Overview

overview

8

Static

static

6

7a141b8099...b9.apk

android-9-x86

7

7a141b8099...b9.apk

android-10-x64

8

7a141b8099...b9.apk

android-11-x64

8

Analysis

  • max time kernel
    2715069s
  • max time network
    139s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 19:34

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    7a141b8099d4a6c401ea8ce6f012e1d9bcb783558c03e16e6159c1c0756207b9.apk

  • Size

    18.6MB

  • MD5

    6054ccdb930e5dcb8cd78d5cb3bb02ac

  • SHA1

    c82964deb0df0d910086d9f9513fc211619550eb

  • SHA256

    7a141b8099d4a6c401ea8ce6f012e1d9bcb783558c03e16e6159c1c0756207b9

  • SHA512

    0e4569a48c3eec774ab101781772aa160dd51b608f2a7ffe683ccd28757ef278d0212993cb496171f02cb7d2c2c993c4641ca1614b3fdb20cda315a480d8c19d

  • SSDEEP

    393216:8XGacVcQPIde0PJndZL2YyRbmr3eaFOuMNy8qm+qj/8HZJ0nde+:9zVc+Ij1nfwbIFdMo83+a/8HIt

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 5 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.ibstudio.tankattack2.bnn
    1⤵
    • Loads dropped Dex/Jar
    PID:4229
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/data/com.ibstudio.tankattack2.bnn/.jiagu/tmp.dex --output-vdex-fd=42 --oat-fd=43 --oat-location=/data/data/com.ibstudio.tankattack2.bnn/.jiagu/oat/x86/tmp.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4258

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.ibstudio.tankattack2.bnn/.jiagu/classes.dex
          Filesize

          5.7MB

          MD5

          2af0e4948bb803b8e81677adb72ba33e

          SHA1

          178b10b37fba7d55123b618a71f139d97a77b1f3

          SHA256

          a4b829989dc3b209a4cd7ec0f87c9f4d8436c0872330123a2c196bde2b146b0f

          SHA512

          b3b5d5188f8fbfba0fb7393dba7c6187a6979ce09e3f2c9f77454938c83520b7d118758fd3f43a3a28c97d27a3e5f8358a352d24cac10614f5c1704902f93d71

          Download Submit

        • /data/data/com.ibstudio.tankattack2.bnn/.jiagu/tmp.dex
          Filesize

          284B

          MD5

          f1771b68f5f9b168b79ff59ae2daabe4

          SHA1

          0df6a835559f5c99670214a12700e7d8c28e5a42

          SHA256

          9f8898ce35a47aeafced99ea0d17c33e73037bb2307c7688e50819966f4ae939

          SHA512

          dae27d19727b89bec49398503baa6801640540355688dfabbe689c97545295c2c2d9b0f0dcd7cbc4cfbf701d0c0c3289e647a152f49ff242d1ecc741efe4145d

          Download Submit

        • /data/data/com.ibstudio.tankattack2.bnn/files/kuaiyouxi/datas/config/version
          Filesize

          10B

          MD5

          c4e53852b86a2684a8822f847fb4ec2b

          SHA1

          c2f9b219bcbbb6e21001511ec7915b390dd76198

          SHA256

          29d6633bbc9132473922772bbbdfbe3ade3fde296817a8b68edbf3277f276575

          SHA512

          9517d35220079fb78218e99113922ae7ba75be00f760637cd5aa2995a406714dbb25c3c614407e4fabac82f454eff73b60a3f4fa722104fcec54cbc684d6a57d

          Download Submit

        • /data/user/0/com.ibstudio.tankattack2.bnn/files/kuaiyouxi/datas/res/1595/dex.jar
          Filesize

          5.4MB

          MD5

          51667da8148c741f0c191daea135752a

          SHA1

          e1644b00954dedb8006684f993d19e187b28b578

          SHA256

          d69109e1e8bdb0bf209709dc2374932b9671eebe887eacfc307afb7ed8747213

          SHA512

          e3144da932994182f17ce4cfe91a6a1373e9cf0cd4a32bacc06a1257fbe598e7e90104f31be62c5659bc9bf55221c9cd60c75f180fd6dac6fbc5744bff9eb749

          Download Submit

        • /storage/emulated/0/.rwtest
          Filesize

          1B

          MD5

          13c8ffd977013703a701cf8e11deac65

          SHA1

          067d5096f219c64b53bb1c7d5e3754285b565a47

          SHA256

          e7cf46a078fed4fafd0b5e3aff144802b853f8ae459a4f0c14add3314b7cc3a6

          SHA512

          527cff2b6fdfbc0f54fe092b17d6d8c7e22500242635fa56981e85a64da6ce8a12a3a66cf69fd48f588bcba9bad141b8e351a0cdd4925ae57289933eec1fc153

          Download Submit