Analysis
-
max time kernel
2760187s -
max time network
159s -
platform
android_x64 -
resource
android-x64-20231215-en -
resource tags
androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system -
submitted
24/12/2023, 03:47
Static task
static1
Behavioral task
behavioral1
Sample
ca5e72e18f77b97dfd67f5224d371b32b6668f4da89e345675da5f82e68d2214.apk
Resource
android-x86-arm-20231215-en
Behavioral task
behavioral2
Sample
ca5e72e18f77b97dfd67f5224d371b32b6668f4da89e345675da5f82e68d2214.apk
Resource
android-x64-20231215-en
Behavioral task
behavioral3
Sample
gdtadv2.apk
Resource
android-x86-arm-20231215-en
General
-
Target
ca5e72e18f77b97dfd67f5224d371b32b6668f4da89e345675da5f82e68d2214.apk
-
Size
13.9MB
-
MD5
d9b6791b42abe0a1d98388874996befc
-
SHA1
34f862a415c87b2baf32aef7d5a2d34a08987f8a
-
SHA256
ca5e72e18f77b97dfd67f5224d371b32b6668f4da89e345675da5f82e68d2214
-
SHA512
ed9298c40176ce70c9c062ec51cf6b5cb9eb661f1ba17bbd0fe4598487e8ea089cecf7bea71c7fdf889bc1b6909232dd048d080efec0f5bb63d26a7e249919c6
-
SSDEEP
393216:O15OG2ENl4aSppIQ4y9QpUHJwIanMDzolysshm:gEijS+Q4yrHJwIEizoINm
Malware Config
Signatures
-
Checks Android system properties for emulator presence. 1 IoCs
description ioc Process Accessed system property key: ro.bootmode com.lushi.zhuanbao -
Loads dropped Dex/Jar 3 IoCs
Runs executable file dropped to the device during analysis.
ioc pid Process /data/user/0/com.lushi.zhuanbao/.cache/classes.dex 4991 com.lushi.zhuanbao /data/user/0/com.lushi.zhuanbao/.cache/classes.dex 4991 com.lushi.zhuanbao /data/user/0/com.lushi.zhuanbao/[email protected] 4991 com.lushi.zhuanbao
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
9.1MB
MD5fb486f505367d208d369c5966a5b2890
SHA1b83c2a6ceb7c34733f5d6b4f126eb649d949446d
SHA2568269e03881be58f07ec8e6a6ef34959fa21e118300d7d9c98303396108ceb06d
SHA512bfc5a05fa93b3b547f31a91e9bf938cddbd15374f7017ea32303b4a895164f01ca966036883c3b990e4f7d348c1cdadf767610ed65d2751a66ae3d00e6d9f15d
-
Filesize
3.6MB
MD50586dc02a4d8a63d350ee7797c2d4b12
SHA13c368f9bdcd6a99729a9d4a0d1ee1a567c394111
SHA2560157d405f9e631d85fc4bd6ad918d0e30ea586ea14c6765437b87397a237fc28
SHA5121ef774629b48aa2effa1835eca24b5fe43dc150abe474f12ea2a4822de309c31048391dc64549abcf42e09fe5b6df56d74041c93de64c423081376478f8e17f1
-
/data/user/0/com.lushi.zhuanbao/[email protected]
Filesize48KB
MD54e93a7a07efedcc6e3c741526d2d89a7
SHA1e25833d7a51783c17978a7c5e7953d7cf1df80f5
SHA25626fd97dcb56a0ae4ffee7b9514cb697de101ad39e3b2af2933b1eadf409b740e
SHA51294a5e0b50c0efc69b79fe9b46513537b798a45d00234a7fe1c529e7d5eb153704ec9966a0e0819983f726260579707d7b82e7b31f845fa7602e06c078b98319f