Overview

overview

6

Static

static

6

7fbe3429ff...3f.apk

android-9-x86

5

7fbe3429ff...3f.apk

android-13-x64

5

Analysis

  • max time kernel
    2355843s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    20/12/2023, 03:10

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    7fbe3429ffce4d98648737e1d013d2d30155182a607ed316d2b374a43a817c3f.apk

  • Size

    19.9MB

  • MD5

    c7a8cf94838f2d0ae6898de020f7c2ce

  • SHA1

    7876d827f504b64a2e08930b18727a28c2232bc9

  • SHA256

    7fbe3429ffce4d98648737e1d013d2d30155182a607ed316d2b374a43a817c3f

  • SHA512

    d83db111ef97698e031a0b4371d6b0d638a108bf1537b96b1e8956e7c9cdee961e77d0d32103d09c9d72c068ba1d1e398c03c6fd8700c41bdf775ab531c78a92

  • SSDEEP

    393216:cWUqc5NQOVIMK3PcTQCH/VanLbxaFG26bLRpiqjp2w0qcatIaeeUL2+R4T:UqcYf3PFCH/YLbxCkpqnatyem2+RE

Score
5/10
evasion

Malware Config

Signatures

  • Checks the presence of a debugger
    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.cordova.nd.app
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4251

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.cordova.nd.app/files/.YFlurrySenderIndex.info.AnalyticsData_G99T5PB3XSCTVRPFBC39_254
          Filesize

          88B

          MD5

          cba619dfa5a71275e8e39101d96f0ec4

          SHA1

          dd803f6e30284b21f88e33d98ba458b4a129539a

          SHA256

          fedf085f8fcfd5c120d0f0f44d47086b6e0ed97a44a00b3690aa0fbdc432dff7

          SHA512

          c2b807d6e12053881fe1605ed21699cc0143e34c1f6f53758d0b91017f4e4afee59403e791c305ea8c43ac59909924bc89c1f028392d4dde6c1db5b3ef49323a

          Download Submit

        • /data/data/com.cordova.nd.app/files/.YFlurrySenderIndex.info.AnalyticsMain
          Filesize

          72B

          MD5

          a9b3aed80cd80fa9e48a476a4fee1529

          SHA1

          45db5451d08ada75f86afd227b266b2acaee18f2

          SHA256

          caf0713b86fb76c411aa6de6dba126009f1d8895f523804020cc3a44b4cf169c

          SHA512

          156f89ce0683296cd440cadbc756323d44665b0561d02706d92c2d06f8ea0ac0a5c22dd9befb680cdeea479e07032b965ce8c3967252fd96932e221688a44905

          Download Submit

        • /data/data/com.cordova.nd.app/files/.yflurrydatasenderblock.69c98c39-67f2-4975-8969-0e504c31e422
          Filesize

          305B

          MD5

          db74dd5730e2d16624dd32576fadf62f

          SHA1

          aa86fe46621f182622ebc1335b14ca09be1aef79

          SHA256

          b32498b0454fd41411a87c7239a9d7c39363c61b4da96be3ecd937c34c409697

          SHA512

          1fb20338e45fc95d7c553a687f1bc53b5b80bd3af8ce755c1cf1d93fb84742679cdb8fda0e28240aa36a715dc3e2994efc5295f22ddfb907dd170207fbeb207a

          Download Submit

        • /data/data/com.cordova.nd.app/no_backup/.flurryNoBackup/installationNum
          Filesize

          99B

          MD5

          d7beb512f4b10eed06bf923401ec9049

          SHA1

          1161376258ab18c305d357cd8ac974e5d75d2dd8

          SHA256

          977f92b31e0a34afa75795b571199771a786e22331bd3d4a0edc658901a70a24

          SHA512

          c824bf071b0639638484965358a8bcde7baddb9cd767bbce84ee59e5a3d4fe832ce9ac55d37f87710ffc47c4bb4d846303660b3284a3e124f9a1dd1177ecfb24

          Download Submit