Overview

overview

7

Static

static

6

4ebe863a07...36.apk

android-9-x86

7

4ebe863a07...36.apk

android-10-x64

7

__pasys_re...er.apk

android-9-x86

__pasys_re...er.apk

android-10-x64

__pasys_re...er.apk

android-11-x64

Analysis

  • max time kernel
    2569625s
  • max time network
    154s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 16:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4ebe863a075c18ac2e586afc6b358b641d88b58785fce6a46f63bac415da4a36.apk

  • Size

    1.5MB

  • MD5

    0ff1812e39164d59ad6aac76370b76da

  • SHA1

    2a988f53e14ed58240f15aaf61465ac5e282a38b

  • SHA256

    4ebe863a075c18ac2e586afc6b358b641d88b58785fce6a46f63bac415da4a36

  • SHA512

    a19650f2e7bfc0b16bf98c8321ebd5cbf70c96ff0a75a74448b573a616596bda91e0a3be5eb1da136effab8e7dd60e0c41f3f4a614fb8696f8b93c0dcd7aa684

  • SSDEEP

    49152:nsggVZtG4UQDd0WQrqnJcUUutrgxbXpFRC3Iac8R:LgktQDyWQrqnJkutkBXZCDT

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • igudi.com.gdmusic
    1⤵
    • Loads dropped Dex/Jar
    PID:4251
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/igudi.com.gdmusic/files/__pasys_remote_banner.jar --output-vdex-fd=88 --oat-fd=89 --oat-location=/data/user/0/igudi.com.gdmusic/files/oat/x86/__pasys_remote_banner.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4354

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/igudi.com.gdmusic/files/__pasys_remote_banner.tmp.jar
    Filesize

    15KB

    MD5

    e30a9aac690e5970b6d87d1d699f7d2b

    SHA1

    25cbf86ae2d7d3668b799d494d9eee331876e99d

    SHA256

    ee67abc4de559500263c0b623dccaf278ec92128cd788284c5b51e5755fee83d

    SHA512

    1b26dd3b961af028d75a5ac0e4e7907c8d32b1d6f3731c7725b0d0712a1ed02a0abfb09093957d4804f9e7a62978ec3286ab9a0aea9d72b7215159f37351d34d

    Download Submit

  • /data/data/igudi.com.gdmusic/files/oat/__pasys_remote_banner.jar.cur.prof
    Filesize

    365B

    MD5

    77f26d7d4725791153bf124bd277cc79

    SHA1

    a972f453192595a7291dc065542b9ff8fe0cf53c

    SHA256

    b71cbeb6270345ae2b1de041ae5f5acc6ed49ce74674b8a27096aac6ad246f98

    SHA512

    5f001a98005bfa0a3e8a292ad5f52b0e9a0254220b6246faddce52b731a8f6b6f9e25feff18425c6e816dee87c19fd07de39d7258d69a700bcf643e8ef9a3f5a

    Download Submit

  • /data/data/igudi.com.gdmusic/files/umeng_it.cache
    Filesize

    211B

    MD5

    e1c247312be06ba2561ad88d2aaf5474

    SHA1

    ce5e7ac186deff0d1179714e6d3195745c4dd0f8

    SHA256

    c51144e84ea03435f03ff77f8946696a43e1dd30dbc62ca9f4eac1e20a318d2a

    SHA512

    484517b9e7bd4d3b61cce47933206c934f7e2ee3f5104305a4db0811a8af61a51489ef0a737fb3ba227cac41d4981cfb81a5b66928a988ed8a43fe44db6331c6

    Download Submit

  • /data/user/0/igudi.com.gdmusic/files/__pasys_remote_banner.jar
    Filesize

    219KB

    MD5

    32b5f17d5b9556bb43313b15db803048

    SHA1

    4ebd1b47387b7b9a7fb05ce3f82d0d77c5c972f6

    SHA256

    89098c105efdd69006e896d6f1963e84b16e815d5d26ae950535a98e2c23feb3

    SHA512

    3603117ffa72991d7b560422ed4d168ff9513355d5dd6d29208119e77983d4f3c7ca8454da93e79e94ef677584010d98cbf7a5c8f7b8309a57a4e1b4ceb99bef

    Download Submit

  • /data/user/0/igudi.com.gdmusic/files/__pasys_remote_banner.jar
    Filesize

    219KB

    MD5

    9c859e81e45f7d6f6d3a8b8cdaa650a2

    SHA1

    c6798ed55e37020cef4b4c76c095f45bbc404438

    SHA256

    028f5514443840c54d4b832d439a70cd732c4740bf2bedc3a8ba567268225fbe

    SHA512

    f01429687a0a9e85be068b7553a5e0928f7d7b4b306c1ba5823e7151be4e30f1f6a69bdc9d9fa3c5d0d722d8b46dafbfd956783fe4e27d52204c9a29e3092ee3

    Download Submit