Analysis
-
max time kernel
7s -
max time network
136s -
platform
android_x86 -
resource
android-x86-arm-20240221-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system -
submitted
23/02/2024, 12:30
Static task
static1
Behavioral task
behavioral1
Sample
b84877980499caa11a4d2cdc6f638734c8eb72021fc74e64fde5985e3ceee063.apk
Resource
android-x86-arm-20240221-en
Behavioral task
behavioral2
Sample
b84877980499caa11a4d2cdc6f638734c8eb72021fc74e64fde5985e3ceee063.apk
Resource
android-x64-20240221-en
Behavioral task
behavioral3
Sample
b84877980499caa11a4d2cdc6f638734c8eb72021fc74e64fde5985e3ceee063.apk
Resource
android-x64-arm64-20240221-en
General
-
Target
b84877980499caa11a4d2cdc6f638734c8eb72021fc74e64fde5985e3ceee063.apk
-
Size
1.7MB
-
MD5
3d74297d7b51eee0fb113d57a6151a61
-
SHA1
38a324faf1d054f16714c17ef5320bfd5262589b
-
SHA256
b84877980499caa11a4d2cdc6f638734c8eb72021fc74e64fde5985e3ceee063
-
SHA512
144d9b82758329504cffc4f6f9ea877644f8a9ffcdbe0e4e23a4a0844643ed2359d123a3d6f93711e48f5bb52fcbf20bb43a043618f47a67e9d68e5c80f6fa1b
-
SSDEEP
49152:6ddVzEbfUbstsg0Kc+El2Do+VF9LyWP3Y37tPEjo:6JgboDl7lcOWP3oRPEjo
Malware Config
Signatures
-
Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.
ioc pid Process /data/user/0/com.zombieapocalyps.nearme.gamecenter/files/1c7faaac.dex 4258 com.zombieapocalyps.nearme.gamecenter -
Acquires the wake lock 1 IoCs
description ioc Process Framework service call android.os.IPowerManager.acquireWakeLock com.zombieapocalyps.nearme.gamecenter
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
/data/data/com.zombieapocalyps.nearme.gamecenter/databases/com.google.android.datatransport.events-journal
Filesize512B
MD55f1a582f5c6184dff9c7f08c0c5e0b0f
SHA1aeb628782c13e55e8b36562b113848c59ebb030e
SHA25647c3c44a564e73cf1f5caca63e08728193fbab20db8b13dd8b33158a6cbbe4c1
SHA5122d9ebc19c7b7b0a27856797be0ce8b52fa3f0c294264864a62053e74eb9c61534aee68083344bbf3cdde7f790d32b27e76935b80589fb7aa6b2870c3ebf98975
-
/data/data/com.zombieapocalyps.nearme.gamecenter/databases/com.google.android.datatransport.events-shm
Filesize28KB
MD5cf845a781c107ec1346e849c9dd1b7e8
SHA1b44ccc7f7d519352422e59ee8b0bdbac881768a7
SHA25618619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7
SHA5124802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612
-
/data/data/com.zombieapocalyps.nearme.gamecenter/databases/com.google.android.datatransport.events-wal
Filesize68KB
MD501889a1078e19936dd6707d5fbc59822
SHA1fce0b126d48c5bf63e7b8756eabd9c2a05a23f13
SHA256264b47c2f66a150aa230fccbaa248f6612571a2947a2a793eba6f3d7dec6a871
SHA5126737eb66f22432558597e7d3eb01950e58e127eea668f32314518237e36a597d14345dfc5cca43c96313aecf616ff2a7a82bf821642dd43afe2869d58dd912c5
-
Filesize
1.1MB
MD5986fc773dbd3cab9372a32ba28248829
SHA1208aa9bf208311642b282015e3c11509a6d6fb0a
SHA256540e9e2cb2fc7f2c0a34986d93b5416d247442905f8d6bdb7464e02d32a9108b
SHA512c834136ccbf7c241e72ae6c034b251b38e02a865e4758d6182562ba6f4466cf5d56829fd69ec64b0a0971c588e1f3b9f8702c3558ca610c297b0b8258626e0a3
-
Filesize
90B
MD5ecc0a61838e20c8d4ff99bd2ccc51a6e
SHA1fd9ea1adadcb954ce56b23b01888dd2640fb8daa
SHA25638f3367f53c94184bade229c613931c1d7c9da013a377ccb17352862d0d04f20
SHA51221cd4c34960065242b7b8e1e4e57bcf72638646dca1e0bcdb3137befcdf017a84990e9913bac85271069e449a79d58761ef1737bf2a802e7a292f64f5c3a1d0a
-
Filesize
569B
MD59818d04c4345615da402792fcdc1df93
SHA1707985fc4f156bf73479d9c0376cf0971c8a2458
SHA256752e0d88a59a7ee076a478357751baee23bd8ab4bb55c9c24e4d9e850ba5563c
SHA5123e9bc3f5159fd2ce1997fcee7b19ea058041a29b9381909e98dcc211670aea68dcc761d6576640c80b4fac918be7b6ecd41e74de776def340b414c2a8c371fa9
-
Filesize
427B
MD5933cd1da4c2cf3cf6650ceeb480b2370
SHA1ea8cffe84916a6301675879a425f1a1adbd3d464
SHA256ec1989a10b87a0d66113959e08a48d581e47a12441a537aacdb04a9f065281e8
SHA512276f1ec03c9383fdac4cbca5548d20b80434245444ef40ce46569b76808e8662aca886adf2f1b028a14e5191add73c3255cbee680ed241002c58d87748d3f57b
-
Filesize
228B
MD5f530a07d59848b3e04a4aac5f1bda2bb
SHA18ab5e2c4e3fd7a50fd8b5c5bce6dcb08c8b7a2f2
SHA256d2700324a93a5ef78322cd0a23817bb8fe8bc9b0e3ccb0ee3e2c6550944ef341
SHA512dd3c6a6b578d0380e84001fd71fe0e46bb7922a571b80d3e9931b0bac308f77cdf91ba85e8e1fbd94311b1158bd858522faf27c2670beef2e4c2cbb7991d9a30
-
Filesize
2.7MB
MD561f1d5487792b1c96567fb6ce5ffd746
SHA189ce741b86a93730bcf20b8e9d842a868cd097fe
SHA256c8750b35c1266de34f673ccc950f13c4c49ecec5e9ddaecbf8926fcae9cdecfb
SHA51241e67e3ab631a21f6713e63043c85b5473c693c863bfce93c0810af581a25d0e913400e704b1c0c53c0bf41b0e5a579c979859ed973377480f4c33f3ca32f5aa