Overview

overview

8

Static

static

6

SuperOneCl...sh.bat

windows7-x64

1

SuperOneCl...sh.bat

windows10-2004-x64

1

SuperOneCl...y+.bat

windows7-x64

1

SuperOneCl...y+.bat

windows10-2004-x64

1

SuperOneCl...pi.dll

windows7-x64

3

SuperOneCl...pi.dll

windows10-2004-x64

3

SuperOneCl...pi.dll

windows7-x64

1

SuperOneCl...pi.dll

windows10-2004-x64

3

SuperOneCl...ck.exe

windows7-x64

1

SuperOneCl...ck.exe

windows10-2004-x64

1

SuperOneCl...er.apk

 

SuperOneCl...er.apk

android-10-x64

SuperOneCl...er.apk

android-11-x64

SuperOneCl...db.exe

windows7-x64

1

SuperOneCl...db.exe

windows10-2004-x64

1

SuperOneCl...blinux

ubuntu-18.04-amd64

SuperOneCl...adbmac

macos-10.15-amd64

1

SuperOneCl...usybox

debian-9-armhf

1

SuperOneCl...hecage

debian-9-armhf

1

SuperOneCl...ot.apk

 

Superuser.apk

 

Superuser.apk

android-10-x64

8

Superuser.apk

android-11-x64

8

SuperOneCl...qlite3

debian-9-armhf

SuperOneCl...5.5/su

debian-9-armhf

Analysis

  • max time kernel
    2829713s
  • max time network
    156s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    22/12/2023, 13:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Superuser.apk

  • Size

    191KB

  • MD5

    4ec9e96986478cb000f9d58f374f39f5

  • SHA1

    7479e11f4df198c743bd430ef54f94999690c73b

  • SHA256

    df3c4cbe2b41398bf8e1e807f5ca1b8a6ca2ebe3f1686f95bc36ea83bbea694e

  • SHA512

    66014107235633919b12ec22437d95651b9f00ea6a0eee5e90ee957b6a4e12b05cecd6a217d4b92e206d8e38442a9e10a754c4275a50fcf19c984b41edaf32f9

  • SSDEEP

    3072:ysF8CMXMGIIFzrdQ5023X9phSTt6rUKaJ/O4OroXB2Nda6B5Hpb2/:dFsXoIxrdQ502JUpNTOsxgBpc/

Score
8/10
banker

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 IoCs
    banker

Processes

  • com.noshufou.android.su
    1⤵
    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
    PID:4964

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.noshufou.android.su/databases/permissions.sqlite
    Filesize

    12KB

    MD5

    ea628e04765adaf4238a5dcdff4bbd51

    SHA1

    a801947619ea8c368efe9c006a324dc6339ac60b

    SHA256

    885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

    SHA512

    c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

    Download Submit

  • /data/data/com.noshufou.android.su/databases/permissions.sqlite-journal
    Filesize

    512B

    MD5

    259c7e0c3961e5a0d65deaffae904c5b

    SHA1

    c68e550e5f65a88f61695534b2770311ab1a18ba

    SHA256

    a0837bdace250a7ffe527cdd9a309fb82706647e5f7705c95f8828769b2a9af7

    SHA512

    0d0256145d4033387412917d4ebf4fc2f805b3dc5174adfc06ec7b5546a24e359eef0c51c236bb677c40c62363ae369865a499fd392c2fc06015825e4dd640ec

    Download Submit

  • /data/data/com.noshufou.android.su/databases/permissions.sqlite-journal
    Filesize

    8KB

    MD5

    2849e325b1279e3d49bb669d09b3823e

    SHA1

    fa9ce61dd0b477c962287a09ce5871afe8f5bbcd

    SHA256

    74ab7a609cb8ace0951916c5556b3b0e61c3c04e36cfcf50b0e3c0070ed85620

    SHA512

    dce845264e5b85a0ca960dd1b4ada8140e08c09c1e4e5e4f62c3c50a5182253b09046225ba59310cf9cc295631b32c17beef09c7eb4994e810366cd15740dd41

    Download Submit

  • /data/data/com.noshufou.android.su/databases/permissions.sqlite-journal
    Filesize

    8KB

    MD5

    d09f121d5c7ff94655e97d54b481cfea

    SHA1

    2a0ecf46d9296c932e5d1b4161be9c8139a7e5a6

    SHA256

    d51a2553f4119e70dcd4a29313767255d22e825abebbbd9276f897d8aa88989b

    SHA512

    6f4e3b35d06cddfae7ac915d3b99191ca002bda8efc687652e5b3ea21e70f83c955b60b125fc67f67a009aff53dd8e80c65cd8cc6a2c7093affbf58c599b4a78

    Download Submit