3598d53e4b8596f4d6c99ece2e10fa506ae32268063590e0962208076a1004d2

Analysis

max time kernel
146s
max time network
159s
platform
android_x64
resource
android-x64-arm64-20240221-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system
submitted
24/02/2024, 10:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3598d53e4b8596f4d6c99ece2e10fa506ae32268063590e0962208076a1004d2.apk
Size

1.7MB
MD5

0697147de4e0981b4088e43e85f92892
SHA1

e7cd69986fc41a1be5fcd899d541e54ee25104cb
SHA256

3598d53e4b8596f4d6c99ece2e10fa506ae32268063590e0962208076a1004d2
SHA512

0471243f806ebfb8759779b91e2ce2c65ad76a8e7d67c3b93be1f70cf7a004c912818d06265ea10e2565261da1c491ad68f529d422bf2cf233cf0222bc8522a1
SSDEEP

24576:jdMYVRcsDRsFtWq2x4uNCn49Z9T9eXLO5zT+5u1dBcs4cXMgDx/GQc3Hecmu4Ejc:jd/RYFtkk49Z9TEOnzBc0Dxev3dmnEjc

Score

7^/10

discovery

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.ballhop.nearme.gamecenter/files/5e3152b0.dex	4535	com.ballhop.nearme.gamecenter

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.ballhop.nearme.gamecenter
1⤵
- Loads dropped Dex/Jar
PID:4535

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.ballhop.nearme.gamecenter/files/5e3152b0.dex

Filesize
1.1MB

MD5
17cae2f821fb945efe23385548ca568e

SHA1
466038ff2e5f8420709941c7d031d0af77661881

SHA256
dd46fdcbaf588efcd380e6e317b0bca3b85b2893d130e0ff58ec5fb5f46672c9

SHA512
997fa3f1c3ffc6ba93f4c5da825da447d30c9d994f477c3d91409d83f183c34385d1c5ea3d5b90225ab9d817b0f13186b14577d7832106f0dc5086847fbef43c

Download Submit
/data/user/0/com.ballhop.nearme.gamecenter/files/5e3152b0.dex

Filesize
2.7MB

MD5
f33396c4568c86eb4899349f91183012

SHA1
63a6b820483c1bbf8ef8b4eb2ba56745f3e8cca7

SHA256
2555b8c8821ddf763a05387a6053810cb6d0fbd5da65bdefcab8e34e2420a01d

SHA512
46014a9a8c3ae0bb2c13ade7e699b9ee44cd271323a3259ea920ca8852ff2769bd2f231e5e3658d6b2eb0124dbfb04e9d0ea9bc60fa99fb24618156e758df388

Download Submit
/data/user/0/com.ballhop.nearme.gamecenter/files/UwwVI

Filesize
779B

MD5
35f6e748a3ed409cf9bc572116643eb5

SHA1
a832911d9de268726bf3b34166e7fb7a366e0656

SHA256
1c01b8ba5f5c689e22b1ef08a98e669cd82878a5d1e5f2c700e85660157b5978

SHA512
f61d58c323f5baead30f51609e65c277bd231c3d91213cab927dfa40d89020d07576ba0431c9f221fc34a96e5378c52f93334ec1e094c087939596de24ce71d0

Download Submit
/data/user/0/com.ballhop.nearme.gamecenter/files/tBLH

Filesize
251B

MD5
57a026973551075129fbaadc13e7ed0e

SHA1
438f2425bcdc9f94b04a1306ce417cd5ec49a12b

SHA256
b5f5620315544b993314cc10b1a5761471db333afb92810ed2ba2a4dd295936d

SHA512
7ca7994302eea2cdc569a0694f4b2c1381aef6af825e99f40a8a53bbf186fb7f9ddd6e736320b63cdf332501c73bb5b88c0d138d72a4efd37454baedeeb6199d

Download Submit
/data/user/0/com.ballhop.nearme.gamecenter/files/tBLH

Filesize
251B

MD5
587edacdd81610b674fb9e52d3b53b91

SHA1
952eb81e1002001169347656910ba3440c5d910c

SHA256
910b23e293abb8b9f183202aeef80b348b2cb3eee45d7145c1eec0bbd714c09f

SHA512
4444984174a5283811df05ae9d621f7504aa7515e590aab0edce7ee39ad91c4c5e7403471f51bcc365d59d12ec6738ae8fcf90bf16779e3090ecfb6d7fbc9a69

Download Submit