00799d7f96810c41d5eaaf6c473cffc71dacf61cf8746d591664c7afc9fc4e55

Analysis

max time kernel
2840042s
max time network
156s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
22/12/2023, 15:15

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

d5a3f90a54a880ceb58143d6f2b2762c.apk
Size

4.9MB
MD5

d5a3f90a54a880ceb58143d6f2b2762c
SHA1

55e0337aa4c44b48430f4b948ad327ddf081e047
SHA256

00799d7f96810c41d5eaaf6c473cffc71dacf61cf8746d591664c7afc9fc4e55
SHA512

f995de3be4072ae42659acaf05fec0a6efc7ce8facb095a978608c83b225fee571cc35226ba74852d9a02af7ba7db74a104ee1e287893a6677d929e610040509
SSDEEP

98304:xz4IMq+efEz6rRQ4bF+hUp/rnwRDRAaaKvkzEODnurGRrQqnP8Z6tYaV92RUX2ZX:RYwC6rKiF+hUpsR4K/ODumQ0Ec92qX2h

Score

8^/10

banker

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 IoCs

banker

description	ioc	Process
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.baidu.easyroot

com.baidu.easyroot
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
PID:4999

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.baidu.easyroot/databases/permissions.sqlite

Filesize
12KB

MD5
4d6c62c1bb0338082f40a5875ef35f83

SHA1
186cf104f89acc4a0d5bf131f67e4f5586701f14

SHA256
6c849bbb1270eb4fb26ad2b73496996853521f2ca6002ec1db4f64a421c4202b

SHA512
1f03522f8f003538e64ea74367866e0bb6489a204ebaa974d720964b44f836218a58f818c680542bf0144bfedd23a5e06cfb8eab01043a664fe1178d6487c12a

Download Submit
/data/data/com.baidu.easyroot/databases/permissions.sqlite-journal

Filesize
512B

MD5
b7e51a7df20d889fc3f5e8e29127b96b

SHA1
6b7b30ab87c9c0d372240df6d5f426739d93cd23

SHA256
b19a2a29b123df4d41af16170adff34d059488b42fee0dbe105b35f48ab6169c

SHA512
244c8480c9c1873ecefc2b73abbb73cc1d1599d16a56cb22e6c08e346fc4030124ef137eb3e2bc1c7abed9b2e52a0c4be4a2a84e96df0347219c08fc1090693c

Download Submit
/data/data/com.baidu.easyroot/databases/permissions.sqlite-journal

Filesize
8KB

MD5
f7c43290f3089af0a819c887feba0d40

SHA1
08561d9f72da2baddb89e7e155551880bfc503a1

SHA256
4d0327a261d5f0fadaf99d9ce67990e16786f68c08ac029b80dd8e89ffa3e48e

SHA512
7cb3d601354ed60c53d2fd1b26cee75f616a203b140d2bdf1b6f0f8c63724b5b789df86d81fa59c6351cc43b73d4eb356aae1452d9b6a2384bc0050f1b1ef81b

Download Submit
/data/data/com.baidu.easyroot/databases/permissions.sqlite-journal

Filesize
8KB

MD5
e4668cdec4d59ad316f7f4125a78df55

SHA1
2028ad3e3d5a1c3802368158c80eacbbb16d9f4e

SHA256
0e7065521b4fb15a21bc0c8fd85252d33584901a02efc9f983167152aacf313c

SHA512
e7df2f371e2495947cb1e7fdbce6d637b9249642c7d57acaf864cb8e4920e799e54b6e60739afdae9ea53660bfd2e63e6a911a44a0d701a7cae944d64ae631b8

Download Submit
/data/data/com.baidu.easyroot/databases/permissions.sqlite-journal

Filesize
12KB

MD5
b20ebcfeb69652d0cb20cac1cf5a28bc

SHA1
2dfba5f5307b489bd82bdafddfbaafe8bb26255b

SHA256
ce15a37a507e5e3771218481c0ba9073360539606c2e138b621b1775f5378b1c

SHA512
fb714a972a0fbf7d6efffa0f8609261ff8bd41872348fdc4b116ab75c602936a2af4fef0815369025941fc79edae9157a79a9152bece28a08f7797644eef9613

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads