Overview

overview

6

Static

static

6

04dc81f549...7b.apk

android-9-x86

6

04dc81f549...7b.apk

android-10-x64

4

Analysis

  • max time kernel
    150s
  • max time network
    157s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    20/02/2024, 22:02

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    04dc81f549d8f0ac969f492179ae7c5bb2c7712d30c9eaa487845a2f585f147b.apk

  • Size

    2.2MB

  • MD5

    5174053e2b12a7ca26fae0406579b5b1

  • SHA1

    b6b969e31b17542d23d10ae20b02818707508435

  • SHA256

    04dc81f549d8f0ac969f492179ae7c5bb2c7712d30c9eaa487845a2f585f147b

  • SHA512

    b941451c46a1b76f8659a28591e3d52778fd0a0eb81631b73fe1d8f51f95ee26ddd523cef6525b38976f300ec826401653bb9142f7ae77f55d6d54593d50dca9

  • SSDEEP

    49152:h7QlaQES0YNGjqW+1VhvdmMRTIsGA05xbEIJfrhHD:F+l0YNGGXVVUxsGA05HJfrhHD

Score
6/10
evasion

Malware Config

Signatures

  • Requests disabling of battery optimizations (often used to enable hiding in the background). 1 IoCs
    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • scbrlfjooy.oaifjkccceagnrq.mhhwijqffcj
    1⤵
    • Requests disabling of battery optimizations (often used to enable hiding in the background).
    PID:4272
  • scbrlfjooy.oaifjkccceagnrq.mhhwijqffcj:imkzgh
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4301
  • scbrlfjooy.oaifjkccceagnrq.mhhwijqffcj:Daemon
    1⤵
      PID:4489

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/data/scbrlfjooy.oaifjkccceagnrq.mhhwijqffcj/databases/tray.db
            Filesize

            4KB

            MD5

            f2b4b0190b9f384ca885f0c8c9b14700

            SHA1

            934ff2646757b5b6e7f20f6a0aa76c7f995d9361

            SHA256

            0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

            SHA512

            ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

            Download Submit

          • /data/data/scbrlfjooy.oaifjkccceagnrq.mhhwijqffcj/databases/tray.db-journal
            Filesize

            512B

            MD5

            ddd421efdc0a8c6138fce803e85a90f5

            SHA1

            5e2434186384fe97bc487a6850de2e2caa158be7

            SHA256

            0f0c76e06fefb2f94f8e9795025356714e0668244380baec40c3bbc3c9c234d1

            SHA512

            af2e8d31ca41116765474d1b4e4416a6d2399da7cee97f4470d744de5347a3b3598e4d0064a3e71e542ff63a8b6d29d70e2f338daed66d8aa2a54722a51b11e1

            Download Submit

          • /data/data/scbrlfjooy.oaifjkccceagnrq.mhhwijqffcj/databases/tray.db-wal
            Filesize

            56KB

            MD5

            63e2fd2393ecc2e46571de20e177c21b

            SHA1

            8723cd984c7e56c11589d0096ce40a1b96e36ed8

            SHA256

            9542e87b6e32996e49f9091488a88137527bcbf4b8f30aa62d56774f28b2e6b5

            SHA512

            edc4895bb9eaed53076f4e6a30904596e23a9a02938ee18d7f346313c0bf7c24d221a78f43fa29004a60cd3584fe24a9dabc27914eaa695ebb34fd8375145e53

            Download Submit