bc636088f0476bc619bed4e34a323afe6eda3ecd38c9d3780d7235b9d5939bae

Analysis

max time kernel
2820298s
max time network
146s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
22/12/2023, 03:58

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

superuser.apk
Size

191KB
MD5

4ec9e96986478cb000f9d58f374f39f5
SHA1

7479e11f4df198c743bd430ef54f94999690c73b
SHA256

df3c4cbe2b41398bf8e1e807f5ca1b8a6ca2ebe3f1686f95bc36ea83bbea694e
SHA512

66014107235633919b12ec22437d95651b9f00ea6a0eee5e90ee957b6a4e12b05cecd6a217d4b92e206d8e38442a9e10a754c4275a50fcf19c984b41edaf32f9
SSDEEP

3072:ysF8CMXMGIIFzrdQ5023X9phSTt6rUKaJ/O4OroXB2Nda6B5Hpb2/:dFsXoIxrdQ502JUpNTOsxgBpc/

Score

8^/10

banker

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 IoCs

banker

description	ioc	Process
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.noshufou.android.su

com.noshufou.android.su
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
PID:5076

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.noshufou.android.su/databases/permissions.sqlite

Filesize
28KB

MD5
2c5de1093c6b1ede9259a6902ef44d49

SHA1
538e890a39a4497afb7ee68868ee51371aaf7034

SHA256
0dca9e16f080f58a9158fbbcd9a47b88e258fa8a3107e0204419f0e648873116

SHA512
a93e471b8921cc590b21a6c6f091fcb70743c484e1affdaedd9910503bf772d9340b319259e0259dfff8f1be861f89fcd5b3d02df66ab644971c58b83e2f0dc2

Download Submit
/data/data/com.noshufou.android.su/databases/permissions.sqlite-journal

Filesize
512B

MD5
0d87f00a61dce8331a7264b36fc3ec67

SHA1
a7e3e36e90f0d0e215839a5df941486d16b04481

SHA256
44cf0daf0365aaa5ffafa2e17c04ea81644601c390272e6efafe0b22459698f0

SHA512
53d6aabda4ee18177872c424016df4db123f59cdb1f3da9db6320541c136e5d563c806e924f9e0298f800df959731519aae88ad48d0de8e23db87c741bce8d97

Download Submit
/data/data/com.noshufou.android.su/databases/permissions.sqlite-journal

Filesize
8KB

MD5
cab9bf5b87be9f76afab901db5aaf7e8

SHA1
8867292ea16d7e6fea5d139652de7a990db2a2e2

SHA256
0cde6a168fa1fa3e398de1a592b07eabcc46b5bc284f9b72aa06ac2f66821c8b

SHA512
66abe4db98b5e8456135563d080f69cacc40ad31cc59637f8a3bea3d4a828e89f1de21f19abf87d2528deebd2d65f3257e4d0dae71cb051f4d0b5149fa80e584

Download Submit
/data/data/com.noshufou.android.su/databases/permissions.sqlite-journal

Filesize
8KB

MD5
7a25d224cbdc1dd4062ee43719baab5b

SHA1
220a41212675371ab33004e4687760ede6c5dc44

SHA256
2dca36002be78243ab542f6d121bc9bc0dc63355e6ae114473d9da8ca3796897

SHA512
26b429a0575d3dd86954437e09e9176c29f9d5891c5fbe315f365539b57bc36b3578b46abcb4eee0dae65b4f037a8bda98362ef13227f4d5b03afd61051707c2

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads