8d9a48a2f604b1ecad1feb7afdacce1c9ed29f6d52299c478cb29b097af642be

Analysis

max time kernel
147s
max time network
140s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
13/02/2024, 03:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8d9a48a2f604b1ecad1feb7afdacce1c9ed29f6d52299c478cb29b097af642be.apk
Size

1.7MB
MD5

4877d7b6903450a897dc3226ae97c3db
SHA1

2b4f8b7ff433a849e97fb74559a698d6fc6c6f11
SHA256

8d9a48a2f604b1ecad1feb7afdacce1c9ed29f6d52299c478cb29b097af642be
SHA512

e0e719a1f75bb08fca2410c0527b451c9efa6179bc7a44e497c2563259fa9b0ccca836f24dc3043722cb74fcf799dcb78c1b6519a56c358040a47a88c02578fd
SSDEEP

49152:Q/oWyPEjuHg4nOijiJ6/dH50JThfv3MXCEj0:a+ESA4nRf50jf/eCEj0

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.ballhop.nearme.gamecenter/files/923bb6a1.dex	4754	com.ballhop.nearme.gamecenter

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.ballhop.nearme.gamecenter

Reads information about phone network operator.

com.ballhop.nearme.gamecenter
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:4754

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.ballhop.nearme.gamecenter/files/923bb6a1.dex

Filesize
1.1MB

MD5
1a85bf10002e7a7ebe7a580fc19bf933

SHA1
fe158a7c77ba9b0ca114f0e486a71f9ac772c43c

SHA256
3262f7d4ff707a137f80d04269099d4a14e87e2683364dde119884d128144852

SHA512
3707e195e85ebb9d86fc970acc234a0074c03a7003bb2977aeb645fc29df1866d9597bd98ebf1d260a87c19927f9f3bfb284de99d9c19f72dc62984875ac196c

Download Submit
/data/user/0/com.ballhop.nearme.gamecenter/files/923bb6a1.dex

Filesize
2.7MB

MD5
949a370f2b874ac7489b9e70aa73d1f0

SHA1
9cfd5520d95b497c0c24067a1678d204fab852be

SHA256
6d20f4d0eabb0850cb8116a150ba1110dc121caff631797f3f39c2c787a4fb56

SHA512
4cc637139bb3a312469b19dc04ee30ed4f5cf009e6ff460ddd133243e57bb5d69ae2ac6156b35a883a4000dec60efa5fa4e88ae66ad6080f485c32f0704a945a

Download Submit
/data/user/0/com.ballhop.nearme.gamecenter/files/PersistedInstallation7571301703269112076tmp

Filesize
569B

MD5
e04413c54bc0e5564c6b80f503448214

SHA1
37ea63428923eb2920db869460479df8700ef9d2

SHA256
efe1f1b5918f1b8e1653fb7a77cacf33afd10e86d648e9637287a49b303855f5

SHA512
3d3a7ae34eb00e0bcfe8d16f48992572e294ec7078274fec4729aee4768fcdfe15ac793fa127f6f5d2b204f59828bb60fb6108994aa60b44c0b7d18fb556da4d

Download Submit
/data/user/0/com.ballhop.nearme.gamecenter/files/uMPmi

Filesize
246B

MD5
f5ab39b28f4b92846a2f1db0e9de360b

SHA1
9db669cf30597b130f59a4787699c1e6edcdd08c

SHA256
b5d91abfa14d269dcea142762117234f4d9f5b9ff2d00aa6d3f1dcc479cb5784

SHA512
4f6ae6bce84696703712a174aa5fd54bf495efe0cee414ffd5e247440f3d4ba593fbdeb2a60b5c0afe143e3814fd8930cfe11dc0b81ddb94aec2bff029a4f1d3

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads