Overview

overview

7

Static

static

6

46508b222a...b8.apk

android-9-x86

7

46508b222a...b8.apk

android-10-x64

7

46508b222a...b8.apk

android-11-x64

7

Analysis

  • max time kernel
    146s
  • max time network
    136s
  • platform
    android_x86
  • resource
    android-x86-arm-20240221-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
  • submitted
    23-02-2024 23:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    46508b222a72d4ac2e7a5d8abd408123c477da92c88dcdcd159ac18d91558fb8.apk

  • Size

    1.7MB

  • MD5

    2a135752c35e96bfde5ee889c3c22430

  • SHA1

    0bffa941f86637fa5e90806ba0e284e6cd25b0bd

  • SHA256

    46508b222a72d4ac2e7a5d8abd408123c477da92c88dcdcd159ac18d91558fb8

  • SHA512

    726e535d8e26d28721eed9bc3251d0ff1cc40f6b0bbf7549bc811e9d17e84118a66e99d4c33448646fa55933c7aefcc0c062e6732279415ccd848abdfb36f739

  • SSDEEP

    49152:3T8NhQm4D6vvhjAdL/JzRA9LZPebQc3bhaa2u4Lvtmic:eeDmZjAdXALebQcLoaSDtJc

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Acquires the wake lock 1 IoCs

Processes

  • com.herocraft.game.raceillegal
    1⤵
    • Loads dropped Dex/Jar
    • Acquires the wake lock
    PID:4423
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.herocraft.game.raceillegal/files/3a396e27.dex --output-vdex-fd=41 --oat-fd=42 --oat-location=/data/user/0/com.herocraft.game.raceillegal/files/oat/x86/3a396e27.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4449

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.herocraft.game.raceillegal/databases/com.google.android.datatransport.events
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.herocraft.game.raceillegal/databases/com.google.android.datatransport.events-journal
    Filesize

    512B

    MD5

    686a27bcd373af29040eab021e33b100

    SHA1

    ff486773b40fd90e11cc52c457ccd068249ffb31

    SHA256

    77d6834964c75e59cf21f3b4be0c7e77931702e40e66e7382bd9f053b441ce56

    SHA512

    5ab97c9a1e264854d0a4d5e6bda1b1467b211d1f24b16b7583ad5f8049a6cee60b3d064a6c1e260df0ef5102677051f4a36f7a8638d069d6ba84eff3214f7a05

    Download Submit

  • /data/data/com.herocraft.game.raceillegal/databases/com.google.android.datatransport.events-shm
    Filesize

    28KB

    MD5

    cf845a781c107ec1346e849c9dd1b7e8

    SHA1

    b44ccc7f7d519352422e59ee8b0bdbac881768a7

    SHA256

    18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

    SHA512

    4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

    Download Submit

  • /data/data/com.herocraft.game.raceillegal/databases/com.google.android.datatransport.events-wal
    Filesize

    52KB

    MD5

    f8e3c985f9bb3b0a828f80df8427604e

    SHA1

    ec169bf27e81ad6dba94586dd59aa4f0e4a9f380

    SHA256

    3e110db91e09fbb9f69a2a95249a2eac6baa12adfe028c702f098437a67393c5

    SHA512

    b3ec757eb44fd8dd59e5c60cbd927cf2dd30add8501165e9f4eb1852ed22a38b73f389db3b8aeb9f631447f8c68c29eecdfea322878e361164231da7ff907e78

    Download Submit

  • /data/data/com.herocraft.game.raceillegal/files/3a396e27.dex
    Filesize

    262KB

    MD5

    71e3e3221527c042eef902384772690c

    SHA1

    7701ede4783c40a8b8534b0db66d49a83dd35c1a

    SHA256

    7de1bee056c428725f245eb863ecfba71a4c429a5bca000231bfcf84415ff845

    SHA512

    aea98cc741b2694c79e1b4bbfee11d157e102f7ef042502f8da29be668e13a0ba99eab5e8e76357c08a0b70b421665e41e2374647c5f4a944fd5771cc33a4a24

    Download Submit

  • /data/data/com.herocraft.game.raceillegal/files/BGEaUZrY
    Filesize

    504B

    MD5

    4bc300d8435ac595bec5f9c0ba193857

    SHA1

    3c4a6fbd92364062db634a498c91e34307800547

    SHA256

    66c5a706e3a3ccd8bde1e8ab4ee95541d658e6fc75544cb346918f0a8e502e4d

    SHA512

    3f74ca4a5de7ffe544147b3118476db03d33dc9db830902967f21453619a7d40b9f4b59d0e3e2d6e923e00e853d5787bb3fa43acbd810a7b0980417f6b6182bf

    Download Submit

  • /data/data/com.herocraft.game.raceillegal/files/PersistedInstallation3218638804933626983tmp
    Filesize

    90B

    MD5

    198c8dc797d16041490fe5769d4d37bd

    SHA1

    3154fb966fe92f800e2743234a0a08857639decc

    SHA256

    b07e0c3b2e274f22a4bb119a78c9ada6ce3935537e1581ee8a27385abb960074

    SHA512

    09ce8f4d369c6ad9e64df4e3339810d74400997aa644ef3380afe0aea7e493657858c0085b5fb51952d5b44ddd4c5915125ee05cacca4c81772a88b15554b427

    Download Submit

  • /data/data/com.herocraft.game.raceillegal/files/PersistedInstallation3461991534208501986tmp
    Filesize

    569B

    MD5

    33cf21e589163389594bafa33efc0708

    SHA1

    f2942851c53f3992533a93ee7d427316dd88e585

    SHA256

    4487223bd259faef03d42c247ad19c38e787f81b3c5daa8fd1e7b1b9e4a124cd

    SHA512

    082f0feca22cd56f73d64a9c41a0e94cc49a83cc42596bc690a39369506a2bc9272c109c648aa401b0d1f1a4e860a562420f4f19c9cda1525484585b81f290ba

    Download Submit

  • /data/data/com.herocraft.game.raceillegal/files/TrPJFdsN
    Filesize

    336B

    MD5

    71b58cb0f9ffaebcdb1f5ae61c582873

    SHA1

    d277ea45f4c85d01f48616fa9239739632f1b40a

    SHA256

    c94603ade429e4a36d7f04df6609fb2b9c408b882e85720aa23964fb49c2abc7

    SHA512

    9aad295e73f09c9a88450a7fbf04721e6720a71a234d9a9893c4ea5e55f3bd6905e005ac0f369452561212e8255e9484e3968f61e3d39c0b96e3ed91fbedd404

    Download Submit

  • /data/user/0/com.herocraft.game.raceillegal/files/3a396e27.dex
    Filesize

    614KB

    MD5

    ac0aac288e139c05959571069ea57900

    SHA1

    a89c65dd8400fc73f569f917ae265fef9f854881

    SHA256

    86dd5e92d9e05366bb3971e7b65b570c4f5037b049dbae5b8a2a7be83e682d41

    SHA512

    ec73d2a279333625ec7229f794482f02c468be1e86f43d2f70513643ec74d12a4bd95f7562129c2756f4270d3a7a26ba9f5c691a56723d614f403490b9f00ba5

    Download Submit