8d9a48a2f604b1ecad1feb7afdacce1c9ed29f6d52299c478cb29b097af642be

Analysis

max time kernel
152s
max time network
131s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
13/02/2024, 03:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8d9a48a2f604b1ecad1feb7afdacce1c9ed29f6d52299c478cb29b097af642be.apk
Size

1.7MB
MD5

4877d7b6903450a897dc3226ae97c3db
SHA1

2b4f8b7ff433a849e97fb74559a698d6fc6c6f11
SHA256

8d9a48a2f604b1ecad1feb7afdacce1c9ed29f6d52299c478cb29b097af642be
SHA512

e0e719a1f75bb08fca2410c0527b451c9efa6179bc7a44e497c2563259fa9b0ccca836f24dc3043722cb74fcf799dcb78c1b6519a56c358040a47a88c02578fd
SSDEEP

49152:Q/oWyPEjuHg4nOijiJ6/dH50JThfv3MXCEj0:a+ESA4nRf50jf/eCEj0

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.ballhop.nearme.gamecenter/files/923bb6a1.dex	5121	com.ballhop.nearme.gamecenter

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.ballhop.nearme.gamecenter

Reads information about phone network operator.

com.ballhop.nearme.gamecenter
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:5121

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.ballhop.nearme.gamecenter/files/923bb6a1.dex

Filesize
1.1MB

MD5
1a85bf10002e7a7ebe7a580fc19bf933

SHA1
fe158a7c77ba9b0ca114f0e486a71f9ac772c43c

SHA256
3262f7d4ff707a137f80d04269099d4a14e87e2683364dde119884d128144852

SHA512
3707e195e85ebb9d86fc970acc234a0074c03a7003bb2977aeb645fc29df1866d9597bd98ebf1d260a87c19927f9f3bfb284de99d9c19f72dc62984875ac196c

Download Submit
/data/data/com.ballhop.nearme.gamecenter/files/ncftr

Filesize
727B

MD5
47b7aaa3ac5bfd494f32e693e9a84a2e

SHA1
2ad7271377b3157e7bf615798afd6143e4b78d26

SHA256
0881d4849e7c80448da321f554b8d33ad54c671f38325f199145a970f6d08eb8

SHA512
29960d37a55b16bacd3e5a5ccb35ed03d0e98092c68ecf690dce38bb2d8ba3220d84c76e1c764caa07601f06708cb3e0edf63423970f855289ff8ac89a4279da

Download Submit
/data/data/com.ballhop.nearme.gamecenter/files/uMPmi

Filesize
246B

MD5
29633ef64664fac60fe27881f0c95bfe

SHA1
70d342e13fc25c3270c4da5dd13864e630e017b2

SHA256
2aeeeb5f7d746ee51c975ccfbb6481e16eda37b03f222482fe0d78bb83f961a0

SHA512
0dc7a0e603607e2ccd2200985d08508e91701cf39f10e2ddb673a481445e084888bb4384f6f7c95008b59b9a9a4dc602831e3068ecc729d0b83c4404799b5f68

Download Submit
/data/user/0/com.ballhop.nearme.gamecenter/files/923bb6a1.dex

Filesize
2.7MB

MD5
949a370f2b874ac7489b9e70aa73d1f0

SHA1
9cfd5520d95b497c0c24067a1678d204fab852be

SHA256
6d20f4d0eabb0850cb8116a150ba1110dc121caff631797f3f39c2c787a4fb56

SHA512
4cc637139bb3a312469b19dc04ee30ed4f5cf009e6ff460ddd133243e57bb5d69ae2ac6156b35a883a4000dec60efa5fa4e88ae66ad6080f485c32f0704a945a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads