Analysis

  • max time kernel
    7s
  • max time network
    136s
  • platform
    android_x86
  • resource
    android-x86-arm-20240221-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
  • submitted
    23/02/2024, 12:30

General

  • Target

    b84877980499caa11a4d2cdc6f638734c8eb72021fc74e64fde5985e3ceee063.apk

  • Size

    1.7MB

  • MD5

    3d74297d7b51eee0fb113d57a6151a61

  • SHA1

    38a324faf1d054f16714c17ef5320bfd5262589b

  • SHA256

    b84877980499caa11a4d2cdc6f638734c8eb72021fc74e64fde5985e3ceee063

  • SHA512

    144d9b82758329504cffc4f6f9ea877644f8a9ffcdbe0e4e23a4a0844643ed2359d123a3d6f93711e48f5bb52fcbf20bb43a043618f47a67e9d68e5c80f6fa1b

  • SSDEEP

    49152:6ddVzEbfUbstsg0Kc+El2Do+VF9LyWP3Y37tPEjo:6JgboDl7lcOWP3oRPEjo

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

  • Acquires the wake lock 1 IoCs

Processes

  • com.zombieapocalyps.nearme.gamecenter
    1⤵
    • Loads dropped Dex/Jar
    • Acquires the wake lock
    PID:4258

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.zombieapocalyps.nearme.gamecenter/databases/com.google.android.datatransport.events

          Filesize

          4KB

          MD5

          f2b4b0190b9f384ca885f0c8c9b14700

          SHA1

          934ff2646757b5b6e7f20f6a0aa76c7f995d9361

          SHA256

          0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

          SHA512

          ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

        • /data/data/com.zombieapocalyps.nearme.gamecenter/databases/com.google.android.datatransport.events-journal

          Filesize

          512B

          MD5

          5f1a582f5c6184dff9c7f08c0c5e0b0f

          SHA1

          aeb628782c13e55e8b36562b113848c59ebb030e

          SHA256

          47c3c44a564e73cf1f5caca63e08728193fbab20db8b13dd8b33158a6cbbe4c1

          SHA512

          2d9ebc19c7b7b0a27856797be0ce8b52fa3f0c294264864a62053e74eb9c61534aee68083344bbf3cdde7f790d32b27e76935b80589fb7aa6b2870c3ebf98975

        • /data/data/com.zombieapocalyps.nearme.gamecenter/databases/com.google.android.datatransport.events-shm

          Filesize

          28KB

          MD5

          cf845a781c107ec1346e849c9dd1b7e8

          SHA1

          b44ccc7f7d519352422e59ee8b0bdbac881768a7

          SHA256

          18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

          SHA512

          4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

        • /data/data/com.zombieapocalyps.nearme.gamecenter/databases/com.google.android.datatransport.events-wal

          Filesize

          68KB

          MD5

          01889a1078e19936dd6707d5fbc59822

          SHA1

          fce0b126d48c5bf63e7b8756eabd9c2a05a23f13

          SHA256

          264b47c2f66a150aa230fccbaa248f6612571a2947a2a793eba6f3d7dec6a871

          SHA512

          6737eb66f22432558597e7d3eb01950e58e127eea668f32314518237e36a597d14345dfc5cca43c96313aecf616ff2a7a82bf821642dd43afe2869d58dd912c5

        • /data/data/com.zombieapocalyps.nearme.gamecenter/files/1c7faaac.dex

          Filesize

          1.1MB

          MD5

          986fc773dbd3cab9372a32ba28248829

          SHA1

          208aa9bf208311642b282015e3c11509a6d6fb0a

          SHA256

          540e9e2cb2fc7f2c0a34986d93b5416d247442905f8d6bdb7464e02d32a9108b

          SHA512

          c834136ccbf7c241e72ae6c034b251b38e02a865e4758d6182562ba6f4466cf5d56829fd69ec64b0a0971c588e1f3b9f8702c3558ca610c297b0b8258626e0a3

        • /data/data/com.zombieapocalyps.nearme.gamecenter/files/PersistedInstallation2194800965028015257tmp

          Filesize

          90B

          MD5

          ecc0a61838e20c8d4ff99bd2ccc51a6e

          SHA1

          fd9ea1adadcb954ce56b23b01888dd2640fb8daa

          SHA256

          38f3367f53c94184bade229c613931c1d7c9da013a377ccb17352862d0d04f20

          SHA512

          21cd4c34960065242b7b8e1e4e57bcf72638646dca1e0bcdb3137befcdf017a84990e9913bac85271069e449a79d58761ef1737bf2a802e7a292f64f5c3a1d0a

        • /data/data/com.zombieapocalyps.nearme.gamecenter/files/PersistedInstallation8041080642591289354tmp

          Filesize

          569B

          MD5

          9818d04c4345615da402792fcdc1df93

          SHA1

          707985fc4f156bf73479d9c0376cf0971c8a2458

          SHA256

          752e0d88a59a7ee076a478357751baee23bd8ab4bb55c9c24e4d9e850ba5563c

          SHA512

          3e9bc3f5159fd2ce1997fcee7b19ea058041a29b9381909e98dcc211670aea68dcc761d6576640c80b4fac918be7b6ecd41e74de776def340b414c2a8c371fa9

        • /data/data/com.zombieapocalyps.nearme.gamecenter/files/q

          Filesize

          427B

          MD5

          933cd1da4c2cf3cf6650ceeb480b2370

          SHA1

          ea8cffe84916a6301675879a425f1a1adbd3d464

          SHA256

          ec1989a10b87a0d66113959e08a48d581e47a12441a537aacdb04a9f065281e8

          SHA512

          276f1ec03c9383fdac4cbca5548d20b80434245444ef40ce46569b76808e8662aca886adf2f1b028a14e5191add73c3255cbee680ed241002c58d87748d3f57b

        • /data/data/com.zombieapocalyps.nearme.gamecenter/files/uYRf

          Filesize

          228B

          MD5

          f530a07d59848b3e04a4aac5f1bda2bb

          SHA1

          8ab5e2c4e3fd7a50fd8b5c5bce6dcb08c8b7a2f2

          SHA256

          d2700324a93a5ef78322cd0a23817bb8fe8bc9b0e3ccb0ee3e2c6550944ef341

          SHA512

          dd3c6a6b578d0380e84001fd71fe0e46bb7922a571b80d3e9931b0bac308f77cdf91ba85e8e1fbd94311b1158bd858522faf27c2670beef2e4c2cbb7991d9a30

        • /data/user/0/com.zombieapocalyps.nearme.gamecenter/files/1c7faaac.dex

          Filesize

          2.7MB

          MD5

          61f1d5487792b1c96567fb6ce5ffd746

          SHA1

          89ce741b86a93730bcf20b8e9d842a868cd097fe

          SHA256

          c8750b35c1266de34f673ccc950f13c4c49ecec5e9ddaecbf8926fcae9cdecfb

          SHA512

          41e67e3ab631a21f6713e63043c85b5473c693c863bfce93c0810af581a25d0e913400e704b1c0c53c0bf41b0e5a579c979859ed973377480f4c33f3ca32f5aa