46508b222a72d4ac2e7a5d8abd408123c477da92c88dcdcd159ac18d91558fb8

Analysis

max time kernel
152s
max time network
154s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
23/02/2024, 23:48

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

46508b222a72d4ac2e7a5d8abd408123c477da92c88dcdcd159ac18d91558fb8.apk
Size

1.7MB
MD5

2a135752c35e96bfde5ee889c3c22430
SHA1

0bffa941f86637fa5e90806ba0e284e6cd25b0bd
SHA256

46508b222a72d4ac2e7a5d8abd408123c477da92c88dcdcd159ac18d91558fb8
SHA512

726e535d8e26d28721eed9bc3251d0ff1cc40f6b0bbf7549bc811e9d17e84118a66e99d4c33448646fa55933c7aefcc0c062e6732279415ccd848abdfb36f739
SSDEEP

49152:3T8NhQm4D6vvhjAdL/JzRA9LZPebQc3bhaa2u4Lvtmic:eeDmZjAdXALebQcLoaSDtJc

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.herocraft.game.raceillegal/files/3a396e27.dex	5259	com.herocraft.game.raceillegal

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.herocraft.game.raceillegal

com.herocraft.game.raceillegal
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:5259

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.herocraft.game.raceillegal/databases/com.google.android.datatransport.events

Filesize
40KB

MD5
15d5b92dcbda7ef7f9ca327a903e46e4

SHA1
ca153b66028a58d90346ff8abadbdf01b95c37b1

SHA256
e802fdc1ccd833b91d80bb1d8f54cab2b585393e6a07622c4d9feaab07633370

SHA512
2352f167ee5aa37cb3438a0a7df8f632771a1d019c5cd120fe62313fb73aed6d0e09186a9bf306a564371b846a8da020f6acd7aede0cc47ca50701611fa84aca

Download Submit
/data/data/com.herocraft.game.raceillegal/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
27e2b6f227ce190cdf39c27bfa4c42f4

SHA1
2c9c136fb50d9f1f677a3e071e0730ccd3577f5f

SHA256
10a3361b8e3b29b75aba29e80784407a5357cac1e98ea6aed706ad8ab12231f7

SHA512
22f28d1bb59ede65ebfc1e40567c0f4dbbf11b2fe25baa9f2c252c70dda1e20eb91dfe3221644bb5a58da12907f59ccbd19ba2ba4b7ea5e4c62b500094d09f18

Download Submit
/data/data/com.herocraft.game.raceillegal/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
d64ccf0d1bcd1d7c1d80e3f0d0ba5ea4

SHA1
af346fc4e629a3e5fddd57f19f2ba22d4d2d8ee2

SHA256
5b67395b98251086b41a06fa1e6344c173c4c2528aa109a9fb30e9882cd2cbf2

SHA512
2b7f9685083a1b58e45dc945bf2e0f329812ac389df77f5ead7e071bb58af40edd38c22f7e3b1d20552b0e0699b07a346484523e862c77d0d6839f529845310e

Download Submit
/data/data/com.herocraft.game.raceillegal/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
1cc9b22bca63d2a2680d54358af7a063

SHA1
e433a716e5c5d33ffe834843ca5960c1959dd998

SHA256
57fc4395ae6952aa0f5640cec4c92da497a3c8fc9e09653826e53eea19baaa88

SHA512
20f9aabaf428a801b7720f0bea10f5c29ef00db0d7d9737f74ce5187ed0c8e44768a9eb171b4ccf43c85c68e20e3527fd0019e44142a5f39b973ead0bf2afcd9

Download Submit
/data/data/com.herocraft.game.raceillegal/files/3a396e27.dex

Filesize
262KB

MD5
71e3e3221527c042eef902384772690c

SHA1
7701ede4783c40a8b8534b0db66d49a83dd35c1a

SHA256
7de1bee056c428725f245eb863ecfba71a4c429a5bca000231bfcf84415ff845

SHA512
aea98cc741b2694c79e1b4bbfee11d157e102f7ef042502f8da29be668e13a0ba99eab5e8e76357c08a0b70b421665e41e2374647c5f4a944fd5771cc33a4a24

Download Submit
/data/data/com.herocraft.game.raceillegal/files/BGEaUZrY

Filesize
505B

MD5
7acc532166d738c6e86a14679bcb0633

SHA1
64e5f8bd638a1b72939b85369f79193cac4b7e0a

SHA256
f3a36232a7b188d4ddd064637856a02f1dca970db3dabd3b99eb73504ebcec71

SHA512
c9700236ea62d9dd1600a9a64b5ac60d8c5b390045ea1cdb3965a794f1c81bb66a81c60e1845a677419911da3e9c131c4a25f02e77d341f56de1cc2483205a70

Download Submit
/data/data/com.herocraft.game.raceillegal/files/PersistedInstallation4780236136189862637tmp

Filesize
90B

MD5
0524e869e6746c78b3b04a567fcce916

SHA1
1f24aa7ee9c26ea558d059c5ff0210329808d49f

SHA256
1c59e72ce1e8f30c0c4db6c02fafe5f6c8f57b2217958cb7ba7433a5b7949ae8

SHA512
79cf0f1f1b9dd11404e3730d4e695fd5660adfe92465aad3630d1895c968d34e14744eadca43727b169ad1f2a8360bf86f4ece022cc93ccbee40cce1253012cd

Download Submit
/data/data/com.herocraft.game.raceillegal/files/PersistedInstallation586229134869711955tmp

Filesize
569B

MD5
209e93034a1d2f9a50336649a9a72e76

SHA1
9475c1e5bba6a43308000c110f1d71cfdb7866cf

SHA256
c4702052d910126379914184fa5680feac0f2f5278a3e7d58659168da347216e

SHA512
afb4c0c5e10eb8d3c3404ee5356930e40611918ec28cfc53f46526dd896b2e42673d9e3277015a9396bd1bdb70be7bc1dfbfd2796c5e9da071f6a8b546aae559

Download Submit
/data/data/com.herocraft.game.raceillegal/files/TrPJFdsN

Filesize
336B

MD5
59922779716f24506e9a63476db34f6d

SHA1
b4c82ab5e7bf18cd9c3245994bbb284b07444d66

SHA256
7a21b253147d5f9ad73a49aa108dcdb2d0232db2a1af93f55ddd86af35e07459

SHA512
27c88656b25ec7c671aaa354732290b7332242a1468c77024df24b16601d460d42596dbd5da2a4c1bce882591234ea9d36a2fb822ef1b13099636aeaec0df9b9

Download Submit
/data/user/0/com.herocraft.game.raceillegal/files/3a396e27.dex

Filesize
614KB

MD5
ac0aac288e139c05959571069ea57900

SHA1
a89c65dd8400fc73f569f917ae265fef9f854881

SHA256
86dd5e92d9e05366bb3971e7b65b570c4f5037b049dbae5b8a2a7be83e682d41

SHA512
ec73d2a279333625ec7229f794482f02c468be1e86f43d2f70513643ec74d12a4bd95f7562129c2756f4270d3a7a26ba9f5c691a56723d614f403490b9f00ba5

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads