Overview

overview

6

Static

static

6

f2302c6728...ce.apk

 

f2302c6728...ce.apk

android-10-x64

6

f2302c6728...ce.apk

android-11-x64

6

Analysis

  • max time kernel
    2802302s
  • max time network
    149s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    24/12/2023, 07:26

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    f2302c6728940480fd31cda30da91de312ef3e3a1dd18363da69d9c1ef7d11ce.apk

  • Size

    17.5MB

  • MD5

    ee369ee5ac047ce8ec6d7b313d0d1721

  • SHA1

    48adbac8c148e636e937a5f72c2a77142c1a0b01

  • SHA256

    f2302c6728940480fd31cda30da91de312ef3e3a1dd18363da69d9c1ef7d11ce

  • SHA512

    735ed2eaf0894faf86aa1944df4afac1324a120f08fc28aaa97a6c3a9509236d36c86c2fc92233ce6540a16fe44807d61c67c43f3726ee98c91edef30f8c7302

  • SSDEEP

    393216:PAEi35TtXrSTrhKOydBu/TOFG0POQwlEVdWA8Vj6a2FCHEa1Fj7TSkrj:Pu37yoOydBKTOFT5fZ8P2ska1df/n

Score
6/10
evasion

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Checks the presence of a debugger
    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.samerzayer.themes.rotox
    1⤵
    • Acquires the wake lock
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4452

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/user/0/com.samerzayer.themes.rotox/databases/rotox_icons
          Filesize

          12KB

          MD5

          f41f531c07d4141546a531ff9caffdcd

          SHA1

          9dcac5aed06972d0ff6bd4cc1f1cdff85b36d3f5

          SHA256

          bb8dee5b5c3779f175abbd142722eb0022b98d374783aa80145b34614a4de646

          SHA512

          e0c8d1a820cb4c098e45776e8b50ea8c83944ef2e3f005cb0acbfc07688974d370f78100ae022f62564fc4c12acfdc43b710c18ca1c30f4f575bc08b9b12d2d4

          Download Submit

        • /data/user/0/com.samerzayer.themes.rotox/databases/rotox_icons-journal
          Filesize

          512B

          MD5

          739d484aa1b35b5e94447c77ea421544

          SHA1

          fe702c164c3280f6415e7e1d90fc423f48a7c278

          SHA256

          895ffa2255e16268d7c5603c4ac9aa72fa2d552bbe9e149013978487bc945394

          SHA512

          32ef55c54869809a7248170d982aabb100a3febc219625ca37e7f43df586f5597e9e2dd37476b0328fb7eb611691081debb491240eb6ef5a0e06c5bb5cca718c

          Download Submit

        • /data/user/0/com.samerzayer.themes.rotox/databases/rotox_icons-journal
          Filesize

          8KB

          MD5

          70fe88ca3301743012aead9d01253221

          SHA1

          07d47764af3884a05cb9ea46ca42b30e505be508

          SHA256

          9952d3b57c809b7c1704219015b65888d60d9b9cd92eb080ca721ae4fab8a588

          SHA512

          0e0706bfcbd663fd4fb0b4a7d57f52167386f01659488907e1d8281a734dfaec2f698941b6da1bdff40654b75cab063b6f3dbaec11cdd62703f9eb1bbccc47b3

          Download Submit

        • /data/user/0/com.samerzayer.themes.rotox/databases/rotox_icons-journal
          Filesize

          8KB

          MD5

          47837851a0625b20881c0dea924a4091

          SHA1

          40e7fa99a4421739399cbeb7e9be250282d6d57c

          SHA256

          18dda0a50f8cd7a8e5e94b819615e4d902c40435b744d1f9da1dddf4ef9eceb9

          SHA512

          13680bf297b70ea20978e44e8bed424943137ad1f394ffa1ec99062929248a797088ca7231127446062fec6a9a64353a991415436a6932b14a3f35d0c73093e6

          Download Submit

        • /data/user/0/com.samerzayer.themes.rotox/files/.TwitterSdk/cm/com.crashlytics.sdk.android/658B03E90058-0001-1164-14E029FBA388SessionDevice.cls_temp
          Filesize

          101B

          MD5

          2d47e0e49be0e431eef045c7e30d656c

          SHA1

          9792e581fd79552dae05b2f6abb2255948918506

          SHA256

          f04a5d339045ace34bcb07f57c33097b3959e55001ccad853f4123ff6e254eff

          SHA512

          0b7884c82db1a5fb199c35c78a641cfc6d83cdcb20064a4f8ec44f36989ea0d0cbd375967db690ca674b87ff87ab0b633d70e89338e02a6cfc0d3f49e1b4c386

          Download Submit

        • /data/user/0/com.samerzayer.themes.rotox/files/.TwitterSdk/cm/com.crashlytics.sdk.android/session_analytics.tap.tmp
          Filesize

          16B

          MD5

          c33583fae4e0b61cde1c5b9227963237

          SHA1

          fe2ebe4d27469af1460f7e852031a04208ef629b

          SHA256

          35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

          SHA512

          fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

          Download Submit

        • /data/user/0/com.samerzayer.themes.rotox/files/.TwitterSdk/cm/com.crashlytics.sdk.android/session_analytics_to_send/sa_8d52938c-6413-45c3-9b0e-e145eabe328e_1703609321642.tap
          Filesize

          304B

          MD5

          9d57aa627d8e62ac6a054907ca9eb225

          SHA1

          08530016ad27d9a0655d58b78d93aa084c3df67b

          SHA256

          9ae1c71abf656b7467142e618e36ec0562f2237f226c7f3a0e89a64b66e5108c

          SHA512

          c8bae21598405b6081660c01574ca9750ec4fbb4b2cdb8b8979fdaa0002843e0127ccc933dd155904cc03ccdc919b8a4f1d5faa072f918b16585cfce9af3c05e

          Download Submit