc7

SHA512
40ec714867b4a3e0aaa920abb648f331ce43e8bef442e782eff5ebaacb1052785e681c23b85f6ec50bc4e57e5b9924e61ca4fd72589f810ce8c670b5094b612b

Download Submit
/data/data/com.ketchapp.protecttheplanet.mg/databases/cc/cc.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.ketchapp.protecttheplanet.mg/databases/cc/cc.db-journal

Filesize
512B

MD5
983c66062b7ed23fa5e0e8d26a4f1bd2

SHA1
efb167b559ee1a22b0d2b8d76d306fa9fd55e471

SHA256
3697512c8cc9350611c77635ebfd77e39797523fade41e3414e76ba2cee7ef2c

SHA512
a606b8732c9eb8df970c1ea0ce28f2d4f0020b379d4849ed072c4d4439f506fd0d5eb1c16419693ff3529722754261f0b3596631455fd3aeefebed0abf7b0141

Download Submit
/data/data/com.ketchapp.protecttheplanet.mg/databases/cc/cc.db-wal

Filesize
48KB

MD5
10440c84dbcc38a728ee2a071eca0e48

SHA1
6810d56003249d4e2c6b92f29966682b23516386

SHA256
b732aae8b556bc3009915c2d200d2048c8dfc85ee75e55a8bd4a5b1f4ccb796c

SHA512
093f22e8cfa08924463af576cc090ed85fc2ee2b4b0e6a1c57322b92c849e88b50d1c79416890dfb75eb27b5ac977b8a84292b7f95cc8fad0936b0aed2f8ca0e

Download Submit
/data/data/com.ketchapp.protecttheplanet.mg/databases/ua.db-journal

Filesize
512B

MD5
0ef4e3fca8deafa8a2e04d7925b5eb85

SHA1
55df86b7af305a64987d005f40ad9e1db3a1ca7f

SHA256
e306e993027017097d2703ec755d9b7d9c1b33bfbd5ba62ead773986002bd4f0

SHA512
1f2a9ac194cfd7c87164971dcf9489fa866f6e2c1845dd79d49e312c1227418a68a8bc2dee8f280a422f72aabbd28efbc45aa303f22fd7d5d57646bdd58aca87

Download Submit
/data/data/com.ketchapp.protecttheplanet.mg/databases/ua.db-wal

Filesize
72KB

MD5
3cfbb4a832c5daf35f4ef544db6270c0

SHA1
3c5edddbf3ab674e25bbf5da4a655549d88649ea

SHA256
b79a22871ecf9fd425774b037a93610f0cc0149b60cd518f7c65d455658efa1f

SHA512
498329816629d7b71a6fb7d656031075b2d0c6975f12b1bf9b0cfb52c14023c4f0554b6e228724140d898beacce6fb5820d54c0973cfddddf2ca661e96730340

Download Submit
/data/user/0/com.ketchapp.protecttheplanet.mg/app_mimo/mimo_asset.apk

Filesize
483KB

MD5
4eaceca896e042dad57a243a1fb5de5a

SHA1
36bf3bfb8e7cf586a74056c960bceb34e3f6f43d

SHA256
235519d6004c77efab00b952c770491bd1b5b554a55864475bb5707d42cde39c

SHA512
7fd1c59e238cf870dde962615e05101ca468a3402139fbf8d2e70449563881f52cf15e25bd35c2b43490bb7596c5ebaa163423a63117ce7390fdadc04fb2a445

Download Submit