Analysis
-
max time kernel
148s -
max time network
140s -
platform
android_x64 -
resource
android-x64-arm64-20240221-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system -
submitted
23/02/2024, 12:50
Static task
static1
Behavioral task
behavioral1
Sample
d188a1edce26436320f44235e05a49363cd1202fe50855b4d30db90bef11392a.apk
Resource
android-x86-arm-20240221-en
Behavioral task
behavioral2
Sample
d188a1edce26436320f44235e05a49363cd1202fe50855b4d30db90bef11392a.apk
Resource
android-x64-20240221-en
Behavioral task
behavioral3
Sample
d188a1edce26436320f44235e05a49363cd1202fe50855b4d30db90bef11392a.apk
Resource
android-x64-arm64-20240221-en
General
-
Target
d188a1edce26436320f44235e05a49363cd1202fe50855b4d30db90bef11392a.apk
-
Size
1.7MB
-
MD5
cd150ed33bcfc86915fba2448f48817e
-
SHA1
0a64d67744dc5c0d186f466b21d5412962b22bcf
-
SHA256
d188a1edce26436320f44235e05a49363cd1202fe50855b4d30db90bef11392a
-
SHA512
229bae2ea07ee27fbe972b496e5b3d96369253f9d70bda335790a3582260e51b856c685289c5c93f7606219678c6a2b90b913d8eb24ed1ac22065ac6f929b09c
-
SSDEEP
24576:uE5LGAf1p4ta8LAO7p6jokTFFXW4q6v5l5oPPsnyhTbs16LqQc3H9QUDcEjW:uEEAu7ELfr6PPvTo16mv3eUgEjW
Malware Config
Signatures
-
Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.
ioc pid Process /data/user/0/com.vsindiaapps.latestpunjabisongs.nearme.gamecenter/files/f28b08db.dex 4737 com.vsindiaapps.latestpunjabisongs.nearme.gamecenter -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.vsindiaapps.latestpunjabisongs.nearme.gamecenter -
Reads information about phone network operator. 1 TTPs
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
241B
MD5a63f70a6b2bfa34f8565b0b70c8b0fd8
SHA1860f59af3b45d5e526849a45a490ccb0e89aaaed
SHA25605db0e81e57ad9d5a2f5950edc2ca25ecd4428d576263f69599661f9ae02b959
SHA51276aaaaf480ad1a2a7670237010fdbdb40c61c2696839da8319105689cc5ca7745a75dd24b6d8d5dfe1941f00fdd85be9c28df5c053e50c10e2bdf7115e6b2e04
-
Filesize
241B
MD5ccb2cf8c900a4f59c9a0e518de3df724
SHA16f7da010955286ba34234ac5a7bc56c344fa67f2
SHA256fdd348e56200358d7642392f6a1931ec321a68f470ea8b62dcd5e06d5c158c12
SHA5126880e91534ec746e2eb0a4522216c1a7afe9bf8fcd8ea45a352565bac34e7d07cb8aebd4b767e88cf7c92646b33b74617634504a71fa8cf3fc4a3bcedb2be011
-
Filesize
691B
MD5e0242ac83789aafe4b90d15466406669
SHA13f9acbba8567a810034005d673a5362247f9399f
SHA25684d70cca0328b395e9b281b7d515777f015a42ff4362f3e591aea017e7216f2b
SHA5126bf8add1a8bf8db13e65c42a58be5ebe7260db3161223618a107233612f8b287ea23873561f358007e8b5b0234d7da178e01a90b7e37ff19b97139a7d0e56c1e
-
/data/user/0/com.vsindiaapps.latestpunjabisongs.nearme.gamecenter/files/PersistedInstallation562026086361815527tmp
Filesize114B
MD55f6cd9ae9e4a04aec9c3114169fba9a7
SHA13cde334d4755cb1ee1cb5ca61526dd4ca5e08af4
SHA256686c4d22ddd079d4bb3e59d714c15c9e03c89033a84786c50d799ffd717da875
SHA512068c824bdef21be430d64214e57f2e67f4b021b10d4b29b5a996867efe8878b34de933e4d30a354571265dc387465ba8ccf4b1bea038c412121bedd15ebf1138
-
Filesize
1.1MB
MD57f07edbc148cd899091b62191e234295
SHA101a79b79a36da81add4dfc0997bbe523bc7fc49f
SHA256b2a64f2b5f7d1358e14896af24979846a15090bb1038fe02d419e47a24472e5e
SHA5125d73c9047be5797f08f432964c9e51ced5b2de8e88cbbf8bd8a171e7a34eb79cd07746421e518233c7578bc941b9ad5b8b36108f1b026c501fb543660d998a2b
-
Filesize
2.7MB
MD54641466f6bb85afe4e66b18b3145eb4b
SHA11c53d1d38c296c0d4c647d26a1aa22086915b861
SHA2561beb17b02d1639c2ae11f993259f2fd475eba848ad363317919fea9e9f91b8bf
SHA512f4fd3484715193042535536f2d78e6d0c370a9cdbfd09f91cf6dcb1f3f8cfecaf582c1d43bec8bcd6007fb921cfaee9e07f44504acae69d3e098597cb16cd0c2