Overview

overview

6

Static

static

6

ROOT工具/ROOT.bat

windows7-x64

1

ROOT工具/ROOT.bat

windows10-2004-x64

1

ROOT工具...pi.dll

windows7-x64

3

ROOT工具...pi.dll

windows10-2004-x64

3

ROOT工具...pi.dll

windows7-x64

1

ROOT工具...pi.dll

windows10-2004-x64

3

ROOT工具...er.apk

 

ROOT工具...er.apk

android-10-x64

ROOT工具...er.apk

android-11-x64

ROOT工具...db.exe

windows7-x64

1

ROOT工具...db.exe

windows10-2004-x64

1

ROOT工具...usybox

debian-9-armhf

1

ROOT工具/files/su

debian-9-armhf

ROOT工具...rgRush

debian-9-armhf

Analysis

  • max time kernel
    4s
  • platform
    debian-9_armhf
  • resource
    debian9-armhf-20231215-en
  • resource tags

    arch:armhfimage:debian9-armhf-20231215-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
  • submitted
    22-12-2023 13:19

Sharing

Copy URL
Twitter E-mail

Errors

Reason
platform exec: stat /system/bin/linker: no such file or directory payload error: fork/exec /tmp/ROOT工具/files/zergRush: no such file or directory
Report Analysis Logs

General

  • Target

    ROOT工具/files/zergRush

  • Size

    22KB

  • MD5

    aed52dbab0e924f3e7fbef8d314da771

  • SHA1

    ca36fa51b87e87d9b3a15ef4088431703b0ab641

  • SHA256

    191e8cbac8ef3a79eaf103b8a60f7f79a1668920d8009e3705c71c143f2432a3

  • SHA512

    d3a602372da220f2316de057e051e819d855c4c770e0997a9c13698eddf8e4d233704526a1db0e81ba20d742e760894b9e6c0d11a7a7c760491f08e42beebd80

  • SSDEEP

    192:zlBzPbAQ4lyBzCfHW0Wachajq6tnOrNT+vIUSxIdmj9uJrgaNc4p/IM7hyFqCL17:zlQl2z4tLmrNT+vIdxIdqaNc9suFE4F

Score
1/10

Malware Config

Signatures

Processes

  • /tmp/ROOT工具/files/zergRush
    /tmp/ROOT工具/files/zergRush
    1⤵
      PID:665

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads